diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..0072cd0 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,41 @@ +# Copyright (c) 2020-present Sven Greb +# This source code is licensed under the MIT license found in the LICENSE file. + +# Configuration for the native Dependabot integration. +# See the official GitHub documentations for more details: +# - https://docs.github.com/en/free-pro-team@latest/github/administering-a-repository/configuration-options-for-dependency-updates +# - https://docs.github.com/en/free-pro-team@latest/github/administering-a-repository/about-dependabot-version-updates +# - https://docs.github.com/en/free-pro-team@latest/github/managing-security-vulnerabilities/about-dependabot-security-updates +# - https://github.com/features#features-security + +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "weekly" + reviewers: + - "svengreb" + labels: + - "scope-quality" + - "scope-security" + + - package-ecosystem: "gomod" + directory: "/" + schedule: + interval: "weekly" + reviewers: + - "svengreb" + labels: + - "scope-quality" + - "scope-security" + + - package-ecosystem: "npm" + directory: "/" + schedule: + interval: "weekly" + reviewers: + - "svengreb" + labels: + - "scope-quality" + - "scope-security" diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index d315fbc..b51ad94 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -51,7 +51,7 @@ jobs: # See https://github.com/golangci/golangci-lint-action for more details. uses: golangci/golangci-lint-action@v2 with: - version: v1.31 + version: v1.32 test: strategy: matrix: diff --git a/.golangci.yml b/.golangci.yml index 8ec58a8..5852bef 100644 --- a/.golangci.yml +++ b/.golangci.yml @@ -32,6 +32,7 @@ linters: - dogsled - dupl - errcheck + - errorlint - exhaustive - gochecknoinits - goconst @@ -59,12 +60,14 @@ linters: - staticcheck - structcheck - stylecheck + - tparallel - typecheck - unconvert - unparam - unused - varcheck - whitespace + - wrapcheck # Run all linters, not only fast ones. fast: false @@ -136,12 +139,12 @@ linters-settings: misspell: locale: US ignore-words: - - tmpl - - tmpl-go + - inkpen + - nib # Options for analysis runs. run: deadline: 15m service: - golangci-lint-version: 1.31.x + golangci-lint-version: 1.32.x diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 7b74402..3d40346 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -18,7 +18,7 @@ Before you continue with these contribution guidelines we highly recommend to re ### Bug Reports -A bug is a _demonstrable problem_ that is caused by the code in the repository. This section guides you through submitting a bug report for tmpl-go. Following these guidelines helps maintainers and the community understand your report, reproduce the behavior and find related reports. +A bug is a _demonstrable problem_ that is caused by the code in the repository. This section guides you through submitting a bug report for nib. Following these guidelines helps maintainers and the community understand your report, reproduce the behavior and find related reports. **Do NOT report security vulnerabilities in public issues!** Please only contact one of the core team members or project owner in a responsible manner by [email][gh-mailmap] or via support@svengreb.de. We will assess the issue as soon as possible on a best-effort basis and will give you an estimate for when we have a fix and release available for an eventual public disclosure. diff --git a/package.json b/package.json index 7875e8a..ec5b585 100644 --- a/package.json +++ b/package.json @@ -1,5 +1,5 @@ { - "name": "nib", + "name": "@svengreb/nib", "version": "0.1.0", "description": "A stylish, log-level based line printer for human-facing Go CLI applications", "author": { @@ -26,7 +26,7 @@ }, "devDependencies": { "husky": "^4.3.0", - "lint-staged": "^10.4.0", + "lint-staged": "^10.5.1", "npm-run-all": "^4.1.5", "prettier": "^2.1.2", "remark-cli": "^8.0.1", diff --git a/yarn.lock b/yarn.lock index 64006f7..7f7fac6 100644 --- a/yarn.lock +++ b/yarn.lock @@ -267,10 +267,10 @@ color-name@~1.1.4: resolved "https://registry.yarnpkg.com/color-name/-/color-name-1.1.4.tgz#c2a09a87acbde69543de6f63fa3995c826c536a2" integrity sha512-dOy+3AuW3a2wNbZHIuMZpTcgjGuLU/uBL/ubcZF9OXbDo8ff4O8yVp5Bf0efS8uEoYo5q4Fx7dY9OgQGXgAsQA== -commander@^6.0.0: - version "6.1.0" - resolved "https://registry.yarnpkg.com/commander/-/commander-6.1.0.tgz#f8d722b78103141006b66f4c7ba1e97315ba75bc" - integrity sha512-wl7PNrYWd2y5mp1OK/LhTlv8Ff4kQJQRXXAvF+uU/TPNiVJUxZLRYGj/B0y/lPGAVcSbJqH2Za/cvHmrPMC8mA== +commander@^6.2.0: + version "6.2.0" + resolved "https://registry.yarnpkg.com/commander/-/commander-6.2.0.tgz#b990bfb8ac030aedc6d11bc04d1488ffef56db75" + integrity sha512-zP4jEKbe8SHzKJYQmq8Y9gYjtO/POJLgIdKgV7B9qNmABVFVc+ctqSX6iXh4mCpJfRBOabiZ2YKPg8ciDw6C+Q== compare-versions@^3.6.0: version "3.6.0" @@ -323,7 +323,7 @@ cross-spawn@^7.0.0: shebang-command "^2.0.0" which "^2.0.1" -debug@^4.0.0, debug@^4.1.1: +debug@^4.0.0, debug@^4.2.0: version "4.2.0" resolved "https://registry.yarnpkg.com/debug/-/debug-4.2.0.tgz#7f150f93920e94c58f5574c2fd01a3110effe7f1" integrity sha512-IX2ncY78vDTjZMFUdmsvIRFY2Cf4FnD0wRs+nQwJU8Lu99/tPFdb0VybiiMTPe3I6rQmwsqQqRBvxU+bZ/I8sg== @@ -422,10 +422,10 @@ esprima@^4.0.0: resolved "https://registry.yarnpkg.com/esprima/-/esprima-4.0.1.tgz#13b04cdb3e6c5d19df91ab6987a8695619b0aa71" integrity sha512-eGuFFw7Upda+g4p+QHvnW0RyTX/SVeJBDM/gCtMARO0cLuT2HcEKnTPvhjV6aGeqrCB/sbNop0Kszm0jsaWU4A== -execa@^4.0.3: - version "4.0.3" - resolved "https://registry.yarnpkg.com/execa/-/execa-4.0.3.tgz#0a34dabbad6d66100bd6f2c576c8669403f317f2" - integrity sha512-WFDXGHckXPWZX19t1kCsXzOpqX9LWYNqn4C+HqZlk/V0imTkzJZqf87ZBhvpHaftERYknpk0fjSylnXVlVgI0A== +execa@^4.1.0: + version "4.1.0" + resolved "https://registry.yarnpkg.com/execa/-/execa-4.1.0.tgz#4e5491ad1572f2f17a77d388c6c857135b22847a" + integrity sha512-j5W0//W7f8UxAn8hXVnwG8tLwdiUy4FJLcSupCg6maBYZDpyBvTApK7KyuI4bKj8KOh1r2YH+6ucuYtJv1bTZA== dependencies: cross-spawn "^7.0.0" get-stream "^5.0.0" @@ -815,20 +815,20 @@ lines-and-columns@^1.1.6: resolved "https://registry.yarnpkg.com/lines-and-columns/-/lines-and-columns-1.1.6.tgz#1c00c743b433cd0a4e80758f7b64a57440d9ff00" integrity sha1-HADHQ7QzzQpOgHWPe2SldEDZ/wA= -lint-staged@^10.4.0: - version "10.4.0" - resolved "https://registry.yarnpkg.com/lint-staged/-/lint-staged-10.4.0.tgz#d18628f737328e0bbbf87d183f4020930e9a984e" - integrity sha512-uaiX4U5yERUSiIEQc329vhCTDDwUcSvKdRLsNomkYLRzijk3v8V9GWm2Nz0RMVB87VcuzLvtgy6OsjoH++QHIg== +lint-staged@^10.5.1: + version "10.5.1" + resolved "https://registry.yarnpkg.com/lint-staged/-/lint-staged-10.5.1.tgz#901e915c2360072dded0e7d752a0d9a49e079daa" + integrity sha512-fTkTGFtwFIJJzn/PbUO3RXyEBHIhbfYBE7+rJyLcOXabViaO/h6OslgeK6zpeUtzkDrzkgyAYDTLAwx6JzDTHw== dependencies: chalk "^4.1.0" cli-truncate "^2.1.0" - commander "^6.0.0" + commander "^6.2.0" cosmiconfig "^7.0.0" - debug "^4.1.1" + debug "^4.2.0" dedent "^0.7.0" enquirer "^2.3.6" - execa "^4.0.3" - listr2 "^2.6.0" + execa "^4.1.0" + listr2 "^3.2.2" log-symbols "^4.0.0" micromatch "^4.0.2" normalize-path "^3.0.0" @@ -836,10 +836,10 @@ lint-staged@^10.4.0: string-argv "0.3.1" stringify-object "^3.3.0" -listr2@^2.6.0: - version "2.6.2" - resolved "https://registry.yarnpkg.com/listr2/-/listr2-2.6.2.tgz#4912eb01e1e2dd72ec37f3895a56bf2622d6f36a" - integrity sha512-6x6pKEMs8DSIpA/tixiYY2m/GcbgMplMVmhQAaLFxEtNSKLeWTGjtmU57xvv6QCm2XcqzyNXL/cTSVf4IChCRA== +listr2@^3.2.2: + version "3.2.2" + resolved "https://registry.yarnpkg.com/listr2/-/listr2-3.2.2.tgz#d20feb75015e506992b55af40722ba1af168b8f1" + integrity sha512-AajqcZEUikF2ioph6PfH3dIuxJclhr3i3kHgTOP0xeXdWQohrvJAAmqVcV43/GI987HFY/vzT73jYXoa4esDHg== dependencies: chalk "^4.1.0" cli-truncate "^2.1.0" @@ -847,7 +847,7 @@ listr2@^2.6.0: indent-string "^4.0.0" log-update "^4.0.0" p-map "^4.0.0" - rxjs "^6.6.2" + rxjs "^6.6.3" through "^2.3.8" load-json-file@^4.0.0: @@ -2055,7 +2055,7 @@ restore-cursor@^3.1.0: onetime "^5.1.0" signal-exit "^3.0.2" -rxjs@^6.6.2: +rxjs@^6.6.3: version "6.6.3" resolved "https://registry.yarnpkg.com/rxjs/-/rxjs-6.6.3.tgz#8ca84635c4daa900c0d3967a6ee7ac60271ee552" integrity sha512-trsQc+xYYXZ3urjOiJOuCOa5N3jAZ3eiSpQB5hIT8zGlL2QfnHLJ2r7GMkBGuIausdJN1OneaI6gQlsqNHHmZQ==