root/dvf
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

renovate #57

Merged
root merged 1 commits from renovate into master 2025-09-26 08:14:10 +00:00
Conversation 0 Commits 1 Files Changed 2 +12 -12
m.schnitzler commented 2025-09-26 04:59:39 +00:00
Contributor
Copy Link

npm

lint-staged

  • ^16.2.0 => ^16.2.1 (dvf)

Patch Changes

  • #1664 8277b3b Thanks @iiroj! - The built-in TypeScript types have been updated to more closely match the implementation. Notably, the list of staged files supplied to task functions is readonly string[] and can't be mutated. Thanks @outslept!

    export default {
---  "*": (files: string[]) => void console.log('staged files', files)
+++  "*": (files: readonly string[]) => void console.log('staged files', files)
}

  • #1654 70b9af3 Thanks @iiroj! - This version has been published from GitHub Actions using Trusted Publishing for npm packages.

  • #1659 4996817 Thanks @iiroj! - Fix searching configuration files when the working directory is a subdirectory of a git repository, and there are package.json files in the working directory. This situation might happen when running lint-staged for a single package in a monorepo.

  • #1654 7021f0a Thanks @iiroj! - Return the caret semver range (^) to direct dependencies so that future patch and minor versions are allowed. This enables projects to better maintain and deduplicate their own transitive dependencies while not requiring direct updates to lint-staged. This was changed in 16.2.0 after the vulnerability issues with chalk and debug, which were also removed in the same version.

    Given the recent vulnerabilities in the npm ecosystem, it's best to be very careful when updating dependencies.

<h1>npm</h1> <h2>lint-staged</h2> <ul> <li> ^16.2.0 => ^16.2.1 (dvf)</li> </ul> > <h3>Patch Changes</h3> > <ul> > <li><p><a href="https://github.com/lint-staged/lint-staged/pull/1664">#1664</a> <a href="https://github.com/lint-staged/lint-staged/commit/8277b3b298421ebbb39c43d7e3538481e15c4659"><code>8277b3b</code></a> Thanks <a href="https://github.com/iiroj">@iiroj</a>! - The built-in TypeScript types have been updated to more closely match the implementation. Notably, the list of staged files supplied to task functions is <code>readonly string[]</code> and can&#39;t be mutated. Thanks <a href="https://github.com/outslept">@outslept</a>!</p> > <pre><code class="language-diff">export default { > --- &quot;*&quot;: (files: string[]) =&gt; void console.log(&#39;staged files&#39;, files) > +++ &quot;*&quot;: (files: readonly string[]) =&gt; void console.log(&#39;staged files&#39;, files) > } > </code></pre> > </li> > <li><p><a href="https://github.com/lint-staged/lint-staged/pull/1654">#1654</a> <a href="https://github.com/lint-staged/lint-staged/commit/70b9af3ac3fd66af94936e55bb3e91381937b41f"><code>70b9af3</code></a> Thanks <a href="https://github.com/iiroj">@iiroj</a>! - This version has been published from GitHub Actions using <a href="https://docs.npmjs.com/trusted-publishers">Trusted Publishing for npm packages</a>.</p> > </li> > <li><p><a href="https://github.com/lint-staged/lint-staged/pull/1659">#1659</a> <a href="https://github.com/lint-staged/lint-staged/commit/49968170abb3bab7ac8dc0a6bc5ea92850337baa"><code>4996817</code></a> Thanks <a href="https://github.com/iiroj">@iiroj</a>! - Fix searching configuration files when the working directory is a subdirectory of a git repository, and there are <code>package.json</code> files in the working directory. This situation might happen when running <em>lint-staged</em> for a single package in a monorepo.</p> > </li> > <li><p><a href="https://github.com/lint-staged/lint-staged/pull/1654">#1654</a> <a href="https://github.com/lint-staged/lint-staged/commit/7021f0af40ac1d5787501894c0f2222980023703"><code>7021f0a</code></a> Thanks <a href="https://github.com/iiroj">@iiroj</a>! - Return the caret semver range (<code>^</code>) to direct dependencies so that future patch and minor versions are allowed. This enables projects to better maintain and deduplicate their own transitive dependencies while not requiring direct updates to <em>lint-staged</em>. This was changed in <a href="https://github.com/lint-staged/lint-staged/releases/tag/v16.2.0">16.2.0</a> after the vulnerability issues with <code>chalk</code> and <code>debug</code>, which were also removed in the same version.</p> > <p>Given the recent vulnerabilities in the <em>npm</em> ecosystem, it&#39;s best to be very careful when updating dependencies.</p> > </li> > </ul>
m.schnitzler added 1 commit 2025-09-26 04:59:41 +00:00
fix: "renovate" bdb2b47bfe
root merged commit b1a7aa51d4 into master 2025-09-26 08:14:10 +00:00
root referenced this issue from a commit 2025-09-26 08:14:13 +00:00
renovate (#57)
root deleted branch renovate 2025-09-26 08:14:15 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
root
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: root/dvf#57
No description provided.
Delete Branch "renovate"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?