Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the non-breaking-changes group across 1 directory with 4 updates #375

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 23, 2024

Bumps the non-breaking-changes group with 4 updates in the / directory: @actions/artifact, @vercel/ncc, nock and undici.

Updates @actions/artifact from 2.1.8 to 2.1.9

Changelog

Sourced from @​actions/artifact's changelog.

2.1.9

  • Fixed artifact upload chunk timeout logic #1774
  • Use lazy stream to prevent issues with open file limits #1771
Commits

Updates @vercel/ncc from 0.38.1 to 0.38.2

Release notes

Sourced from @​vercel/ncc's releases.

0.38.2

0.38.2 (2024-09-23)

Bug Fixes

Commits
  • 158a1fd fix(deps): update webpack to v5.94.0, terser to v5.33.0 (#1213)
  • c1c9c65 chore(deps): Bump fast-xml-parser from 4.2.7 to 4.5.0 (#1219)
  • 6ef9a48 chore(deps-dev): Bump express from 4.18.2 to 4.20.0 (#1214)
  • 9e7451b ci: ignore failing test on macOS + run in band test-coverage (#1216)
  • b2a325d chore(ci): drop node@16 from ci (#1164)
  • 3c68358 chore(deps): Bump crypto-js from 4.1.1 to 4.2.0 (#1130)
  • a70188f chore(deps): Bump browserify-sign from 4.2.1 to 4.2.2 (#1131)
  • b4cc7c6 chore(deps): Bump actions/setup-node from 3 to 4 (#1133)
  • 5f5dda2 chore(deps): Bump @​babel/traverse from 7.13.13 to 7.23.2 (#1125)
  • See full diff in compare view

Updates nock from 13.5.4 to 13.5.5

Release notes

Sourced from nock's releases.

v13.5.5

13.5.5 (2024-08-20)

Bug Fixes

  • backport: memory leaks due to timer references outliving the timers (#2773) (#2773) (66eb7f4)
Commits
  • 66eb7f4 fix(backport): memory leaks due to timer references outliving the timers (#27...
  • e92cdfa chore(deps-dev): bump eslint-plugin-mocha from 10.4.1 to 10.5.0
  • 623c933 chore(deps-dev): bump typescript from 5.4.3 to 5.5.4
  • 2b7836d ci: exclude nodejs 10, 12 and 14 tests running on macos (#2753)
  • 565e99a chore(deps-dev): bump braces from 3.0.2 to 3.0.3 (#2752)
  • d013ed2 chore(deps-dev): bump typescript from 5.3.3 to 5.4.3
  • 7a4badb chore(deps-dev): bump semantic-release from 23.0.2 to 23.0.6
  • db0f76a chore(deps-dev): bump eslint-plugin-mocha from 10.2.0 to 10.4.1
  • e44812b chore(deps-dev): bump eslint from 8.56.0 to 8.57.0 (#2597)
  • 3659e82 chore(deps-dev): bump prettier from 3.2.4 to 3.2.5 (#2596)
  • Additional commits viewable in compare view

Updates undici from 6.19.2 to 6.19.8

Release notes

Sourced from undici's releases.

v6.19.8

Full Changelog: nodejs/undici@v6.19.7...v6.19.8

v6.19.7

Full Changelog: nodejs/undici@v6.19.6...v6.19.7

v6.19.6

Full Changelog: nodejs/undici@v6.19.5...v6.19.6

v6.19.5

Full Changelog: nodejs/undici@v6.19.4...v6.19.5

v6.19.4

Full Changelog: nodejs/undici@v6.19.3...v6.19.4

v6.19.3

Full Changelog: nodejs/undici@v6.19.2...v6.19.3

Commits
  • 3d3ce06 Bumped v6.19.8
  • cde714f use FinalizationRegistry for cloned response body (#3458)
  • dbb6b40 perf: non-recursive implementation of euclidian gcd in balanced pool (#3461)
  • 405a2ce use bodyUnusable to check if body is unusable (#3460)
  • bc46332 build: parametrize the location of wasm-opt (#3454)
  • 5287054 test: add test for memory leak (#3450)
  • c81f5a7 Bumped v6.19.7
  • 09c5667 build: remove -i flag to docker run to allow command being run without a TTY
  • b9bf7ad Bumped v6.19.6
  • 638ee32 fix: memory leak in finalization first appearing in v6.16.0 (#3445)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the non-breaking-changes group with 4 updates in the / directory: [@actions/artifact](https://github.com/actions/toolkit/tree/HEAD/packages/artifact), [@vercel/ncc](https://github.com/vercel/ncc), [nock](https://github.com/nock/nock) and [undici](https://github.com/nodejs/undici).


Updates `@actions/artifact` from 2.1.8 to 2.1.9
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/artifact/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/artifact)

Updates `@vercel/ncc` from 0.38.1 to 0.38.2
- [Release notes](https://github.com/vercel/ncc/releases)
- [Commits](vercel/ncc@0.38.1...0.38.2)

Updates `nock` from 13.5.4 to 13.5.5
- [Release notes](https://github.com/nock/nock/releases)
- [Changelog](https://github.com/nock/nock/blob/main/CHANGELOG.md)
- [Commits](nock/nock@v13.5.4...v13.5.5)

Updates `undici` from 6.19.2 to 6.19.8
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v6.19.2...v6.19.8)

---
updated-dependencies:
- dependency-name: "@actions/artifact"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: non-breaking-changes
- dependency-name: "@vercel/ncc"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-breaking-changes
- dependency-name: nock
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-breaking-changes
- dependency-name: undici
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-breaking-changes
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner September 23, 2024 18:35
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Sep 23, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 7, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Oct 7, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/non-breaking-changes-b102a9d7e3 branch October 7, 2024 19:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants