Bump npm from 8.19.1 to 10.2.1

dependabot[bot] commented 1 year ago

Bumps npm from 8.19.1 to 10.2.1.

Release notes

libnpmhook: v10.0.0

10.0.0 (2023-08-31)

Features

fb31c7e trigger release process (@lukekarrys)

libnpmhook: v10.0.0-pre.0

10.0.0-pre.0 (2023-08-31)

⚠️ BREAKING CHANGES

support for node <=16.13 has been removed

support for node 14 has been removed

Bug Fixes

6b251b1 #6706 drop node 16.13.x support (@lukekarrys)

4caedd0 #6706 drop node14 support (@lukekarrys)

Dependencies

2ee0fb3 #6706 npm-registry-fetch@16.0.0

5d0d859 #6706 npm-registry-fetch@15.0.0

libnpmpublish: v9.0.1

9.0.1 (2023-10-02)

Dependencies

aa6728b #6859 tar@6.2.0

ce9089f #6859 npm-package-arg@11.0.1

libnpmpublish: v9.0.0

9.0.0 (2023-08-31)

Features

fb31c7e trigger release process (@lukekarrys)

libnpmpublish: v9.0.0-pre.0

9.0.0-pre.0 (2023-08-31)

⚠️ BREAKING CHANGES

support for node <=16.13 has been removed

support for node 14 has been removed

Bug Fixes

... (truncated)

Changelog

Sourced from npm's changelog.

10.2.1 (2023-10-18)

Bug Fixes

35c92fe #6902 Add check to pkg command to deal with empty values (#6902) (@NeonArray)

5b6172f #6895 logout from custom registry (@wraithgar)

8423d4f #6895 delete auth from proper location on logout (@wraithgar)

0cfe9de #6873 audit: spelling error in message (#6873) (@Fdawgs)

Documentation

5142735 #6894 update npm build description (#6894) (@siemhesda)

2e4b4ad #6861 npm publish content modification (#6861) (@jpg619)

Dependencies

96e1637 #6915 cmd-shim@6.0.2 (#6915)

b405da1 #6899 bin-links@4.0.3

ef69d36 #6895 npm-registry-fetch@16.1.0

337c903 #6882 spdx-license-ids@3.0.16

e6b0be7 #6882 socks-proxy-agent@8.0.2

ee6892e #6882 readable-stream@4.4.2

61c3ee9 #6882 minipass@7.0.4

14d31fd #6882 is-core-module@2.13.0

03f3d2e #6882 https-proxy-agent@7.0.2

e0163c6 #6882 are-we-there-yet@4.0.1

fca804a #6882 ci-info@3.9.0

6af582f #6882 npm-install-checks@6.3.0

Workspace: @npmcli/config@8.0.1

10.2.0 (2023-10-02)

Features

7c459d2 #6801 add npm sbom command (#6801) (@bdehamer)

81a460f #6732 add package-lock-only mode to npm query (@wraithgar)

0d29855 #6732 add no-package-lock mode to npm audit (@wraithgar)

Bug Fixes

2207628 #6823 use strip-ansi module instead of internal regex (#6823) (@wraithgar)

d46d052 #6798 tolerate null bugs URLs (#6798) (@vladh)

fb1b674 #6758 deprecate: ignore implicit workspace mode (#6758) (@wraithgar)

Documentation

68031f2 #6844 update CONTRIBUTING.md to prevent errors (#6844) (@darcyclarke)

3ac703c #6831 add include param to commands that have omit param (#6831) (@siemhesda)

03912db #6819 add init-specific params to init docs/help (#6819) (@wraithgar)

8088325 #6800 Update npm-doctor.md (#6800) (@siemhesda)

... (truncated)

Commits

94f535b chore: release 10.2.1
724658f chore(deps): bump @babel/traverse (#6916)
96e1637 deps: cmd-shim@6.0.2 (#6915)
5142735 docs: update npm build description (#6894)
92cd4ad docs: added footnote about clearing argv (#6913)
5508fe1 docs: update readme example (#6911)
35c92fe fix: Add check to pkg command to deal with empty values (#6902)
b405da1 deps: bin-links@4.0.3
fcc9e40 chore: add tests for logout with project config
3a927ee chore: rewrite logout tests to use mock registry
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

update-docs[bot] commented 1 year ago

Thanks for opening this pull request! The maintainers of this repository would appreciate it if you would create a changelog item based on your changes.