Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

upgrades and stuff #150

Merged
merged 6 commits into from
Feb 16, 2024
Merged

upgrades and stuff #150

merged 6 commits into from
Feb 16, 2024

Conversation

ndelangen
Copy link
Member

@ndelangen ndelangen commented Feb 16, 2024

Issue: #

What Changed

  • changed to use pnpm
  • upgraded all devDependencies
  • deal with prettier being async
  • fix the mismatch between the config files being generated... the generation code is now updated and ran

Checklist

Check the ones applicable to your change:

  • Ran pnpm run update-all
  • Tests are updated
  • Documentation is updated

Change Type

Indicate the type of change your pull request is:

  • maintenance
  • documentation
  • patch
  • minor
  • major
📦 Published PR as canary version: 0.7.1--canary.150.6bde6fd.0

✨ Test out this PR locally via:

npm install [email protected]
# or 
yarn add [email protected]

@ndelangen ndelangen self-assigned this Feb 16, 2024
Copy link

socket-security bot commented Feb 16, 2024

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@auto-it/[email protected] Transitive: environment, eval, filesystem, network, shell, unsafe +187 55.8 MB alisowski
npm/@types/[email protected] None +2 243 kB types
npm/@types/[email protected] Transitive: environment, filesystem, unsafe +47 5.62 MB types
npm/@types/[email protected] None +1 3.96 MB types
npm/@types/[email protected] None 0 2.85 kB types
npm/@typescript-eslint/[email protected] Transitive: environment, eval, filesystem, shell, unsafe +130 48.3 MB jameshenry
npm/@typescript-eslint/[email protected] Transitive: environment, eval, filesystem, shell, unsafe +122 45.1 MB jameshenry
npm/@typescript-eslint/[email protected] Transitive: environment, eval, filesystem, shell, unsafe +126 45.8 MB jameshenry
npm/[email protected] Transitive: environment, eval, filesystem, network, shell, unsafe +229 56.6 MB alisowski
npm/[email protected] Transitive: environment, eval, filesystem, shell, unsafe +98 10.8 MB lydell
npm/[email protected] filesystem Transitive: environment, eval, shell, unsafe +100 11.3 MB eslint-community-bot
npm/[email protected] Transitive: environment, eval, filesystem, shell, unsafe +108 19.6 MB jounqin
npm/[email protected] environment, filesystem, shell 0 3.61 kB typicode
npm/[email protected] Transitive: environment, eval, filesystem, network, shell, unsafe +279 56.2 MB simenb
npm/[email protected] Transitive: environment, filesystem, shell +55 2.49 MB okonet
npm/[email protected] environment, filesystem, unsafe 0 8.39 MB prettier-bot
npm/[email protected] environment, filesystem, unsafe Transitive: eval, network, shell +283 56.7 MB kul
npm/[email protected] Transitive: environment, eval, filesystem, network, shell, unsafe +448 78.5 MB rudeg
npm/[email protected] environment, filesystem, unsafe +19 38 MB blakeembrey
npm/[email protected] None 0 32 MB typescript-bot

🚮 Removed packages: npm/@auto-it/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@octokit/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

Copy link

socket-security bot commented Feb 16, 2024

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@ndelangen ndelangen marked this pull request as ready for review February 16, 2024 11:38
lib/utils/index.ts Outdated Show resolved Hide resolved
@ndelangen ndelangen added minor Increment the minor version when merged dependencies Update one or more dependencies version labels Feb 16, 2024
@ndelangen ndelangen merged commit 6a7fd01 into main Feb 16, 2024
4 checks passed
@ndelangen ndelangen deleted the norbert/upgrades branch February 16, 2024 11:57
Copy link

🚀 PR was released in v0.8.0 🚀

@github-actions github-actions bot added the released This issue/pull request has been released. label Feb 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Update one or more dependencies version minor Increment the minor version when merged released This issue/pull request has been released.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants