Closed dependabot[bot] closed 7 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/@semantic-release/npm@12.0.0 | filesystem Transitive: environment, eval, network, shell, unsafe | +79 |
13.2 MB | semantic-release-bot |
🚮 Removed packages: npm/@semantic-release/npm@11.0.3
:tada: This PR is included in version 4.1.3 :tada:
The release is available on:
Your semantic-release bot :package::rocket:
Bumps @semantic-release/npm from 11.0.3 to 12.0.0.
Release notes
Sourced from
@semantic-release/npm
's releases.Commits
702c68a
Merge pull request #766 from semantic-release/next-majoradb1ded
ci(verify): updated to follow modern conventions9e193c2
feat(exports): definedexports
to point at ./index.js2df962b
feat(node-versions): dropped support for node v18 and v19c7f9b0a
chore(deps): update dependency got to v14.2.1 (#762)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show