search

robotty / dank-twitch-irc

Connect to Twitch chat from Node.js
https://www.npmjs.com/package/dank-twitch-irc
MIT License
88 stars 25 forks source link

Bump dangoslen/changelog-enforcer from v2.1.0 to v2.2.0 #326

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps dangoslen/changelog-enforcer from v2.1.0 to v2.2.0.

Release notes

Sourced from dangoslen/changelog-enforcer's releases.

Changelog Enforcer 2.2.0

Changed

  • The pull_request workflow now executes as a pull_request_target workflow to handle incoming pull requests from forked repos.
    • This is needed because Dependabot now works as a forked branch. The reasoning and ways to accomodate are listed in a GitHub Security article
    • The verified label is needed to allow the workflow to execute

Dependencies

  • Bumps uglify-js from 3.13.2 to 3.13.3
  • Bumps y18n from 4.0.1 to 5.0.8
  • Bumps @vercel/ncc from 0.27.0 to 0.28.2
  • Bumps @actions/core from 1.2.6 to 1.2.7
  • Bumps eslint from 7.23.0 to 7.25.0
Changelog

Sourced from dangoslen/changelog-enforcer's changelog.

[v2.2.0]

Changed

  • The pull_request workflow now executes as a pull_request_target workflow to handle incoming pull requests from forked repos.
    • This is needed because Dependabot now works as a forked branch. The reasoning and ways to accomodate are listed in a GitHub Security article
    • The verified label is needed to allow the workflow to execute

Dependencies

  • Bumps uglify-js from 3.13.2 to 3.13.3
  • Bumps y18n from 4.0.1 to 5.0.8
  • Bumps @vercel/ncc from 0.27.0 to 0.28.2
  • Bumps @actions/core from 1.2.6 to 1.2.7
  • Bumps eslint from 7.23.0 to 7.25.0
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)