search

eiurur / Mukuu

COM3D2 MOD Search Site.
https://mukuu.herokuapp.com
27 stars 3 forks source link

Bump got and npm-check-updates #119

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps got and npm-check-updates. These dependencies needed to be updated together. Updates got from 7.1.0 to 12.3.1

Release notes

Sourced from got's releases.

v12.3.1

  • Don't freeze signal when freezing Options (#2100) 43b1467

https://github.com/sindresorhus/got/compare/v12.3.0...v12.3.1

v12.3.0

  • Add .off() method for events (#2092) 88056be

https://github.com/sindresorhus/got/compare/v12.2.0...v12.3.0

v12.2.0

https://github.com/sindresorhus/got/compare/v12.1.0...v12.2.0

v12.1.0

Improvements

Fixes

https://github.com/sindresorhus/got/compare/v12.0.4...v12.1.0

v12.0.4

  • Remove stream lock - unreliable since Node 17.3.0 bb8eca924c338ca12d5b90d6a26aa28dbddb42ee

v12.0.3

  • Allow more types in the json option (#2015) eb045bf

https://github.com/sindresorhus/got/compare/v12.0.2...v12.0.3

v12.0.2

  • Fix encoding option with {responseType: 'json'} (#1996) 0703318

https://github.com/sindresorhus/got/compare/v12.0.1...v12.0.2

v12.0.1

  • Fix nock compatibility (#1959) bf39d2c
  • Fix missing export of Request TypeScript type (#1940) 0f9f2b8

https://github.com/sindresorhus/got/compare/v12.0.0...v12.0.1

v12.0.0

... (truncated)

Commits


Updates npm-check-updates from 11.8.5 to 16.0.5

Release notes

Sourced from npm-check-updates's releases.

v16.0.0

Breaking

  • Automatic detection of package data on stdin has been removed. This feature was deprecated in v14.0.0. Add --stdin for old behavior. (#136)
  • Wild card filters now apply to scoped packages. Previously, ncu -f '*vite*' would not include @vitejs/plugin-react. Now, filters will match any part of the package name, including the scope. Use a more specific glob or regex expression for old behavior. (#1168)

v15.0.0

Breaking

  • node >= 14.14 is now required (#1145)
    • Needed to upgrade update-notifier with has a moderate severity vulnerability
  • yarn autodetect has been improved (#1148)
    • This is a patch, though technically it is breaking. In the obscure case where --packageManager is not given, there is no package-lock.json in the current folder, and there is a yarn.lock in an ancestor directory, npm-check-updates will now use yarn.
    • More practically, if you needed to specify --packageManager yarn explicitly before, you may not have to now

v14.1.0

Features

Group

You can now group upgrades by risk level using --format group:

Interactive Mode

Interactive mode was completely rewritten for a better user experience.

Inspired by npm-check.

Combine with --format group for a truly luxe experience:

Static Registry

A new option --packageManager staticRegistry allows upgrades to be recommended from a static JSON file. This can be used to power custom versioning infrastructure that is completely independent from the npm registry.

Thanks to agrouse who did a fine job on the PR.

Example:

$ ncu --packageManager staticRegistry --registry ./my-registry.json

my-registry.json:

... (truncated)

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/eiurur/Mukuu/network/alerts).
dependabot[bot] commented 2 years ago

Looks like these dependencies are no longer updatable, so this is no longer needed.