Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): update all non-major dependencies #1022

Merged
merged 1 commit into from
May 29, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 3, 2023

Mend Renovate

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
node (source) minor 18.16.1 -> 18.20.3 age adoption passing confidence
pnpm (source) packageManager minor 8.6.5 -> 8.15.8 age adoption passing confidence
pnpm/action-setup action minor v2.2.4 -> v2.4.0 age adoption passing confidence

Release Notes

nodejs/node (node)

v18.20.3: 2024-05-21, Version 18.20.3 'Hydrogen' (LTS), @​richardlau

Compare Source

Notable Changes

This release fixes a regression introduced in Node.js 18.19.0 where http.server.close() was incorrectly closing idle connections.

A fix has also been included for compiling Node.js from source with newer versions of Clang.

The list of keys used to sign releases has been synchronized with the current list from the main branch.

Updated dependencies
  • acorn updated to 8.11.3.
  • acorn-walk updated to 8.3.2.
  • ada updated to 2.7.8.
  • c-ares updated to 1.28.1.
  • corepack updated to 0.28.0.
  • nghttp2 updated to 1.61.0.
  • ngtcp2 updated to 1.3.0.
  • npm updated to 10.7.0. Includes a fix from npm@10.5.1 to limit the number of open connections npm/cli#7324.
  • simdutf updated to 5.2.4.
  • zlib updated to 1.3.0.1-motley-7d77fb7.
Commits

v18.20.2: 2024-04-10, Version 18.20.2 'Hydrogen' (LTS), @​RafaelGSS

Compare Source

This is a security release.

Notable Changes
  • CVE-2024-27980 - Command injection via args parameter of child_process.spawn without shell option enabled on Windows
Commits

v18.20.1

Compare Source

v18.20.0

Compare Source

v18.19.1

Compare Source

v18.19.0

Compare Source

v18.18.2

Compare Source

v18.18.1: 2023-10-10, Version 18.18.1 'Hydrogen' (LTS), @​richardlau

Compare Source

Notable Changes

This release addresses some regressions that appeared in Node.js 18.18.0:

  • (Windows) FS can not handle certain characters in file name #​48673
  • 18 and 20 node images give error - Text file busy (after re-build images) nodejs/docker-node#1968
  • libuv update in 18.18.0 breaks webpack's thread-loader #​49911

The libuv 1.45.0 and 1.46.0 updates that were released in Node.js 18.18.0 have been temporarily reverted.

Commits

v18.18.0: 2023-09-18, Version 18.18.0 'Hydrogen' (LTS), @​ruyadorno

Compare Source

Notable Changes
Commits

v18.17.1: 2023-08-09, Version 18.17.1 'Hydrogen' (LTS), @​RafaelGSS

Compare Source

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

More detailed information on each of the vulnerabilities can be found in August 2023 Security Releases blog post.

Commits

v18.17.0: 2023-07-18, Version 18.17.0 'Hydrogen' (LTS), @​danielleadams

Compare Source

Notable Changes
Ada 2.0

Node.js v18.17.0 comes with the latest version of the URL parser, Ada. This update brings significant performance improvements
to URL parsing, including enhancements to the url.domainToASCII and url.domainToUnicode functions in node:url.

Ada 2.0 has been integrated into the Node.js codebase, ensuring that all parts of the application can benefit from the
improved performance. Additionally, Ada 2.0 features a significant performance boost over its predecessor, Ada 1.0.4,
while also eliminating the need for the ICU requirement for URL hostname parsing.

Contributed by Yagiz Nizipli and Daniel Lemire in #​47339

Web Crypto API

Web Crypto API functions' arguments are now coerced and validated as per their WebIDL definitions like in other Web Crypto API implementations.
This further improves interoperability with other implementations of Web Crypto API.

Contributed by Filip Skokan in #​46067

  • crypto:
    • update root certificates to NSS 3.89 (Node.js GitHub Bot) #​47659
  • dns:
    • (SEMVER-MINOR) expose getDefaultResultOrder (btea) #​46973
  • doc:
    • add ovflowd to collaborators (Claudio Wunder) #​47844
    • add KhafraDev to collaborators (Matthew Aitken) #​47510
  • events:
    • (SEMVER-MINOR) add getMaxListeners method (Matthew Aitken) #​47039
  • fs:
    • (SEMVER-MINOR) add support for mode flag to specify the copy behavior (Tetsuharu Ohzeki) #​47084
    • (SEMVER-MINOR) add recursive option to readdir and opendir (Ethan Arrowood) #​41439
    • (SEMVER-MINOR) add support for mode flag to specify the copy behavior (Tetsuharu Ohzeki) #​47084
    • (SEMVER-MINOR) implement byob mode for readableWebStream() (Debadree Chatterjee) #​46933
  • http:
    • (SEMVER-MINOR) prevent writing to the body when not allowed by HTTP spec (Gerrard Lindsay) #​47732
    • (SEMVER-MINOR) remove internal error in assignSocket (Matteo Collina) #​47723
    • (SEMVER-MINOR) add highWaterMark opt in http.createServer (HinataKah0) #​47405
  • lib:
    • (SEMVER-MINOR) add webstreams to Duplex.from() (Debadree Chatterjee) #​46190
    • (SEMVER-MINOR) implement AbortSignal.any() (Chemi Atlow) #​47821
  • module:
    • change default resolver to not throw on unknown scheme (Gil Tayar) #​47824
  • node-api:
    • (SEMVER-MINOR) define version 9 (Chengzhong Wu) #​48151
    • (SEMVER-MINOR) deprecate napi_module_register (Vladimir Morozov) #​46319
  • stream:
    • (SEMVER-MINOR) preserve object mode in compose (Raz Luvaton) #​47413
    • (SEMVER-MINOR) add setter & getter for default highWaterMark (#​46929) (Robert Nagy) #​46929
  • test:
    • unflake test-vm-timeout-escape-nexttick (Santiago Gimeno) #​48078
  • test_runner:
    • (SEMVER-MINOR) add shorthands to test (Chemi Atlow) #​47909
    • (SEMVER-MINOR) support combining coverage reports (Colin Ihrig) #​47686
    • (SEMVER-MINOR) execute before hook on test (Chemi Atlow) #​47586
    • (SEMVER-MINOR) expose reporter for use in run api (Chemi Atlow) #​47238
  • tools:
    • update LICENSE and license-builder.sh (Santiago Gimeno) #​48078
  • url:
    • (SEMVER-MINOR) implement URL.canParse (Matthew Aitken) #​47179
  • wasi:
    • (SEMVER-MINOR) no longer require flag to enable wasi (Michael Dawson) #​47286
Commits
  • [2ba08ac002] - benchmark: use cluster.isPrimary instead of cluster.isMaster (Deokjin Kim) #​48002
  • [60ca69d96c] - benchmark: add eventtarget creation bench (Rafael Gonzaga) #​47774
  • [d8233d96bb] - benchmark: add a benchmark for `defaultResol

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot added the PR: Dependency Update A dependency was updated label Aug 3, 2023
@changeset-bot
Copy link

changeset-bot bot commented Aug 3, 2023

⚠️ No Changeset found

Latest commit: d8bce01

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@github-actions
Copy link
Contributor

github-actions bot commented Aug 3, 2023

Linux Benchmarks for d8e316b

benchmark current value last value diff trend
fnm_basic/median 8.36ms 10.11ms -1.75ms

fnm_basic/max 10.03ms 16.33ms -6.3ms

fnm_basic/mean 8.41ms 10.47ms -2.06ms

fnm_basic/min 7.92ms 9.55ms -1.63ms

fnm_basic/stddev 0.25ms 1.06ms -0.81ms

binary size 7272kb 7168kb +104kb

@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 22ca14f to e54018a Compare August 6, 2023 22:13
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from e54018a to 8b3fcf3 Compare August 9, 2023 17:22
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 8b3fcf3 to 6816f86 Compare August 19, 2023 01:41
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 6816f86 to d8e316b Compare August 26, 2023 23:35
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from d8e316b to 6207146 Compare August 31, 2023 20:14
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 234c5ee to 9baba57 Compare September 11, 2023 13:35
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 139f434 to 5c9f857 Compare October 3, 2023 15:37
@renovate renovate bot changed the title chore(deps): update all non-major dependencies fix(deps): update all non-major dependencies Oct 3, 2023
@vercel
Copy link

vercel bot commented Oct 3, 2023

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
fnm ✅ Ready (Inspect) Visit Preview 💬 Add feedback May 29, 2024 9:51am

Copy link
Contributor Author

renovate bot commented May 5, 2024

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: Cargo.lock
Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path Cargo.toml --package env_logger@0.10.0 --precise 0.11.3
error: package ID specification `env_logger@0.10.0` did not match any packages
Did you mean one of these?

  env_logger@0.11.2

Copy link
Contributor Author

renovate bot commented May 15, 2024

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: Cargo.lock
Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path Cargo.toml --package env_logger@0.10.0 --precise 0.11.3
error: package ID specification `env_logger@0.10.0` did not match any packages
Did you mean one of these?

  env_logger@0.11.2

@renovate renovate bot force-pushed the renovate/all-minor-patch branch from d6dcba2 to d8bce01 Compare May 29, 2024 09:51
@renovate renovate bot changed the title fix(deps): update all non-major dependencies chore(deps): update all non-major dependencies May 29, 2024
@kodiakhq kodiakhq bot merged commit 7c96f47 into master May 29, 2024
17 checks passed
@kodiakhq kodiakhq bot deleted the renovate/all-minor-patch branch May 29, 2024 11:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
automerge PR: Dependency Update A dependency was updated
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant