Closed dependabot[bot] closed 1 month ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/tsup@8.2.4 | eval, filesystem Transitive: environment, network, shell, unsafe | +122 |
287 MB | egoist |
npm/tsx@4.19.0 | Transitive: filesystem | +28 |
241 MB | hirokiosame |
🚮 Removed packages: npm/tsup@8.0.2, npm/tsx@4.7.2
Looks like tsup is up-to-date now, so this is no longer needed.
Bumps tsup from 8.0.2 to 8.2.4.
Release notes
Sourced from tsup's releases.
... (truncated)
Commits
49c11c3
fix: do not terminate dts worker in watch mode, closes #1172, closes #1171e9ee083
docs: CONTRIBUTING.md048c93b
fix: get metafile on windows2de6dd5
fix: Revert "refactor: replaceglobby
with faster alternative (#1158)"6e66f29
chore: upgrade deps44c88a7
fix(dts): terminate worker when work is done (#1142)0f0b4b2
refactor: replaceglobby
with faster alternative (#1158)aeda546
refactor: replace colorette with picocolors0303783
docs: update tsup API docs link [ci skip] (#1160)31cffed
docs: use jsdocs.io for now, closes #1145, #1159Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show