Bump npm from 8.19.1 to 10.2.4

dependabot[bot] commented 1 year ago

Bumps npm from 8.19.1 to 10.2.4.

Release notes

libnpmhook: v10.0.0

10.0.0 (2023-08-31)

Features

fb31c7e trigger release process (@lukekarrys)

libnpmhook: v10.0.0-pre.0

10.0.0-pre.0 (2023-08-31)

⚠️ BREAKING CHANGES

support for node <=16.13 has been removed

support for node 14 has been removed

Bug Fixes

6b251b1 #6706 drop node 16.13.x support (@lukekarrys)

4caedd0 #6706 drop node14 support (@lukekarrys)

Dependencies

2ee0fb3 #6706 npm-registry-fetch@16.0.0

5d0d859 #6706 npm-registry-fetch@15.0.0

libnpmpublish: v9.0.2

9.0.2 (2023-11-14)

Bug Fixes

fff8698 #6978 publish: split github workflow ref (#6978) (@sxzz)

Dependencies

cd0c649 #6994 ci-info@4.0.0

libnpmpublish: v9.0.1

9.0.1 (2023-10-02)

Dependencies

aa6728b #6859 tar@6.2.0

ce9089f #6859 npm-package-arg@11.0.1

libnpmpublish: v9.0.0

9.0.0 (2023-08-31)

Features

fb31c7e trigger release process (@lukekarrys)

... (truncated)

Changelog

Sourced from npm's changelog.

10.2.4 (2023-11-14)

Bug Fixes

cd291e7 #6995 refactor search formatting code (#6995) (@wraithgar)

f3a7380 #6973 look in workspace for exec commands (#6973) (@wraithgar)

d11496b #6977 pkg: properly output in workspace mode (#6977) (@wraithgar)

0f70088 #6969 correctly handle object licenses in SBOM generation (#6969) (@jamietanna)

dce3b08 #6951 properly catch missing url opener error (#6951) (@wraithgar)

Documentation

a38836c #6616 add path usage for view command (#6616) (@RobinKnipe)

da18e4f #6987 update npm-prune description (#6987) (@Eomm)

Dependencies

e9ec2f7 #6994 lru-cache@10.0.2

faf9eff #6994 is-core-module@2.13.1

b00e780 #6994 @sigstore/sign@2.2.0

4613774 #6994 hoisting newer deps in favor of older ones

54c4f7b #6994 signal-exit@4.1.0

8c5882f #6994 strip-ansi@7.1.0

cd0c649 #6994 ci-info@4.0.0

a0a58b7 #6994 @sigstore/tuf@2.2.0

b3a53c6 #6949 is-cidr@5.0.3 (#6949)

Workspace: @npmcli/config@8.0.2

Workspace: libnpmexec@7.0.4

Workspace: libnpmpublish@9.0.2

10.2.3 (2023-11-02)

Dependencies

b5dedf3 #6958 node-gyp@10.0.1

10.2.2 (2023-10-31)

Bug Fixes

8ed6d28 #6910 make npm link respect --no-save (#6910) (@Santoshraj2)

eacec5f #6941 add back bin/node-gyp-bin/node-gyp files (#6941) (@lukekarrys)

b776753 #6928 Grammar mistake in authentication error message (#6928) (@Gekuro, gek)

Documentation

c422a01 #6924 use markdown links instead of html (@lukekarrys)

dd03aa0 #6921 add v9 and above for lockfile version 3 (#6921) (@MikeMcC399)

Dependencies

... (truncated)

Commits

7788ef2 chore: release 10.2.4
a38836c docs: add path usage for view command (#6616)
cd291e7 fix: refactor search formatting code (#6995)
e9ec2f7 deps: lru-cache@10.0.2
faf9eff deps: is-core-module@2.13.1
b00e780 deps: @sigstore/sign@2.2.0
4613774 deps: hoisting newer deps in favor of older ones
54c4f7b deps: signal-exit@4.1.0
1acb277 chore: eslint@8.53.0
5faab9f chore: nock@13.3.8
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

update-docs[bot] commented 1 year ago

Thanks for opening this pull request! The maintainers of this repository would appreciate it if you would create a changelog item based on your changes.