Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update npm to v8 #215

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update npm to v8 #215

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

@mend-for-github-com mend-for-github-com bot commented Mar 2, 2022
edited
Loading

This PR contains the following updates:

Package Type Update Change
npm (source) engines major =7.19 -> =8.5.3

Release Notes

npm/cli

v8.5.3

Compare Source

Bug Fixes
Dependencies

v8.5.2

Compare Source

Bug Fixes
Documentation
Dependencies

v8.5.1

Compare Source

Dependencies
Documentation

v8.5.0

Compare Source

Features
Bug Fixes
Documentation
Dependencies

v8.4.1

Compare Source

Bug Fixes
Documentation
Dependencies

v8.4.0

Compare Source

Features
Bug Fixes
Dependencies

v8.3.2

Compare Source

Bug Fixes
Dependencies

v8.3.1

Compare Source

Bug Fixes
Dependencies
Chores

v8.3.0

Compare Source

Features
Bug Fixes
Documentation
Dependencies
  • e1da1fa4b
    #​4141
    deps: @npmcli/arborist@4.1.1: parse-conflict-json@2.0.1
    • Fixes object property assignment bug in resolving package-locks with
      conflicts
  • 1d8bec566
    #​4144
    #​3884
    deps: minipass@3.1.6
    • fixes some TAR_ENTRY_INVALID and Z_DATA_ERROR errors

v8.2.0

Compare Source

Features
Bug Fixes
Documentation
Dependencies

v8.1.4

Compare Source

BUG FIXES
DEPENDENCIES

v8.1.3

Compare Source

BUG FIXES
DEPENDENCIES
  • ac2fabb86
    #​3990
    @npmcli/arborist@4.0.4
    • fix: don't compare spec for local dep vs existing
    • fix: stop pruning peerSets when entryEdge is from a workspace
  • a0d35ff20
    #​3996
    @npmcli/config@2.3.1:
    • fix: dont load project configs in global mode

v8.1.2

Compare Source

BUG FIXES
DEPENDENCIES

v8.1.1

Compare Source

DEPENDENCIES

v8.1.0

Compare Source

FEATURES
DEPENDENCIES
DOCUMENTATION

v8.0.0

Compare Source

The purpose of this release is to drop support for old node versions and
to remove support for require('npm'). There are no other breaking
changes.

BREAKING CHANGES
  • Drop support for node 10 and 11
  • Raise support ceiling in node 12 and 14 to LTS (^12.13.0/^14.15.0)
  • Drop support to require('npm')
  • Update subdependencies that also dropped node10 support
DEPENDENCIES
  • The following dependencies were updated to drop node10 support and
    update to the latest node-gyp
    • libnpmversion@2.0.1
    • pacote@12.0.0
    • libnpmpack@3.0.0
    • @​npmcli/arborist@​3.0.0
    • libnpmfund@2.0.0
    • libnpmexec@3.0.0
    • node-gyp@8.2.0
  • 8bd85cdae
    #​3813
    cli-columns@4.0.0

v7.24.2

Compare Source

v7.24.2 (2021-10-04)
BUG FIXES
DEPENDENCIES
  • 69ab10bbf is-core-module@2.7.0
  • e94ddeaca @npmcli/arborist@2.9.0:
    • fix: avoid infinite loops in peer dep replacements
    • fix: use Intl.Collator for string sorting when available
    • feat(vuln): expose isDirect
DOCUMENTATION

v7.24.1

Compare Source

v7.24.1 (2021-09-23)
DEPENDENCIES
  • 1be8d41e6 socks-proxy-agent@6.1.0:
    • feat: allow passing tls connection options
  • eafd55eae glob@7.2.0
DOCS

v7.24.0

Compare Source

v7.24.0 (2021-09-16)
FEATURES
BUG FIXES
DEPENDENCIES
  • ac8e4ad18 init-package-json@2.0.5:
    • fix: bin script path
  • 371655a6b minipass@3.1.5:
    • fix: re-emit 'error' event if missed and new listener added
    • fix: do not blow up if process is missing
DOCUMENTATION

v7.23.0

Compare Source

v7.23.0 (2021-09-09)
FEATURES
BUG FIXES
DOCUMENTATION

v7.22.0

Compare Source

v7.22.0 (2021-09-02)
BUG FIXES
DEPENDENCIES
  • 033e948c9 read-package-json@4.1.1:
    • feat: add types lookup
    • fix(man): don't lose relative man path
  • 1fa549db0 @npmcli/config@2.3.0:
    • feat: export npm_config_local_prefix and npm_config_global_prefix to the environment
  • e91578d10 minpass-fetch@1.4.1:
    • Made rejectUnauthorized depend on NODE_TLS_REJECT_UNAUTHORIZED
  • 6125db545 are-we-there-yet@1.1.6
  • 0dcda73b0 string_decoder@1.3.0
  • 4b913417c npmlog@5.0.1
  • 876c755eb @npmcli/arborist@2.8.3:
    • fix: do not fail adding unresolvable optional dep

v7.21.1

Compare Source

v7.21.1 (2021-08-26)

BUG FIXES
DEPENDENCIES
  • e3878536f make-fetch-happen@9.1.0:
    • fix: use the same strictSSL default as tls.connect
  • 145f70cc1 read-package-json@4.0.1:
    • fix: Add gitHead in subdirectories too
    • fix(man): don't resolve paths to man files
  • 3f4d37143 tar@6.1.11:
    • fix: perf regression on hot string munging path
  • e63a942c6 cacache@15.3.0:
DOCUMENTATION

v7.21.0

Compare Source

v7.21.0 (2021-08-19)

FEATURES
BUG FIXES
DEPENDENCIES
  • df57f0d53 @npmcli/run-script@1.8.6
  • 8183976cf normalize-package-data@3.0.3:
    • fix: account for "licence" as spelling variant
  • f07772401 init-package-json@2.0.4
  • 991a3bd39 read-package-json@4.0.0
  • e9e5ee560 @npmcli/arborist@2.8.2:
    • fix: treat top-level global packages as "top" nodes
    • fix: load global symlinks implicitly as file: deps
    • fix(reify): debug crash when extracting into symlink
    • fix: node_modules must be a directory
    • fix: make Node.children() a case-insensitive Map
    • fix(reify): verify existing deps in nm are dirs
  • b6f40b5f8 tar@6.1.10:
    • fix: prune dirCache properly for unicode, windows
    • fix: reserve paths properly for unicode, windows
    • fix: prevent path escape using drive-relative paths
    • fix: drop dirCache for symlink on all platforms
  • 218cacadc is-core-module@2.6.0
  • 7ac621cd1 smart-buffer@4.2.0
  • 94f92de13 make-fetch-happen@9.0.5
  • 71cdfd898 spdx-license-ids@3.0.10:
    • update license list to v3.14

v7.20.6

Compare Source

v7.20.6 (2021-08-12)

DEPENDENCIES
  • 5bebf280f tar@6.1.8
    • fix: reserve paths case-insensitively
  • 5d89de44d tar@6.1.7:
    • fix: normalize paths on Windows systems
  • a1bdbea97 #​3569 remove byte-size (@​wraithgar)
  • 61782fa85 @npmcli/map-workspaces@1.0.4:
    • fix: better error message for duplicate workspace names
  • b88f770fa @npmcli/arborist@2.8.1:
    • [#​3632] Fix "cannot read property path of null" error in 'npm dedupe'
    • fix(shrinkwrap): always set name on the root node
DOCUMENTATION

v7.20.5

Compare Source

v7.20.5 (2021-08-05)

DEPENDENCIES
  • 44377738e graceful-fs@4.2.8
    • fix: start retrying immediately, stop after 60 seconds

v7.20.4

Compare Source

v7.20.4 (2021-08-05)

BUG FIXES
DEPENDENCIES
  • 15fae4941 tar@6.1.6:
    • fix: properly handle top-level files when using strip
    • Avoid an unlikely but theoretically possible redos
    • WriteEntry backpressure
    • fix(unpack): always resume parsing after an entry error
    • fix(unpack): fix hang on large file on open() fail
    • fix: properly prefix hard links
  • 745326de0 libnpmexec@2.0.1:
    • Clear progress bar which overlays confirm prompt
  • e82bcd4e8 graceful-fs@4.2.7:
    • fix: start retrying immediately, stop after 10 attempts

v7.20.3

Compare Source

v7.20.3 (2021-07-29)

BUG FIXES
DEPENDENCIES
  • 97cb5ec31 @npmcli/arborist@2.8.0:
    • Refactor ideal tree building to handle more complicated
      peerDependencies use cases.
    • Do not modify ideal tree while checking if a peerSet can be placed.
  • 7db1a0a26 chore(deps): mime-types@1.49.0 mime-db@1.49.0

v7.20.2

Compare Source

v7.20.2 (2021-07-27)

DEPENDENCIES
  • f5aab1f88 tar@6.1.1
    • fix: strip absolute paths more comprehensively
  • ce8fb0f69 tar@6.1.2
    • fix: Remove paths from dirCache when no longer dirs
  • ced85087a gauge@3.0.1
    • add missing dependency to package.json

v7.20.1

Compare Source

BUG FIXES
DOCUMENTATION
DEPENDENCIES

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, click this checkbox.

@mend-for-github-com
Copy link
Author

mend-for-github-com bot commented Mar 2, 2022
edited
Loading

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json
npm ERR! code ENOTSUP
npm ERR! notsup Unsupported engine for monorepo@1.0.0: wanted: {"npm":"=8.5.3"} (current: {"node":"14.18.1","npm":"6.14.15"})
npm ERR! notsup Not compatible with your version of node/npm: monorepo@1.0.0
npm ERR! notsup Not compatible with your version of node/npm: monorepo@1.0.0
npm ERR! notsup Required: {"npm":"=8.5.3"}
npm ERR! notsup Actual:   {"npm":"6.14.15","node":"14.18.1"}

npm ERR! A complete log of this run can be found in:
npm ERR!     /tmp/renovate/cache/others/npm/_logs/2022-03-04T03_38_50_176Z-debug.log

@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/npm-8.x branch from 0cad9fc to 35d3700 Compare March 4, 2022 03:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants