fix(deps): update all non-major dependencies #47

renovate · 2023-06-05T02:47:38Z

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@babel/parser (source)	`^7.22.3` -> `^7.22.4`
@babel/types (source)	`^7.22.3` -> `^7.22.4`
@types/react (source)	`^18.2.7` -> `^18.2.8`
@unocss/reset	`^0.52.4` -> `^0.53.0`
eslint (source)	`^8.41.0` -> `^8.42.0`
typescript (source)	`^5.0.4` -> `^5.1.3`
unocss	`^0.52.4` -> `^0.53.0`
unplugin-auto-import	`^0.16.2` -> `^0.16.4`
unplugin-vue-components	`^0.24.1` -> `^0.25.0`
vitest	`^0.31.1` -> `^0.31.4`

Release Notes

babel/babel (@babel/parser)

`v7.22.4`

Compare Source

v7.22.4 (2023-05-29)

🐛 Bug Fix

babel-traverse
- #15649 Set shorthand: false when renaming an identifier inside an object property (@coderaiser)

🏠 Internal

babel-types
- #15666 Add missing attributes/assertions to VISITOR_KEYS (@nicolo-ribaudo)
babel-parser
- #15667 Mark assert attributes with extra.deprecatedAssertSyntax (@nicolo-ribaudo)

Committers: 3

Huáng Jùnliàng (@JLHwung)
Nicolò Ribaudo (@nicolo-ribaudo)
coderaiser (@coderaiser)

babel/babel (@babel/types)

`v7.22.4`

Compare Source

🐛 Bug Fix

babel-traverse
- #15649 Set shorthand: false when renaming an identifier inside an object property (@coderaiser)

🏠 Internal

babel-types
- #15666 Add missing attributes/assertions to VISITOR_KEYS (@nicolo-ribaudo)
babel-parser
- #15667 Mark assert attributes with extra.deprecatedAssertSyntax (@nicolo-ribaudo)

unocss/unocss

`v0.53.0`

Compare Source

🚨 Breaking Changes

Normalize extraction content sources - by @antfu and sibbng in https://github.com/unocss/unocss/issues/2719 (3d0c6)
preset-mini: Fix pseudo variants generation order, close #2713 - by @antfu in https://github.com/unocss/unocss/issues/2714 and https://github.com/unocss/unocss/issues/2713 (5c681)

🚀 Features

preset-icons: Fallback on env does not support NodeLoader - by @Fatpandac in https://github.com/unocss/unocss/issues/2693 (4cdac)
preset-mini: Pseudo-class function for custom arguments - by @enpitsuLin in https://github.com/unocss/unocss/issues/2694 (db339)

🐞 Bug Fixes

core:
- Merge theme in mergeConfigs - by @enkot in https://github.com/unocss/unocss/issues/2710 (867fb)
svelte-scoped:
- Use files not folders for exports to fix jiti stub - by @jacob-8 in https://github.com/unocss/unocss/issues/2715 (40a62)
- Global wrap preflights and safelist classes when used in component libraries - by @jacob-8 and @antfu in https://github.com/unocss/unocss/issues/2695 (fe86c)

View changes on GitHub

`v0.52.7`

Compare Source

🚀 Features

svelte-scoped: Add theme() to transform style block pipeline - by @jacob-8 in https://github.com/unocss/unocss/issues/2689 (38487)

🐞 Bug Fixes

transformer-compile-class: Improve duplication checking - by @antfu (4a073)

View changes on GitHub

View changes on GitHub

`v0.52.5`

Compare Source

🐞 Bug Fixes

svelte-scoped:
- Don't add spaces when class names include expressions as just part of them - by @jacob-8 in https://github.com/unocss/unocss/issues/2684 (ee304)
- Properly pass vite command to UnocssSveltePreprocess - by @jacob-8 in https://github.com/unocss/unocss/issues/2685 (fda1c)

View changes on GitHub

eslint/eslint

`v8.42.0`

Compare Source

Features

b8448ff feat: correct no-useless-return behaviour in try statements (#16996) (Nitin Kumar)

Bug Fixes

a589636 fix: Config with ignores and without files should not always apply (#17181) (Milos Djermanovic)
c4fad17 fix: Correct ignore message for "node_modules" subfolders (#17217) (Francesco Trotta)

Documentation

01d7142 docs: Update README (GitHub Actions Bot)
e5182b7 docs: Update README (GitHub Actions Bot)

Chores

6ca5b7c chore: upgrade @eslint/js @8.42.0 (#17236) (Milos Djermanovic)
67fc5e7 chore: package.json update for @eslint/js release (ESLint Jenkins)
0892412 refactor: remove Identifier listener in no-irregular-whitespace (#17235) (Milos Djermanovic)
f67d298 test: Add FlatESLint tests with missing config files (#17164) (Milos Djermanovic)
5b68d51 chore: Fix fixedsize attribute in code path analysis DOT debug output (#17202) (Milos Djermanovic)
37432f2 chore: update descriptions in key-spacing tests (#17195) (Milos Djermanovic)

Microsoft/TypeScript

`v5.1.3`: TypeScript 5.1.3

Compare Source

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

Downloads are available on:

NuGet package

antfu/unplugin-auto-import

`v0.16.4`

Compare Source

🚀 Features

Support rspack - by @loilo in https://github.com/antfu/unplugin-auto-import/issues/385 (5e03a)

View changes on GitHub

`v0.16.3`

Compare Source

🐞 Bug Fixes

Generate sourcemap with hires - by @lishaobos in https://github.com/antfu/unplugin-auto-import/issues/382 and https://github.com/antfu/unplugin-auto-import/issues/384 (61f12)

View changes on GitHub

antfu/unplugin-vue-components

`v0.25.0`

Compare Source

🚀 Features

Support rspack - by @loilo in https://github.com/antfu/unplugin-vue-components/issues/637 (c14f4)
Tdesign no need import sideEffects - by @candy-Tong in https://github.com/antfu/unplugin-vue-components/issues/623 (30010)
arco: Add ArcoResolver exclude to filter components with the sa… - by @l1uqi and @antfu in https://github.com/antfu/unplugin-vue-components/issues/628 (4729f)

🐞 Bug Fixes

resolver/devui: Fix components not found - by @banlify in https://github.com/antfu/unplugin-vue-components/issues/614 (f0e7d)

View changes on GitHub

vitest-dev/vitest

`v0.31.4`

Compare Source

🚀 Features

Enable experimentalOptimizer - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3413 (5a894)

🐞 Bug Fixes

vite-node: Deps.inline doesn't work - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3485 (be930)

View changes on GitHub

`v0.31.3`

Compare Source

🚀 Features

Support VITE_NODE_DEPS_MODULE_DIRECTORIES from .npmrc - by @AriPerkkio in https://github.com/vitest-dev/vitest/issues/3471 (393bf)

🐞 Bug Fixes

logger: Print unhandled errors before summary - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3474 (4c9a7)
runner: Suite options do not propagate to nested suites (fix: #3467) - by @xsjcTony in https://github.com/vitest-dev/vitest/issues/3473 and https://github.com/vitest-dev/vitest/issues/3467 (9fb9d)
vite-node: Clear importers when invalidating module - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3475 (add29)

View changes on GitHub

`v0.31.2`

Compare Source

🚀 Features

Throw error if using inline snapshot inside of test.each or describe.each - by @fenghan34 and @sheremet-va in https://github.com/vitest-dev/vitest/issues/3360 (7c2f7)
Pass down meta information to Node.js process - by @sheremet-va and @dammy001 in https://github.com/vitest-dev/vitest/issues/3449 (e39ad)
coverage: Add reportOnFailure option - by @AriPerkkio and @sheremet-va in https://github.com/vitest-dev/vitest/issues/3453 (1988f)
dev: Add moduleDirectories option to the vitest config - by @fooddilsn and @sheremet-va in https://github.com/vitest-dev/vitest/issues/3337 (b3602)

🐞 Bug Fixes

Don't print empty diff - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3437 (32b53)
Don't restore methods in automocked dependencies - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3438 (d1afd)
Dot reporter scrollback buffer spam - by @gtm-nayan in https://github.com/vitest-dev/vitest/issues/3415 (e6792)
Gracefully exit when first SIGINT is received - by @AriPerkkio in https://github.com/vitest-dev/vitest/issues/3407 (a2cc2)
rejects & resolves breaks with thenable objects - by @fenghan34 in https://github.com/vitest-dev/vitest/issues/3456 (4e996)
Prevent birpc timeouts when Math.random mock is not restored - by @AriPerkkio in https://github.com/vitest-dev/vitest/issues/3460 (cd5d5)
Assertion diff message now handle non writable property correctly - by @PCreations in https://github.com/vitest-dev/vitest/issues/3422 (f75ab)
Extend logging of process timeout errors - by @AriPerkkio in https://github.com/vitest-dev/vitest/issues/3452 (42643)
Support requiring files with less extension - by @rluvaton in https://github.com/vitest-dev/vitest/issues/3465 (4d045)
cli:
- Improve colors used when erroring - by @ghiscoding and @sheremet-va in https://github.com/vitest-dev/vitest/issues/3349 (16681)
runner:
- Suite timeout does not take effect - by @btea in https://github.com/vitest-dev/vitest/issues/3455 (82547)
spy:
- Don't print received calls if there are no calls - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3405 (41e11)
typecheck:
- Show tsc errors not related to test files - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3441 (a1da5)
types:
- Fix PartialMock with async TReturns - by @ghry5 in https://github.com/vitest-dev/vitest/issues/3462 (b664d)
vite-node:
- Circular import stuck - by @Dunqing in https://github.com/vitest-dev/vitest/issues/3418 (632ee)
- Coerce to string in import(dep) - by @jcbhmr and @sheremet-va in https://github.com/vitest-dev/vitest/issues/3430 (b72eb)
- Don't remove sourcemap string in source code - by @rxliuli and @sheremet-va in https://github.com/vitest-dev/vitest/issues/2918 and https://github.com/vitest-dev/vitest/issues/3379 (02dc9)
- Don't externalize "dist" by default - by @sheremet-va in https://github.com/vitest-dev/vitest/issues/3446 (306b2)

View changes on GitHub

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

bolt-new-by-stackblitz · 2023-06-05T02:47:41Z

Run & review this pull request in StackBlitz Codeflow.

socket-security · 2023-06-05T02:49:18Z

New dependency changes detected. Learn more about Socket for GitHub ↗︎

🚨 Potential security issues found in this pull request. To accept the risk, merge this PR and you will not be notified again.

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@* or ignore all packages with @SocketSecurity ignore-all

@SocketSecurity ignore vue-demi@0.14.0

📜 Install scripts

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Package	Script field	Source
vue-demi@0.14.0 (added)	`postinstall`	`pnpm-lock.yaml`, `playground/package.json` via @vueuse/core@10.1.2, unplugin-auto-import@0.16.4

Pull request alert summary

Issue	Status
Install scripts	⚠️ 1 issue
Native code	✅ 0 issues
Bin script shell injection	✅ 0 issues
Unresolved require	✅ 0 issues
Invalid package.json	✅ 0 issues
HTTP dependency	✅ 0 issues
Git dependency	✅ 0 issues
Potential typo squat	✅ 0 issues
Known Malware	✅ 0 issues
Telemetry	✅ 0 issues
Protestware/Troll package	✅ 0 issues

📊 Modified Dependency Overview:

➕ Added Package	Capability Access	`+/-` Transitive Count	Publisher
@sxzz/eslint-config@2.4.6	network	`+186`	sxzz
unplugin-vue-components@0.25.0	filesystem, environment	`+14`	antfu
@vueuse/core@10.1.2	network, environment	`+9`	antfu
tsup@6.7.0	eval, network, filesystem, environment	`+41`	egoist
vue-tsc@1.6.5	eval, filesystem	`+22`	johnsoncodehk
@vitejs/plugin-vue@4.2.3	environment	`+7`	vitebot
unocss@0.53.0	network	`+59`	antfu
unplugin-auto-import@0.16.4	filesystem	`+19`	antfu

⬆️ Updated Package	Version Diff	Added Capability Access	`+/-` Transitive Count	Publisher
vitest@0.31.4	0.31.1...0.31.4	None	`+16/-38`	oreanno
eslint@8.42.0	8.41.0...8.42.0	None	`+3/-3`	eslintbot
@babel/types@7.22.4	7.22.3...7.22.4	None	`+0/-0`	nicolo-ribaudo
@unocss/reset@0.53.0	0.52.4...0.53.0	None	`+0/-0`	antfu
@babel/parser@7.22.4	7.22.3...7.22.4	None	`+1/-0`	nicolo-ribaudo

🚮 Removed packages: @types/react@18.2.7, typescript@5.0.4

fix(deps): update all non-major dependencies

95866ee

renovate bot added the dependencies label Jun 5, 2023

vercel bot deployed to Preview June 5, 2023 02:48 View deployment

sxzz approved these changes Jun 5, 2023

View reviewed changes

sxzz merged commit 5f75405 into main Jun 5, 2023

sxzz deleted the renovate/all-minor-patch branch June 5, 2023 07:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

fix(deps): update all non-major dependencies #47

fix(deps): update all non-major dependencies #47

Uh oh!

renovate bot commented Jun 5, 2023

Uh oh!

bolt-new-by-stackblitz bot commented Jun 5, 2023

Uh oh!

socket-security bot commented Jun 5, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

fix(deps): update all non-major dependencies #47

fix(deps): update all non-major dependencies #47

Uh oh!

Conversation

renovate bot commented Jun 5, 2023

Release Notes

v7.22.4 (2023-05-29)

🐛 Bug Fix

🏠 Internal

Committers: 3

🐛 Bug Fix

🏠 Internal

🚨 Breaking Changes

🚀 Features

🐞 Bug Fixes

🚀 Features

🐞 Bug Fixes

🚀 Features

🐞 Bug Fixes

🐞 Bug Fixes

Features

Bug Fixes

Documentation

Chores

v5.1.3: TypeScript 5.1.3

🚀 Features

🐞 Bug Fixes

🚀 Features

🐞 Bug Fixes

🚀 Features

🐞 Bug Fixes

🚀 Features

🐞 Bug Fixes

🚀 Features

🐞 Bug Fixes

Configuration

Uh oh!

bolt-new-by-stackblitz bot commented Jun 5, 2023

Uh oh!

socket-security bot commented Jun 5, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

`v5.1.3`: TypeScript 5.1.3