Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump braces, commitizen and danger #86

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 12, 2024

Bumps braces to 3.0.3 and updates ancestor dependencies braces, commitizen and danger. These dependencies need to be updated together.

Updates braces from 3.0.2 to 3.0.3

Commits

Updates commitizen from 4.1.2 to 4.3.0

Release notes

Sourced from commitizen's releases.

v4.3.0

4.3.0 (2023-01-19)

Features

v4.2.6

4.2.6 (2022-12-06)

Bug Fixes

  • sec: upgrade semantic-release to 19.0.3 (#953) (815c69d)

v4.2.5

4.2.5 (2022-07-17)

Bug Fixes

  • deps: update all non-major dependencies (69de704)
  • deps: update all non-major dependencies (3c2553f)
  • deps: update dependencies from renovatebot PRs (#862) (64a8ed6)
  • deps: update dependency glob to v7.1.6 (#861) (2505419)
  • deps: update dependency inquirer to v8 (#874) (9c7e863)
  • do not include .nyc_output in published files (#851) (68c377b), closes 4.2.4#d2h-425221 #730
  • fix the "isFunction" utility to match both "asyncFunction"s and "Function"s (#927) (25dc80c), closes #926
  • git-cz.js,staging.js: check for staged files before running prompt (#818) (fdb73cd), closes #785 #585 #785

v4.2.4

4.2.4 (2021-05-07)

Bug Fixes

  • deps: update find-node-modules to ^2.1.2 (#824) (e434901)

v4.2.3

4.2.3 (2021-01-15)

Bug Fixes

  • revert "use cz-conventional-changelog as default adapter (#778)" (#792) (f2fad87)

v4.2.2

4.2.2 (2020-10-20)

... (truncated)

Commits
  • c1f4142 feat(init): add pnpm support (#915)
  • 87138d3 chore(deps) Update all non-major dependencies
  • 815c69d fix(sec): upgrade semantic-release to 19.0.3 (#953)
  • 0939910 ci(release): defined a github workflow to release with semantic-release (#923)
  • 757a806 chore(deps): update all non-major dependencies
  • 25dc80c fix: fix the "isFunction" utility to match both "asyncFunction"s and "Functio...
  • fc283fb chore(deps): update dependency semver to v7.3.7
  • c35a3c7 chore(deps): update all non-major dependencies
  • 69de704 fix(deps): update all non-major dependencies
  • e79f3ee chore(deps): update dependency @​babel/core to v7.17.8
  • Additional commits viewable in compare view

Updates danger from 10.2.1 to 10.9.0

Release notes

Sourced from danger's releases.

Release 10.9.0

  • Prepare for release (34fe471)
  • Merge branch 'adjust-structured-diff-return-value' into main (06928e3)
  • Merge pull request #1201 from berlysia/adjust-structured-diff-return-value (fb66c81)
  • Lock node-fetch to the latest 2.x (6303c88)
  • Merge pull request #1198 from jonny133/jonny133-node-fetch-2_6_7 (9049848)
  • now structuredDiffForFile is well-typed (dc54972)
  • make structuredDiffForFile for BitBucketServer the same as the others (0b5865f)
  • Resolve node-fetch to 2.6.7 (ab77e3c)
  • Merge pull request #1197 from danger/fb/fix-moved-json-crash (a7355a3)
  • Cleanup debug log (3411074)
  • Don't crash when danger.git.JSONDiffForFile encounters a moved JSON file (99e19f7)
  • Merge pull request #1176 from Rouby/patch-1 (d896baf)
  • Merge branch 'main' into patch-1 (4804f80)
  • Merge branch 'main' of https://github.com/danger/danger-js into patch-1 (38a963e)
  • add changelog entry for pr 1176 (68ab2e9)
  • extend github api to send complete reviews (fb630ec)

Release 10.8.0

  • Faff (7ae4121)
  • Merge pull request #1188 from danger/fb/release-10.8.0 (cb52e29)
  • Fix the yml (cf48b28)
  • Merge pull request #1191 from danger/pr_body (ac8d0e8)
  • Faff (6772c4f)
  • Ensure the pr body always exists (dfd4c81)
  • Merge pull request #1189 from danger/fb/node-14 (a64699c)
  • Update .babelrc (7b7529e)
  • Merge pull request #1190 from danger/fb/parse-link-header-update (4b63bdf)
  • Fix: Updates parse-link-header for CVE-2021-23490 (fdf44e6)
  • Switch to node-14 as the oldest tested environment (fc4f607)
  • Release 10.8.0 (08d3498)
  • Merge branch 'main' of https://github.com/danger/danger-js into main (7c026f9)
  • Merge pull request #1177 from danger/output-json (d8ac772)
  • README (3df5838)
  • Merge pull request #1174 from unfernandito/main (a2be690)
  • add ability to ouput results as JSON (9fe7d5e)
  • chore: update package json to fix security problem (3150f56)

