Commits
- [`eee67d0`](https://github.com/yarnpkg/yarn/commit/eee67d02ed09172d5360df0fa0b9c73e23449818) v1.22.0
- [`6971622`](https://github.com/yarnpkg/yarn/commit/69716228e9ee3592eda9c8fa142d59fec511e97c) Update CHANGELOG.md
- [`0e7133c`](https://github.com/yarnpkg/yarn/commit/0e7133ca28618513503b4e1d9063f1c18ea318e5) Fixes arbitrary file write on fetch ([#7831](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7831))
- [`fa613f3`](https://github.com/yarnpkg/yarn/commit/fa613f3a71756a06a24d6c93c6b1fa7231eccd9a) handle failed policy set-version ([#7848](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7848))
- [`f381c5f`](https://github.com/yarnpkg/yarn/commit/f381c5f0ce85a96dc1cba8e4883819ee878c949f) Implements set version ([#7862](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7862))
- [`d2c3a48`](https://github.com/yarnpkg/yarn/commit/d2c3a485e0c52a0bf855611e7065ca533ecf4f2d) Configure bug report issue template ([#7844](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7844))
- [`af4c205`](https://github.com/yarnpkg/yarn/commit/af4c2056a341b7d14ff14b43840f7cbc8a8d2d90) Allow dots in bin names ([#7811](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7811))
- [`1b334e6`](https://github.com/yarnpkg/yarn/commit/1b334e687baa75c84440def211cca0636879d14d) fix(workspaces): Pass args following "--" when running workspace scripts ([#7786](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7786))
- [`2c8e97e`](https://github.com/yarnpkg/yarn/commit/2c8e97eaf3047be92c99114b7f08aee044329a05) Fix suggestions for CLI ([#7808](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7808))
- [`039bafd`](https://github.com/yarnpkg/yarn/commit/039bafd74b7b1a88a53a54f8fa6fa872615e90e7) Fixes bin overwrites ([#7755](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7755))
- Additional commits viewable in [compare view](https://github.com/yarnpkg/yarn/compare/v1.21.1...v1.22.0)
Maintainer changes
This version was pushed to npm by [daniel15](https://www.npmjs.com/~daniel15), a new releaser for yarn since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/shopozor/services/network/alerts).
Bumps yarn from 1.21.1 to 1.22.0.
Commits
- [`eee67d0`](https://github.com/yarnpkg/yarn/commit/eee67d02ed09172d5360df0fa0b9c73e23449818) v1.22.0 - [`6971622`](https://github.com/yarnpkg/yarn/commit/69716228e9ee3592eda9c8fa142d59fec511e97c) Update CHANGELOG.md - [`0e7133c`](https://github.com/yarnpkg/yarn/commit/0e7133ca28618513503b4e1d9063f1c18ea318e5) Fixes arbitrary file write on fetch ([#7831](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7831)) - [`fa613f3`](https://github.com/yarnpkg/yarn/commit/fa613f3a71756a06a24d6c93c6b1fa7231eccd9a) handle failed policy set-version ([#7848](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7848)) - [`f381c5f`](https://github.com/yarnpkg/yarn/commit/f381c5f0ce85a96dc1cba8e4883819ee878c949f) Implements set version ([#7862](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7862)) - [`d2c3a48`](https://github.com/yarnpkg/yarn/commit/d2c3a485e0c52a0bf855611e7065ca533ecf4f2d) Configure bug report issue template ([#7844](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7844)) - [`af4c205`](https://github.com/yarnpkg/yarn/commit/af4c2056a341b7d14ff14b43840f7cbc8a8d2d90) Allow dots in bin names ([#7811](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7811)) - [`1b334e6`](https://github.com/yarnpkg/yarn/commit/1b334e687baa75c84440def211cca0636879d14d) fix(workspaces): Pass args following "--" when running workspace scripts ([#7786](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7786)) - [`2c8e97e`](https://github.com/yarnpkg/yarn/commit/2c8e97eaf3047be92c99114b7f08aee044329a05) Fix suggestions for CLI ([#7808](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7808)) - [`039bafd`](https://github.com/yarnpkg/yarn/commit/039bafd74b7b1a88a53a54f8fa6fa872615e90e7) Fixes bin overwrites ([#7755](https://github-redirect.dependabot.com/yarnpkg/yarn/issues/7755)) - Additional commits viewable in [compare view](https://github.com/yarnpkg/yarn/compare/v1.21.1...v1.22.0)Maintainer changes
This version was pushed to npm by [daniel15](https://www.npmjs.com/~daniel15), a new releaser for yarn since your current version.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/shopozor/services/network/alerts).