Presences icon indicating copy to clipboard operation
Presences copied to clipboard

Published 20 hours ago • verified publisher icon PreMiD

chore: update dependencies

Open Timeraa opened this issue 2 years ago • 3 comments

This Pull Request updates all dependencies to their latest possible version but also pins them to that version to prevent other package managers like pnpm to use the latest version as no lock file exists.

This PR also updates pmd to version 1.0.3 which fixes the directory where the metadata.json is placed.

Timeraa avatar Sep 25 '22 19:09 Timeraa

Why would we pin these versions? That would prevent future deps being updated by Dependabot, no?

EncryptedDev avatar Sep 25 '22 20:09 EncryptedDev

Why would we pin these versions? That would prevent future deps being updated by Dependabot, no?

No, it will only prevent package managers from using the latest available. Dependabot (soon renovate) will still open Pull Requests.

Timeraa avatar Sep 26 '22 09:09 Timeraa

For example pnpm or npm use the latest mongodb version which then caused the mongodb type error.

Timeraa avatar Sep 26 '22 09:09 Timeraa