Bump npm from 7.12.0 to 8.17.0

[dependabot[bot]]

Bumps npm from 7.12.0 to 8.17.0.

Release notes

Sourced from npm's releases.

libnpmhook: v8.0.3

8.0.3 (2022-04-06)

Bug Fixes

• replace deprecated String.prototype.substr() (#4667) (e3da5df)
• update readme badges (#4658) (2829cb2)

Dependencies

• @​npmcli/template-oss@​3.2.1 (aac01b8)
• @​npmcli/template-oss@​3.2.2 (#4639) (a59fd2c)

libnpmhook libnpmhook-v8.0.2

Documentation

• standardize changelog heading (#4510) (91f03ee)

libnpmhook libnpmhook-v8.0.1

Bug Fixes

• set proper workspace repo urls in package.json (#4476) (0cfc155)

Changelog

Sourced from npm's changelog.

v8.17.0 (2022-08-10)

Features

• 96b6781 #5263 feat(arborist): add option to forcibly skip loading a virtual tree (@​nlf)

Bug Fixes

• 9078e27 #5263 fix(query): tell arborist to load an actual tree, not a virtual one (@​nlf)
• c992fd6 #5273 fix: look up local command bins from local tree (@​wraithgar)
• 95ae9f2 #5253 fix: only try to run global bin if the bin name exists (@​wraithgar)
• daaf461 #5291 fix: ignore global prefix if --prefix is used (@​wraithgar)

Documentation

• f281ec8 #5257 docs: Fix link syntax in dependency-selectors.md (@​aried3r)

Dependencies

• 741bccf #5284 deps: @npmcli/[email protected]
• 7f31b85 #5284 deps: [email protected]
• 2569d82 #5284 deps: [email protected]
• a396f8d #5284 deps: @npmcli/[email protected]
• a9b5306 #5284 deps: [email protected]
• 786f753 #5284 deps: [email protected]
• 7b702b6 #5284 deps: [email protected]
• e74f99e #5284 deps: [email protected]
• 9833066 #5284 deps: [email protected]
• 4e5dd73 #5284 deps: [email protected]
• d0f5995 #5284 deps: @npmcli/[email protected]
• 8d870c5 #5275 deps: [email protected]

v8.16.0 (2022-08-03)

Features

• 3c024ac #5000 feat: add npm query cmd (@​ruyadorno) (@​wraithgar)
• 703dbbf #4860 feat: add --replace-registry-host= (@​fritzy)

Bug Fixes

• eac1bf2 #5164 fix(ls): when filtering workspaces, make sure the edge has a to before checking if its a workspace (@​nlf)
• 47cc95d #5227 fix(arborist): use the sourceReference root rather than the node root for overrides (@​nlf)
• 050284d #5233 fix(arborist): pass the edge to fromPath in order to determine correct path (@​nlf)
• d315ead #5243 fix: gracefully exit login and publish commands on Ctrl+C (SIGINT) in the new webAuthn flow (@​neeldani)
• ea44995 #5244 fix: properly find locally/globally/npxCache packages (@​wraithgar)
• 19f1497 #5244 fix: use binPaths (@​wraithgar)
• 3b30af2 #5244 fix: fix exec tests and clean up workspace-location-msg (@​wraithgar)
• 8233fca #5248 fix(arborist): fix bare attribute queries (@​darcyclarke)
• 19a8346 #5250 fix: properly find and run global scoped packages (@​wraithgar)

... (truncated)

Commits

• 9dc6983 8.17.0
• d54ab91 chore: update AUTHORS
• 59f6c8a chore: changelog for v8.17.0
• 8d870c5 deps: [email protected]
• 1ffcfed chore(latest): release libnpmexec 4.0.10
• f376553 chore(latest): release arborist 5.5.0 (#5274)
• 222f4fe chore: fix tests for @​npmcli/run-script@​4.2.1
• 76e477c chore(arborist): fix test snapshots for @​npmcli/run-script@​4.2.1
• d0f5995 deps: @​npmcli/run-script@​4.2.1
• 4e5dd73 deps: [email protected]
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)