web-ext run: Android build variants do not require anymore a fully qualified apk component value in the --apk-component flag (#1935, #1941) (c083c07), as an example the following command can now be used to run an extension on the Fenix performancetest build variant: web-ext run -t firefox-android ... --firefox-apk=org.mozilla.fenix.performancetest --firefox-apk-component=HomeActivity (instead of ... --firefox-apk-component=org.mozilla.fenix.HomeActivity)
web-ext lint: updated to use addons-linter v2.5.0 (#2019 and #2028):
Imported Firefox 80 and Firefox 81 APIs Schema
Fixed optional_permissions validations to match the validation rules already applied to the manifest permissions (#3060)
Added new banned libraries and versions (e.g. DOMPurify <= 2.0.16) due to security vulnerabilities (#3336, #3347 and 5c7dc87)
Various dependencies updated to their last released versions: @babel/runtime to v7.11.2 (#1989), node-notifier to v8 (#1997), sign-addon updated to v3.1.0 (5cf782b, 05dd260) update-notifier updated to v4.1.1 (#2001)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps web-ext from 5.0.0 to 5.1.0.
Release notes
Sourced from web-ext's releases.
Commits
c5185bfchore: Bump package version for release 5.1.01d5875efix(deps): update dependency addons-linter to v2.5.0 (#2028)ffd8252chore(deps): update dependency webpack to v4.44.2 (#2023)8d1c39ffix(deps): update dependency addons-linter to v2.3.0 (#2019)c083c07feat: Support for android build variants without requiring a fully qualified ...05dd260fix(deps): update dependency sign-addon to v3.1.0 (#2020)9a1be5bchore(deps): update commitlint monorepo to v11 (#2018)ee68bfachore(deps): update dependency eslint to v7.9.0 (#2016)73898d0chore: Fix npm audit failures in CI job with changes to package-lock from 'np...11faea6chore(deps): update dependency @babel/core to v7.11.6 (#2014)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)