build(deps): bump tar and npm in /extensions/react-widget #920

dependabot · 2024-04-09T21:09:52Z

Removes tar. It's no longer used after updating ancestor dependency npm. These dependencies need to be updated together.

Removes tar

Updates npm from 10.5.0 to 10.5.1

Changelog

Sourced from npm's changelog.

10.5.1 (2024-04-03)

Bug Fixes

17d97d2 #7334 use @npmcli/redact for log redactions (@lukekarrys)

8cab136 #7324 ensure maxSockets is respected (#7324) (@lukekarrys)

9bffa13 #7320 query: properly return :missing nodes (#7320) (@wraithgar)

9d4e85f #7297 search: include searchlimit option in help output (#7297) (@10xLaCroixDrinker)

bdb3c28 #7274 added check for dry-run (#7274) (@cod1r)

7f1ab88 #7271 more lightweight npm bin discovery in windows (#7271) (@wraithgar)

Documentation

1da5cf0 #7198 add link to engines section (#7198) (@uiolee)

1114a12 #7307 fix incorrect npm audit key response link (#7307) (@davidlj95)

9807caf #7304 update audit docs with provenance info (#7304) (@bdehamer)

e1ecfa7 #7285 Correct capitalization for URL (#7285) (@coliff)

Dependencies

87a61fc #7334 npm-registry-fetch@16.2.0

5469614 #7327 init-package-json@6.0.2

5469614 #7327 promzard@1.0.1

5469614 #7327 read@3.0.1 (#7327)

9ccff72 #7329 tar@6.2.1

7201a00 #7329 node-gyp@10.1.0

6fd94f2 #7329 minimatch@9.0.4

b048592 #7329 ini@4.1.2

c54a84a #7329 glob@10.3.12

6853531 #7329 cli-table3@0.6.4

c9315cb #7329 binary-extensions@2.3.0

5bb0031 #7329 @sigstore/tuf@2.3.2

8cab136 #7324 agent-base@7.1.1 (@lukekarrys)

workspace: @npmcli/arborist@7.4.1

workspace: @npmcli/config@8.2.1

workspace: libnpmaccess@8.0.3

workspace: libnpmdiff@6.0.8

workspace: libnpmexec@7.0.9

workspace: libnpmfund@5.0.6

workspace: libnpmhook@10.0.2

workspace: libnpmorg@6.0.3

workspace: libnpmpack@6.0.8

workspace: libnpmpublish@9.0.5

workspace: libnpmsearch@7.0.2

workspace: libnpmteam@6.0.2

Chores

8cab136 #7324 add smoke-test for large prod installs (@lukekarrys)

0dab381 #7258 jsdom@24.0.0 (#7258) (@wraithgar)

... (truncated)

Commits

f84b753 chore: release 10.5.1
87a61fc deps: npm-registry-fetch@16.2.0
17d97d2 fix: use @npmcli/redact for log redactions
5469614 deps: read@3.0.1 (#7327)
9ccff72 deps: tar@6.2.1
7201a00 deps: node-gyp@10.1.0
6fd94f2 deps: minimatch@9.0.4
b048592 deps: ini@4.1.2
c54a84a deps: glob@10.3.12
6853531 deps: cli-table3@0.6.4
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Removes [tar](https://github.com/isaacs/node-tar). It's no longer used after updating ancestor dependency [npm](https://github.com/npm/cli). These dependencies need to be updated together. Removes `tar` Updates `npm` from 10.5.0 to 10.5.1 - [Release notes](https://github.com/npm/cli/releases) - [Changelog](https://github.com/npm/cli/blob/latest/CHANGELOG.md) - [Commits](npm/cli@v10.5.0...v10.5.1) --- updated-dependencies: - dependency-name: tar dependency-type: indirect - dependency-name: npm dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

vercel · 2024-04-09T21:09:55Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
docs-gpt	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Apr 9, 2024 9:12pm
nextra-docsgpt	🔄 Building (Inspect)	Visit Preview		Apr 9, 2024 9:12pm

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 9, 2024

github-actions bot added the extensions Extensions label Apr 9, 2024

vercel bot deployed to Preview – docs-gpt April 9, 2024 21:12 View deployment

vercel bot deployed to Preview – nextra-docsgpt April 9, 2024 21:13 View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump tar and npm in /extensions/react-widget #920

build(deps): bump tar and npm in /extensions/react-widget #920

dependabot bot commented on behalf of github Apr 9, 2024

vercel bot commented Apr 9, 2024 •

edited

build(deps): bump tar and npm in /extensions/react-widget #920

Are you sure you want to change the base?

build(deps): bump tar and npm in /extensions/react-widget #920

Conversation

dependabot bot commented on behalf of github Apr 9, 2024

10.5.1 (2024-04-03)

Bug Fixes

Documentation

Dependencies

Chores

vercel bot commented Apr 9, 2024 • edited

vercel bot commented Apr 9, 2024 •

edited