From f20c1be2af3e7ecf9b4513520693cdc7512366e7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 31 Jul 2024 00:11:29 -0400
Subject: [PATCH 1/5] chore: bump @npmcli/template-oss from 4.22.0 to 4.23.1
(#119)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.22.0 to 4.23.1.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.23.1
4.23.1
(2024-07-17)
Bug Fixes
v4.23.0
4.23.0
(2024-06-27)
Features
Bug Fixes
Dependencies
Chores
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.23.1
(2024-07-17)
Bug Fixes
4.23.0
(2024-06-27)
Features
Bug Fixes
Dependencies
Chores
Commits
4ef5cf6
chore: release 4.23.1 (#463)ca47705
fix: Use include-workspace-root for /main in
Post Dependabot (#462)9acf69e
chore: release 4.23.0 (#445)8252fb2
deps: bump release-please from 16.10.2 to 16.12.0 (#452)b07d17a
chore: add .git-blame-ignore-revs for initial prettier (#448)b35bca5
fix: run prettier210247e
chore: add prettier:true to template-oss config60ee94f
feat: add prettier support8aef509
fix: dont conclude checks if they were never set (#446)9440c4f
fix: pass releases to publish check (#444)- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Chris Sidi
---
.github/actions/create-check/action.yml | 2 +-
.github/actions/install-latest-npm/action.yml | 2 +-
.github/workflows/ci-release.yml | 4 ++--
.github/workflows/post-dependabot.yml | 2 +-
.gitignore | 7 ++++---
SECURITY.md | 2 +-
package.json | 13 +++++++------
7 files changed, 17 insertions(+), 15 deletions(-)
diff --git a/.github/actions/create-check/action.yml b/.github/actions/create-check/action.yml
index aa24a5b..d1220c9 100644
--- a/.github/actions/create-check/action.yml
+++ b/.github/actions/create-check/action.yml
@@ -25,7 +25,7 @@ runs:
with:
result-encoding: string
script: |
- const { repo: { owner, repo}, runId, serverUrl } = context
+ const { repo: { owner, repo}, runId, serverUrl } = context
const { JOB_NAME, SHA } = process.env
const job = await github.rest.actions.listJobsForWorkflowRun({
diff --git a/.github/actions/install-latest-npm/action.yml b/.github/actions/install-latest-npm/action.yml
index 8339dbf..580603d 100644
--- a/.github/actions/install-latest-npm/action.yml
+++ b/.github/actions/install-latest-npm/action.yml
@@ -44,7 +44,7 @@ runs:
MATCH=$SPEC
echo "Found compatible version: npm@$MATCH"
break
- fi
+ fi
done
if [ -z $MATCH ]; then
diff --git a/.github/workflows/ci-release.yml b/.github/workflows/ci-release.yml
index ae2532c..d8d761f 100644
--- a/.github/workflows/ci-release.yml
+++ b/.github/workflows/ci-release.yml
@@ -61,7 +61,7 @@ jobs:
run: npm run postlint --ignore-scripts
- name: Conclude Check
uses: LouisBrunner/checks-action@v1.6.0
- if: always()
+ if: steps.create-check.outputs.check-id && always()
with:
token: ${{ secrets.GITHUB_TOKEN }}
conclusion: ${{ job.status }}
@@ -151,7 +151,7 @@ jobs:
run: npm test --ignore-scripts
- name: Conclude Check
uses: LouisBrunner/checks-action@v1.6.0
- if: always()
+ if: steps.create-check.outputs.check-id && always()
with:
token: ${{ secrets.GITHUB_TOKEN }}
conclusion: ${{ job.status }}
diff --git a/.github/workflows/post-dependabot.yml b/.github/workflows/post-dependabot.yml
index a7ebe12..1ea8693 100644
--- a/.github/workflows/post-dependabot.yml
+++ b/.github/workflows/post-dependabot.yml
@@ -49,7 +49,7 @@ jobs:
id: flags
run: |
dependabot_dir="${{ steps.metadata.outputs.directory }}"
- if [[ "$dependabot_dir" == "/" ]]; then
+ if [[ "$dependabot_dir" == "/" || "$dependabot_dir" == "/main" ]]; then
echo "workspace=-iwr" >> $GITHUB_OUTPUT
else
# strip leading slash from directory so it works as a
diff --git a/.gitignore b/.gitignore
index 773cada..2bab6d1 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,17 +2,17 @@
# ignore everything in the root
/*
-# transient test directories
-tap-testdir*/
-# keep these
!**/.gitignore
!/.commitlintrc.js
!/.eslintrc.js
!/.eslintrc.local.*
+!/.git-blame-ignore-revs
!/.github/
!/.gitignore
!/.npmrc
+!/.prettierignore
+!/.prettierrc.js
!/.release-please-manifest.json
!/bin/
!/CHANGELOG*
@@ -30,3 +30,4 @@ tap-testdir*/
!/tap-snapshots/
!/test/
!/tsconfig.json
+tap-testdir*/
diff --git a/SECURITY.md b/SECURITY.md
index 9cd2dea..4fe06a2 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -2,7 +2,7 @@
GitHub takes the security of our software products and services seriously, including the open source code repositories managed through our GitHub organizations, such as [GitHub](https://github.com/GitHub).