Release 10.7.1

  • CHANGELOG (2e2f5e2)
  • Merge pull request #1171 from nicholasrussell-mylo/critical-audit-deps (0672d7a)
  • Update micromatch to resolve critical audit dependency vulnerability (c74329c)
  • Merge pull request #1166 from acherkashin/gitlab_reviewers (6db972a)
  • add reviewers and assignees fields for GitLab API (22c07ac)

Release 10.7.0

  • Prepare for release (a9e765d)
  • Merge pull request #1162 from bobergj/ci-xcode-cloud (933240d)
  • Fix test indentation. (2860fcc)
  • Add support for Xcode Cloud CI. (6ebd330)

... (truncated)

Changelog

Sourced from danger's changelog.

Main

12.3.1

  • Fixes for created, modified ,deleted files in GitHub - [@​szweier]
  • Dont log about github.pr not being available in pull_request_target - [@​sayali10]

12.3.0

  • Dockerfile changes - [@​glensc]
  • Use node 18 for pre-built versions of danger (used by Danger Swift / Kotlin et al) - [@​heltoft]

12.2.0

  • Adds a log when you run on GitHub Actions without being a pull_request - [@​orta]
  • GitHub: Move to 'List pull request files' API with pagination support [@​fabianehlert]

12.1.0

It's been 7 years since I looked at danger init and err, the world of CI has changed quite a bit since then. So, Danger JS's init command now knows that GitHub Actions exists and will correctly offer some advice on how to set up a Dangerfile for it. - [@​orta]

12.0.0

Bumping to 12.x because we've raised the minimum to node version from 14 to 18. This is due to some of our dependencies requiring a newer version of node. This is a breaking change for some folk! Also, 14 has been out of support for quite a while now and Node 18 gives us a full year. - [@​orta]

  • Remove the user checks in GitHub comment/inline comment lookups, to allow using app tokens #1433 - [@​orta]
  • Upgrade node engine from >=14.13.1 to >=18 [@​heltoft]
  • Upgrade @types/node from ^10.11.3 to 18.19.18 [@​heltoft]
  • GitLab: #1386 Move from @gitbeaker/node to @gitbeaker/rest [@​heltoft]

... (truncated)

Commits
  • 202d727 Release 10.9.0
  • 34fe471 Prepare for release
  • 06928e3 Merge branch 'adjust-structured-diff-return-value' into main
  • fb66c81 Merge pull request #1201 from berlysia/adjust-structured-diff-return-value
  • 6303c88 Lock node-fetch to the latest 2.x
  • 9049848 Merge pull request #1198 from jonny133/jonny133-node-fetch-2_6_7
  • dc54972 now structuredDiffForFile is well-typed
  • 0b5865f make structuredDiffForFile for BitBucketServer the same as the others
  • ab77e3c Resolve node-fetch to 2.6.7
  • a7355a3 Merge pull request #1197 from danger/fb/fix-moved-json-crash
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [braces](https://github.com/micromatch/braces) to 3.0.3 and updates ancestor dependencies [braces](https://github.com/micromatch/braces), [commitizen](https://github.com/commitizen/cz-cli) and [danger](https://github.com/danger/danger-js). These dependencies need to be updated together.


Updates `braces` from 3.0.2 to 3.0.3
- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md)
- [Commits](micromatch/braces@3.0.2...3.0.3)

Updates `commitizen` from 4.1.2 to 4.3.0
- [Release notes](https://github.com/commitizen/cz-cli/releases)
- [Commits](commitizen/cz-cli@v4.1.2...v4.3.0)

Updates `danger` from 10.2.1 to 10.9.0
- [Release notes](https://github.com/danger/danger-js/releases)
- [Changelog](https://github.com/danger/danger-js/blob/main/CHANGELOG.md)
- [Commits](danger/danger-js@10.2.1...10.9.0)

---
updated-dependencies:
- dependency-name: braces
  dependency-type: indirect
- dependency-name: commitizen
  dependency-type: direct:development
- dependency-name: danger
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jun 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants