Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
6.32.25
->7.7.0
Release Notes
pnpm/pnpm
v7.7.0
Compare Source
Minor Changes
Add experimental lockfile format that should merge conflict less in the
importers
section. Enabled by setting theuse-inline-specifiers-lockfile-format = true
feature flag in.npmrc
.If this feature flag is committed to a repo, we recommend setting the minimum allowed version of pnpm to this release in the
package.json
engines
field. Once this is set, older pnpm versions will throw on invalid lockfile versions.Add
publishDirectory
field to the lockfile and relink the project when it changes.verify-store-integrity=false
makes pnpm skip checking the integrities of files in the global content-addressable store.Allow to set
only-built-dependencies[]
through.npmrc
.Patch Changes
publishConfig.directory
) #3901.pnpm deploy
should inject local dependencies of all types (dependencies, optionalDependencies, devDependencies) #5078.publishConfig.directory
set, dependent projects should install the project from that directory #3901.zshrc
in the right directory when a$ZDOTDIR
is set.Our Gold Sponsors
Full Changelog: pnpm/pnpm@v7.6.0...v7.7.0
v7.6.0
Compare Source
Minor Changes
A new setting supported:
prefer-symlinked-executables
. Whentrue
, pnpm will create symlinks to executables innode_modules/.bin
instead of command shims (but on POSIX systems only).This setting is
true
by default whennode-linker
is set tohoisted
.Related issue: #4782.
When
lockfile-include-tarball-url
is set totrue
, every entry inpnpm-lock.yaml
will contain the full URL to the package's tarball #5054.Patch Changes
pnpm deploy
should include all dependencies by default #5035.Don't print warnings about file verifications. Just print info messages instead.
pnpm publish --help
should print the--recursive
and--filter
options #5019.It should be possible to run exec/run/dlx with the
--use-node-version
option.pnpm deploy
should not modify the lockfile #5071pnpm deploy
should not fail in CI #5071When
auto-install-peers
is set totrue
, automatically install direct peer dependencies #5028.So if your project the next manifest:
pnpm will install both lodash and react as a regular dependencies.
Our Gold Sponsors
Full Changelog: pnpm/pnpm@v7.5.2...v7.6.0
v7.5.2
Compare Source
Patch Changes
Our Gold Sponsors
Full Changelog: pnpm/pnpm@v7.5.1...v7.5.2
v7.5.1
Compare Source
Patch Changes
node_modules
#4988.Our Gold Sponsors
Full Changelog: pnpm/pnpm@v7.5.0...v7.5.1
v7.5.0
Compare Source
Minor Changes
A new value
rolling
for optionsave-workspace-protocol
. When selected, pnpm will save workspace versions using a rolling alias (e.g."foo": "workspace:^"
) instead of pinning the current version number (e.g."foo": "workspace:^1.0.0"
). Usage example, in the root of your workspace, create a.npmrc
with the following content:Patch Changes
pnpm remove <pkg>
should not fail in a workspace that has patches #4954pnpm env use
should throw an error on a system that use the MUSL libc.Our Gold Sponsors
Full Changelog: pnpm/pnpm@v7.4.1...v7.5.0
v7.4.1
Compare Source
Patch Changes
pnpm install
in a workspace with patches should not fail when doing partial installation #4954.--lockfile-only
is used. Even iffrozen-lockfile
istrue
#4951.patchedDependencies
field topnpm-lock.yaml
.Our Gold Sponsors
Full Changelog: pnpm/pnpm@v7.4.0...v7.4.1
v7.4.0
Compare Source
Minor Changes
Dependencies patching is possible via the
pnpm.patchedDependencies
field of thepackage.json
.To patch a package, the package name, exact version, and the relative path to the patch file should be specified. For instance:
Two new commands added:
pnpm patch
andpnpm patch-commit
.pnpm patch <pkg>
prepares a package for patching. For instance, if you want to patch express v1, run:pnpm will create a temporary directory with
express@1.0.0
that you can modify with your changes.Once you are read with your changes, run:
This will create a patch file and write it to
<project>/patches/express@1.0.0.patch
.Also, it will reference this new patch file from the
patchedDependencies
field inpackage.json
:A new experimental command added:
pnpm deploy
. The deploy command takes copies a project from a workspace and installs all of its production dependencies (even if some of those dependencies are other projects from the workspace).For example, the new command will deploy the project named
foo
to thedist
directory in the root of the workspace:package-import-method
supports a new option:clone-or-copy
.New setting added:
include-workspace-root
. When it is set totrue
, therun
,exec
,add
, andtest
commands will include the root package, when executed recursively #4906Patch Changes
Don't crash when
pnpm update --interactive
is cancelled with Ctrl+c.The
use-node-version
setting should work with prerelease Node.js versions. For instance:Return early when the lockfile is up-to-date.
Resolve native workspace path for case-insensitive file systems #4904.
Don't link local dev dependencies, when prod dependencies should only be installed.
pnpm audit --fix
should not add an override for a vulnerable package that has no fixes released.Update the compatibility database.
Our Gold Sponsors
Full Changelog: pnpm/pnpm@v7.3.0...v7.4.0
v7.3.0
Compare Source
Minor Changes
A new setting added:
pnpm.peerDependencyRules.allowAny
.allowAny
is an array of package name patterns, any peer dependency matching the pattern will be resolved from any version, regardless of the range specified inpeerDependencies
. For instance:The above setting will mute any warnings about peer dependency version mismatches related to
@babel/
packages oreslint
.The
pnpm.peerDependencyRules.ignoreMissing
setting may accept package name patterns. So you may ignore any missing@babel/*
peer dependencies, for instance:Experimental. New settings added:
use-git-branch-lockfile
,merge-git-branch-lockfiles
,merge-git-branch-lockfiles-branch-pattern
#4475.Patch Changes
Our Sponsors
Full Changelog: pnpm/pnpm@v7.2.1...v7.3.0
v7.2.1
Compare Source
Patch Changes
Our Sponsors
Full Changelog: pnpm/pnpm@v7.2.0...v7.2.1
v7.2.0
Compare Source
Minor Changes
A new setting is supported for ignoring specific deprecation messages:
pnpm.allowedDeprecatedVersions
. The setting should be provided in thepnpm
section of the rootpackage.json
file. The below example will mute any deprecation warnings about therequest
package and warnings aboutexpress
v1:Related issue: #4306
Related PR: #4864
Patch Changes
Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.9...v7.2.0
v7.1.9
Compare Source
Patch Changes
Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.8...v7.1.9
v7.1.8
Compare Source
Patch Changes
package.json
file #4822.Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.7...v7.1.8
v7.1.7
Compare Source
Patch Changes
Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.6...v7.1.7
v7.1.6
Compare Source
Patch Changes
auto-install-peers
is set totrue
#4796.NODE_ENV=production pnpm install --dev
should only install dev deps #4745.Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.5...v7.1.6
v7.1.5
Compare Source
Patch Changes
Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.4...v7.1.5
v7.1.4
Compare Source
Patch Changes
Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.3...v7.1.4
v7.1.3
Compare Source
Patch Changes
auto-install-peers
is set totrue
, automatically install missing peer dependencies without writing them topackage.json
as dependencies. This makes pnpm handle peer dependencies the same way as npm v7 #4776.Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.2...v7.1.3
v7.1.2
Compare Source
Patch Changes
pnpm setup
should not fail on Windows ifPNPM_HOME
is not yet in the system registry #4757pnpm dlx
shouldn't modify the lockfile in the current working directory #4743.Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.1...v7.1.2
v7.1.1
Compare Source
Patch Changes
node_modules/.pnpm
and inside the global store #4716pnpm create <pkg>
should be passed to the executed create app package. Sopnpm create next-app --typescript
should work`.Our Sponsors
Full Changelog: pnpm/pnpm@v7.1.0...v7.1.1
v7.1.0
Compare Source
Minor Changes
libc
field inpackage.json
#4454.Patch Changes
pnpm setup
should update the config of the current shell, not the preferred shell.pnpm setup
should not override the PNPM_HOME env variable, unless `Configuration
📅 Schedule: Branch creation - "after 1am and before 6am on the 1st through 3rd day of the month" in timezone Asia/Tokyo, Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.