-If you believe you have found a security vulnerability in this GitHub-owned open source repository, you can report it to us in one of two ways.
+If you believe you have found a security vulnerability in this GitHub-owned open source repository, you can report it to us in one of two ways.
If the vulnerability you have found is *not* [in scope for the GitHub Bug Bounty Program](https://bounty.github.com/#scope) or if you do not wish to be considered for a bounty reward, please report the issue to us directly through [opensource-security@github.com](mailto:opensource-security@github.com).
diff --git a/package.json b/package.json
index 0dc6974..2068c85 100644
--- a/package.json
+++ b/package.json
@@ -9,11 +9,12 @@
"scripts": {
"snap": "tap",
"test": "tap",
- "lint": "eslint \"**/*.{js,cjs,ts,mjs,jsx,tsx}\"",
+ "lint": "npm run eslint",
"postlint": "template-oss-check",
- "lintfix": "npm run lint -- --fix",
+ "lintfix": "npm run eslint -- --fix",
"posttest": "npm run lint",
- "template-oss-apply": "template-oss-apply --force"
+ "template-oss-apply": "template-oss-apply --force",
+ "eslint": "eslint \"**/*.{js,cjs,ts,mjs,jsx,tsx}\""
},
"files": [
"bin/",
@@ -30,8 +31,8 @@
"author": "GitHub Inc.",
"license": "ISC",
"devDependencies": {
- "@npmcli/eslint-config": "^4.0.2",
- "@npmcli/template-oss": "4.22.0",
+ "@npmcli/eslint-config": "^4.0.5",
+ "@npmcli/template-oss": "4.23.1",
"tap": "^16.0.1"
},
"dependencies": {
@@ -42,7 +43,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.22.0",
+ "version": "4.23.1",
"allowedPackages": [
"eslint",
"eslint-plugin-node",
From 043dafe1ae35ae629d1e7ad9032bda93c3bb019b Mon Sep 17 00:00:00 2001
From: Chris Sidi
Date: Mon, 26 Aug 2024 11:09:06 -0400
Subject: [PATCH 2/5] fix!: align to npm 10 node engine range
BREAKING CHANGE: `@npmcli/eslint-config` now supports node `^18.17.0 || >=20.5.0`
---
package.json | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/package.json b/package.json
index 2068c85..13386d2 100644
--- a/package.json
+++ b/package.json
@@ -39,7 +39,7 @@
"which": "^3.0.0"
},
"engines": {
- "node": "^14.17.0 || ^16.13.0 || >=18.0.0"
+ "node": "^18.17.0 || >=20.5.0"
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
From 963a8f75ac84979dc7041a6afb83a468454f73ec Mon Sep 17 00:00:00 2001
From: Chris Sidi
Date: Mon, 26 Aug 2024 11:09:32 -0400
Subject: [PATCH 3/5] chore: run template-oss-apply
---
.github/workflows/ci-release.yml | 19 +++++--------------
.github/workflows/ci.yml | 19 +++++--------------
2 files changed, 10 insertions(+), 28 deletions(-)
diff --git a/.github/workflows/ci-release.yml b/.github/workflows/ci-release.yml
index d8d761f..673f9ca 100644
--- a/.github/workflows/ci-release.yml
+++ b/.github/workflows/ci-release.yml
@@ -87,27 +87,18 @@ jobs:
os: windows-latest
shell: cmd
node-version:
- - 14.17.0
- - 14.x
- - 16.13.0
- - 16.x
- - 18.0.0
+ - 18.17.0
- 18.x
+ - 20.5.0
- 20.x
- 22.x
exclude:
- - platform: { name: macOS, os: macos-latest, shell: bash }
- node-version: 14.17.0
- - platform: { name: macOS, os: macos-latest, shell: bash }
- node-version: 14.x
- platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 16.13.0
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 16.x
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.0.0
+ node-version: 18.17.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 18.x
+ - platform: { name: macOS, os: macos-13, shell: bash }
+ node-version: 20.5.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 20.x
- platform: { name: macOS, os: macos-13, shell: bash }
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 28dca18..a44b227 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -64,27 +64,18 @@ jobs:
os: windows-latest
shell: cmd
node-version:
- - 14.17.0
- - 14.x
- - 16.13.0
- - 16.x
- - 18.0.0
+ - 18.17.0
- 18.x
+ - 20.5.0
- 20.x
- 22.x
exclude:
- - platform: { name: macOS, os: macos-latest, shell: bash }
- node-version: 14.17.0
- - platform: { name: macOS, os: macos-latest, shell: bash }
- node-version: 14.x
- platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 16.13.0
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 16.x
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.0.0
+ node-version: 18.17.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 18.x
+ - platform: { name: macOS, os: macos-13, shell: bash }
+ node-version: 20.5.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 20.x
- platform: { name: macOS, os: macos-13, shell: bash }
From e8a836b156e8906724a05aa07d3ae8cd70e670ee Mon Sep 17 00:00:00 2001
From: Chris Sidi
Date: Mon, 26 Aug 2024 11:09:33 -0400
Subject: [PATCH 4/5] deps: which@4.0.0
---
package.json | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/package.json b/package.json
index 13386d2..24455d4 100644
--- a/package.json
+++ b/package.json
@@ -36,7 +36,7 @@
"tap": "^16.0.1"
},
"dependencies": {
- "which": "^3.0.0"
+ "which": "^4.0.0"
},
"engines": {
"node": "^18.17.0 || >=20.5.0"
From 9b0dfca312ba80478315856b521d52df5f85012e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
<41898282+github-actions[bot]@users.noreply.github.com>
Date: Mon, 26 Aug 2024 12:37:27 -0400
Subject: [PATCH 5/5] chore: release 5.0.0 (#124)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
:robot: I have created a release *beep* *boop*
---
## [5.0.0](https://github.com/npm/eslint-config/compare/v4.0.5...v5.0.0)
(2024-08-26)
### ⚠️ BREAKING CHANGES
* `@npmcli/eslint-config` now supports node `^18.17.0 || >=20.5.0`
### Bug Fixes
*
[`043dafe`](https://github.com/npm/eslint-config/commit/043dafe1ae35ae629d1e7ad9032bda93c3bb019b)
[#123](https://github.com/npm/eslint-config/pull/123) align to npm 10
node engine range (@hashtagchris)
### Dependencies
*
[`e8a836b`](https://github.com/npm/eslint-config/commit/e8a836b156e8906724a05aa07d3ae8cd70e670ee)
[#123](https://github.com/npm/eslint-config/pull/123) `which@4.0.0`
### Chores
*
[`963a8f7`](https://github.com/npm/eslint-config/commit/963a8f75ac84979dc7041a6afb83a468454f73ec)
[#123](https://github.com/npm/eslint-config/pull/123) run
template-oss-apply (@hashtagchris)
*
[`f20c1be`](https://github.com/npm/eslint-config/commit/f20c1be2af3e7ecf9b4513520693cdc7512366e7)
[#119](https://github.com/npm/eslint-config/pull/119) bump
@npmcli/template-oss from 4.22.0 to 4.23.1 (#119) (@dependabot[bot],
@hashtagchris)
---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
---
.release-please-manifest.json | 2 +-
CHANGELOG.md | 19 +++++++++++++++++++
package.json | 2 +-
3 files changed, 21 insertions(+), 2 deletions(-)
diff --git a/.release-please-manifest.json b/.release-please-manifest.json
index 824fecd..32dbe0e 100644
--- a/.release-please-manifest.json
+++ b/.release-please-manifest.json
@@ -1,3 +1,3 @@
{
- ".": "4.0.5"
+ ".": "5.0.0"
}
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 75119a2..1a09e9e 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,24 @@
# Changelog
+## [5.0.0](https://github.com/npm/eslint-config/compare/v4.0.5...v5.0.0) (2024-08-26)
+
+### ⚠️ BREAKING CHANGES
+
+* `@npmcli/eslint-config` now supports node `^18.17.0 || >=20.5.0`
+
+### Bug Fixes
+
+* [`043dafe`](https://github.com/npm/eslint-config/commit/043dafe1ae35ae629d1e7ad9032bda93c3bb019b) [#123](https://github.com/npm/eslint-config/pull/123) align to npm 10 node engine range (@hashtagchris)
+
+### Dependencies
+
+* [`e8a836b`](https://github.com/npm/eslint-config/commit/e8a836b156e8906724a05aa07d3ae8cd70e670ee) [#123](https://github.com/npm/eslint-config/pull/123) `which@4.0.0`
+
+### Chores
+
+* [`963a8f7`](https://github.com/npm/eslint-config/commit/963a8f75ac84979dc7041a6afb83a468454f73ec) [#123](https://github.com/npm/eslint-config/pull/123) run template-oss-apply (@hashtagchris)
+* [`f20c1be`](https://github.com/npm/eslint-config/commit/f20c1be2af3e7ecf9b4513520693cdc7512366e7) [#119](https://github.com/npm/eslint-config/pull/119) bump @npmcli/template-oss from 4.22.0 to 4.23.1 (#119) (@dependabot[bot], @hashtagchris)
+
## [4.0.5](https://github.com/npm/eslint-config/compare/v4.0.4...v4.0.5) (2024-07-01)
### Bug Fixes
diff --git a/package.json b/package.json
index 24455d4..3e6fa66 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
{
"name": "@npmcli/eslint-config",
- "version": "4.0.5",
+ "version": "5.0.0",
"description": "eslint config used by the npm cli team",
"main": "lib/index.js",
"bin": {