Skip to content

Commit

Permalink
build(deps-dev): bump @semantic-release/npm from 11.0.2 to 12.0.0 (#16)
Browse files Browse the repository at this point in the history 
Bumps [@semantic-release/npm](https://github.com/semantic-release/npm)
from 11.0.2 to 12.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/semantic-release/npm/releases"><code>@​semantic-release/npm</code>'s
releases</a>.</em></p>
<blockquote>
<h2>v12.0.0</h2>
<h1><a
href="https://github.com/semantic-release/npm/compare/v11.0.3...v12.0.0">12.0.0</a>
(2024-03-16)</h1>
<h3>Features</h3>
<ul>
<li><strong>exports:</strong> defined <code>exports</code> to point at
./index.js (<a
href="https://github.com/semantic-release/npm/commit/9e193c2239ee651d5a1fddce499edb664140938f">9e193c2</a>)</li>
<li><strong>node-versions:</strong> dropped support for node v18 and v19
(<a
href="https://github.com/semantic-release/npm/commit/2df962b6c7563a3a797ab6d54e0e071dd898f08c">2df962b</a>)</li>
</ul>
<h3>BREAKING CHANGES</h3>
<ul>
<li><strong>exports:</strong> <code>exports</code> has been defined,
which prevents access to private apis (which arent
intended for consumption anyway)</li>
<li><strong>node-versions:</strong> node v18 and v19 are no longer
supported</li>
</ul>
<h2>v11.0.3</h2>
<h2><a
href="https://github.com/semantic-release/npm/compare/v11.0.2...v11.0.3">11.0.3</a>
(2024-03-01)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> raised the minimum accepted range of npm to
v10.5.0 (<a
href="https://redirect.github.com/semantic-release/npm/issues/759">#759</a>)
(<a
href="https://github.com/semantic-release/npm/commit/a0313f82060ec344d77443a9b1b28e87178dcf78">a0313f8</a>),
closes <a
href="https://redirect.github.com/semantic-release/semantic-release/issues/3202">semantic-release/semantic-release#3202</a></li>
</ul>
<p>even though our existing range allowed anyone to update as soon as
the new npm version was available, this will encourage being on a
version that does not report the ip vulnerability a bit more
forcefully</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/semantic-release/npm/commit/702c68aa6b19c6b4780c6e63aadf30d12b24b858"><code>702c68a</code></a>
Merge pull request <a
href="https://redirect.github.com/semantic-release/npm/issues/766">#766</a>
from semantic-release/next-major</li>
<li><a
href="https://github.com/semantic-release/npm/commit/adb1ded042021316d17aad2412570c83ffd707ef"><code>adb1ded</code></a>
ci(verify): updated to follow modern conventions</li>
<li><a
href="https://github.com/semantic-release/npm/commit/9e193c2239ee651d5a1fddce499edb664140938f"><code>9e193c2</code></a>
feat(exports): defined <code>exports</code> to point at ./index.js</li>
<li><a
href="https://github.com/semantic-release/npm/commit/2df962b6c7563a3a797ab6d54e0e071dd898f08c"><code>2df962b</code></a>
feat(node-versions): dropped support for node v18 and v19</li>
<li><a
href="https://github.com/semantic-release/npm/commit/c7f9b0a0286174c166793f641b9b208db7d0656a"><code>c7f9b0a</code></a>
chore(deps): update dependency got to v14.2.1 (<a
href="https://redirect.github.com/semantic-release/npm/issues/762">#762</a>)</li>
<li><a
href="https://github.com/semantic-release/npm/commit/a0313f82060ec344d77443a9b1b28e87178dcf78"><code>a0313f8</code></a>
fix(deps): raised the minimum accepted range of npm to v10.5.0 (<a
href="https://redirect.github.com/semantic-release/npm/issues/759">#759</a>)</li>
<li><a
href="https://github.com/semantic-release/npm/commit/6752218efdbe059f8d76b1467241758dd64b39d8"><code>6752218</code></a>
chore(deps): update dependency ava to v6.1.2 (<a
href="https://redirect.github.com/semantic-release/npm/issues/758">#758</a>)</li>
<li><a
href="https://github.com/semantic-release/npm/commit/c5fdc716556dd3735ac51de3fcf3a56b0e6c7098"><code>c5fdc71</code></a>
chore(deps): lock file maintenance (<a
href="https://redirect.github.com/semantic-release/npm/issues/757">#757</a>)</li>
<li><a
href="https://github.com/semantic-release/npm/commit/ba9b44399d3777cb9f221ddfe7ffaf1efbe0c1a5"><code>ba9b443</code></a>
chore(deps): lock file maintenance (<a
href="https://redirect.github.com/semantic-release/npm/issues/755">#755</a>)</li>
<li><a
href="https://github.com/semantic-release/npm/commit/f6be3742f607c43b023cd80cb762f6c5f9cb5740"><code>f6be374</code></a>
chore(deps): lock file maintenance</li>
<li>Additional commits viewable in <a
href="https://github.com/semantic-release/npm/compare/v11.0.2...v12.0.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@semantic-release/npm&package-manager=npm_and_yarn&previous-version=11.0.2&new-version=12.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
@dependabot
dependabot[bot] authored Apr 1, 2024
1 parent e692149 commit d20f5f8
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 34 deletions.
39 changes: 6 additions & 33 deletions package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@
"@semantic-release/changelog": "^6.0.3",
"@semantic-release/exec": "^6.0.3",
"@semantic-release/git": "^10.0.1",
"@semantic-release/npm": "^11.0.2",
"@semantic-release/npm": "^12.0.0",
"@tsconfig/svelte": "^5.0.4",
"@vitest/coverage-v8": "^1.3.1",
"@vitest/ui": "^1.2.2",
Expand Down

0 comments on commit d20f5f8

Please sign in to comment.