bauta.js
bauta.js copied to clipboard
Published
20 hours ago •
axa-group
axa-group
chore(deps): update dependabot/fetch-metadata action to v2
This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| dependabot/fetch-metadata | action | major | v1.6.0 -> v2.1.0 |
Release Notes
dependabot/fetch-metadata (dependabot/fetch-metadata)
v2.1.0
What's Changed
- Relax
engine-strict=trueby @jeffwidman in https://github.com/dependabot/fetch-metadata/pull/510 - Handle branch names containing hyphen separators by @tspencer244 in https://github.com/dependabot/fetch-metadata/pull/450
- Switch to monthly release cadence by @jeffwidman in https://github.com/dependabot/fetch-metadata/pull/509
- v2.1.0 by @fetch-metadata-action-automation in https://github.com/dependabot/fetch-metadata/pull/518
New Contributors
- @tspencer244 made their first contribution in https://github.com/dependabot/fetch-metadata/pull/450
Full Changelog: https://github.com/dependabot/fetch-metadata/compare/v2.0.0...v2.1.0
v2.0.0: - Switch to node20
What's Changed
- Upgrade from node16 to node20 by @Nishnha in https://github.com/dependabot/fetch-metadata/pull/443 👈 this is a potentially breaking change for some workflows
v2is the new tracking tag by @jeffwidman in https://github.com/dependabot/fetch-metadata/pull/506- v2.0.0 by @fetch-metadata-action-automation in https://github.com/dependabot/fetch-metadata/pull/508
Full Changelog: https://github.com/dependabot/fetch-metadata/compare/v1.7.0...v2.0.0
v1.7.0
What's Changed
- Bump dotenv from 16.0.3 to 16.3.1 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/404
- Bump @types/node from 20.2.3 to 20.3.3 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/407
- Bump the eslint-dependencies group with 4 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/409
- Update dependabot.yml by @bdragon in https://github.com/dependabot/fetch-metadata/pull/410
- Bump @types/node from 20.3.3 to 20.4.0 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/411
- Bump yaml from 2.2.1 to 2.3.1 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/390
- Bump tough-cookie from 4.0.0 to 4.1.3 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/412
- Bump @types/node from 20.4.0 to 20.4.1 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/413
- Generate Dependabot PRs on Sundays weekly by @abdulapopoola in https://github.com/dependabot/fetch-metadata/pull/417
- Aggressively group prod and dev dependencies for NPM by @abdulapopoola in https://github.com/dependabot/fetch-metadata/pull/420
- Update .nvmrc to latest node 16 LTS version by @abdulapopoola in https://github.com/dependabot/fetch-metadata/pull/422
- Bump the dev-dependencies group with 9 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/421
- Bump the dev-dependencies group with 1 update by @dependabot in https://github.com/dependabot/fetch-metadata/pull/423
- Check for uncommitted files beyond the
diffdirectory by @jeffwidman in https://github.com/dependabot/fetch-metadata/pull/278 - Bump the dev-dependencies group with 6 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/424
- Bump the dev-dependencies group with 3 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/425
- Bump the dev-dependencies group with 6 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/428
- Bump the dev-dependencies group with 7 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/429
- Bump tibdex/github-app-token from 1.8.0 to 1.8.2 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/430
- Bump the dev-dependencies group with 4 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/432
- Bump actions/checkout from 3 to 4 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/436
- Bump the dev-dependencies group with 6 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/440
- Change actions/checkout@v3 to v4 in readme by @Nishnha in https://github.com/dependabot/fetch-metadata/pull/444
- Bump the dev-dependencies group with 4 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/445
- Bump @vercel/ncc from 0.36.1 to 0.38.0 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/435
- Bump the dev-dependencies group with 4 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/447
- Bump the dev-dependencies group with 3 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/448
- Bump @babel/traverse from 7.22.8 to 7.23.2 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/457
- Add blurbs about using a PAT to the readme by @Nishnha in https://github.com/dependabot/fetch-metadata/pull/466
- Bump @vercel/ncc from 0.38.0 to 0.38.1 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/462
- Bump actions/setup-node from 3 to 4 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/461
- Bump the dev-dependencies group with 13 updates by @dependabot in https://github.com/dependabot/fetch-metadata/pull/497
- Bump tibdex/github-app-token from 1.8.2 to 2.1.0 by @dependabot in https://github.com/dependabot/fetch-metadata/pull/442
- Scope app token to only this repo for security by @jeffwidman in https://github.com/dependabot/fetch-metadata/pull/501
- Switch to the official action for managing app tokens by @jeffwidman in https://github.com/dependabot/fetch-metadata/pull/504
- v1.7.0 by @fetch-metadata-action-automation in https://github.com/dependabot/fetch-metadata/pull/505
New Contributors
- @bdragon made their first contribution in https://github.com/dependabot/fetch-metadata/pull/410
- @abdulapopoola made their first contribution in https://github.com/dependabot/fetch-metadata/pull/417
Full Changelog: https://github.com/dependabot/fetch-metadata/compare/v1.6.0...v1.7.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- [ ] If you want to rebase/retry this PR, check this box
![mend-for-github-com[bot] avatar](https://avatars.githubusercontent.com/in/30796?v=4 "Published by a pub.dev verified publisher"){kind=small}
Dependency Review
✅ No vulnerabilities or license issues found.Scanned Manifest Files
.github/workflows/dependabot-automerge.yml
- dependabot/[email protected]
- dependabot/[email protected]
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Renovate Ignore Notification
Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for any future 2.x releases. But if you manually upgrade to 2.x then Renovate will re-enable minor and patch updates automatically.
If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.