The optional global CLI is now in ESM format (was previously in commonjs), which is why we have bumped up the major version for this release. We have also upgraded all of its dependencies (including for security reasons).
The minimum supported Node.js version is now v14.15.
It has backward compatibility with Quasar v1 as well, so it is safe to upgrade to it, including bumping Node.js to minimum 14.15. We strongly recommend using only LTS versions of Node.js (major version should be an even number).
We have also extracted the legacy "quasar create" command into its own global CLI (@quasar/legacy-create - globally install it) should you still need it. This new package will not receive updates, including security ones, as it uses some dependencies that are now unmaintained. The effort to fork those packages is not worth it, especially for a legacy CLI command.
Donations
Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:
PNPM package manager support (especially for the "quasar upgrade" command)
Donations
Quasar Framework is an open-source MIT-licensed project made possible due to the generous contributions by sponsors and backers. If you are interested in supporting this project, please consider the following:
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/open-source-labs/OverVue/network/alerts).
Bumps http-cache-semantics to 4.1.1 and updates ancestor dependency @quasar/cli. These dependencies need to be updated together.
Updates
http-cache-semanticsfrom 4.1.0 to 4.1.1Commits
2449650Update mocha560b2d8Don't use regex to trim whitespaceb1bdb92Remove linting package zooc20dc7eCache 308Updates
@quasar/clifrom 1.3.2 to 2.0.0Release notes
Sourced from
@quasar/cli's releases.Commits
49f2ec3feat(app-webpack): downgrade fork-ts-checker-plugin due to issues49db266feat(docs): update "quasar create" command section52c394echore(app-vite): allow for newer Node.js versions4fee617feat(cli): bump min node version to 14.15 (matches q/app-vite and q/app-webpack)56c819dfeat(app-vite): upgrade deps0d15d74fix(app-vite): Capacitor/Cordova: www folder not cleaned up before build #15186bea8d20fix(app-webpack): Capacitor/Cordova: www folder not cleaned up before build #...badc13fMerge branch 'dev' of github.com:quasarframework/quasar into dev23bffe9feat(app-webpack): upgrade all deps (for security reasons too)d59ef3cfix(QSlideTransition): set overflowY to hidden before calculationg height to ...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/open-source-labs/OverVue/network/alerts).