Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update dependencies to enable Greenkeeper 🌴 #161

Closed
wants to merge 3 commits into from

Conversation

greenkeeper[bot]
Copy link
Contributor

@greenkeeper greenkeeper bot commented Apr 26, 2017

Let’s get started with automated dependency management for Sonar 💪

This pull request updates all your dependencies to their latest version. Having them all up to date really is the best starting point. I will look out for further dependency updates and make sure to handle them in isolation and in real-time, as soon as you merge this pull request.

I won’t start sending you further updates, unless you have merged this very pull request.


💥 This branch failed. How to proceed I suggest you find out what dependency update is causing the problem. Adapt your code so things are working nicely together again. [next-update](https://www.npmjs.com/package/next-update) is a really handy tool to help you with this.

Push the changes to this branch and merge it.

📦 How to enable private scoped packages

Public scoped packages (@scope/name) work out of the box, but for private scoped packages there is an additional step required.

# Install npm's wombat CLI to create npm hooks
npm install --global wombat

# Add a single private scoped package
wombat hook add @scope/name https://hooks.greenkeeper.io/npm/22010 ca39554c39981d4f86c841d5d816435fcca7a95f0c5d5bdd74bb2100620899eb

# Add all packages of a scope
wombat hook add @scope https://hooks.greenkeeper.io/npm/22010 ca39554c39981d4f86c841d5d816435fcca7a95f0c5d5bdd74bb2100620899eb

# Add all packages by a specific owner
wombat hook add --type owner substack https://hooks.greenkeeper.io/npm/22010 ca39554c39981d4f86c841d5d816435fcca7a95f0c5d5bdd74bb2100620899eb
🏷 How to check the status of this repository There is a badge added to your README, indicating the status of this repository.

This is how your badge looks like 👉 Greenkeeper badge

🙈 How to ignore certain dependencies

In case you can not, or do not want to update a certain dependency right now, you can of course just change the package.json file back to your liking.

Add a greenkeeper.ignore field to your package.json, containing a list of dependencies you don’t want to update right now.

// package.json
{
  
  "greenkeeper": {
    "ignore": [
      "package-names",
      "you-want-me-to-ignore"
    ]
  }
}
👩‍💻 How to update this pull request
  # change into your repository’s directory
  git fetch
  git checkout greenkeeper/initial
  npm install-test
  # adapt your code, so it’s working again
  git commit -m 'chore: adapt code to updated dependencies'
  git push origin greenkeeper/initial
✨ How the updates will look like

As soon as you merge this pull request I’ll create a branch for every dependency update, with the new version applied. The branch creation should trigger your testing services to check the new version. Using the results of these tests I’ll try to open meaningful and helpful pull requests and issues, so your dependencies remain working and up-to-date.

-  "underscore": "^1.6.0"
+  "underscore": "^1.7.0"

In the above example you can see an in-range update. 1.7.0 is included in the old ^1.6.0 range, because of the caret ^ character .
When the test services report success I’ll delete the branch again, because no action needs to be taken – everything is fine.
When there is a failure however, I’ll create an issue so you know about the problem immediately.

This way every single version update of your dependencies will either continue to work with your project, or you’ll get to know of potential problems immediately.

-  "lodash": "^3.0.0"
+  "lodash": "^4.0.0"

In this example the new version 4.0.0 is not included in the old ^3.0.0 range.
For version updates like these – let’s call them “out of range” updates – you’ll receive a pull request.

Now you no longer need to check for exciting new versions by hand – I’ll just let you know automatically.
And the pull request will not only serve as a reminder to update. In case it passes your decent test suite that’s a strong reason to merge right away :shipit:

💁‍♂️ Not sure how things are going to work exactly?

There is a collection of frequently asked questions and of course you may always ask my humans.


Good luck with your project and see you soon ✨

Your Greenkeeper Bot 🌴

@alrra
Copy link
Contributor

alrra commented Apr 27, 2017

updates all your dependencies to their latest version.

Done in #144.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant