Skip to content

Bump dependabot-omnibus from 0.115.0 to 0.125.2

NipaNipa requested to merge dependabot/bundler/dependabot-omnibus-0.125.2 into master

Bumps dependabot-omnibus from 0.115.0 to 0.125.2.

Changelog

Sourced from dependabot-omnibus's changelog.

v0.125.2, 11 November 2020

  • Update CI jobs env variable assignment (@​baseballlover723)
  • Hex: Support elixir Code.eval_file without specifying a relative directory (@​baseballlover723)
  • JS: Explain update not possible for yarn and npm
  • Extract DependencyFileBuilder to remove duplication

v0.125.1, 5 November 2020

  • Escape SharedHelpers.run_shell_command with shellwords

v0.125.0, 5 November 2020

  • Bundler: Explain why security update was not possible
  • Raise descriptive error when update is not possible
  • Go mod: Handle post-v0 module path updates

v0.124.8, 4 November 2020

  • Add missing python versions: 3.6.12 3.6.11 3.6.10, 3.5.10 and 3.5.8

v0.124.7, 3 November 2020

  • composer: assume a helper terminated by SIGKILL is OutOfMemory
  • dry-run: handle comma separated list of deps
  • Bump jest from 26.6.1 to 26.6.2 in /npm_and_yarn/helpers
  • Bump phpstan/phpstan from 0.12.49 to 0.12.53 in /composer/helpers
  • Bump npm-user-validate from 1.0.0 to 1.0.1 in /npm_and_yarn/helpers

v0.124.6, 2 November 2020

  • Go mod: handle major version mismatch
  • Cargo: handle caret version requirements

v0.124.5, 30 October 2020

  • Go mod: Bump gomodules-extracted from commit
  • Go mod: Add/fix specs for missing meta tag and packages that 404

v0.124.4, 30 October 2020

  • Ignore go files that start with underscore or dot
  • Go mod: handle missing package url meta tags
  • Ignore go files tagged with +build
  • Handle missing VCS when converting git_source path
  • Fix relative dir on mac where tmp is in /private
  • Handle missing directory in cloned repo
  • Improve relative path code in vendor updater
  • Correctly handle vendored updates in nested directory
  • Raise generic DependabotError when all else fails
... (truncated)
Commits
  • 7d57a9d Merge pull request #2744 from dependabot/v0.125.2-release-notes
  • bd23c03 Apply suggestions from code review
  • a44eaca v0.125.2
  • 0c064b1 Merge pull request #2732 from dependabot/jurre/explain-npm-update-not-possible
  • f3a7f68 Merge pull request #2738 from baseballlover723/pr/elixir_code_eval_bugfix
  • 9972107 Merge pull request #2740 from baseballlover723/pr/fix_ci_warnings
  • 4331fe4 update ci jobs env variable assignment
  • c27e585 added a test for evaling a file without a relative directory
  • b1378e3 support elixir Code.eval_file without specifying a relative directory
  • 7edf64f Create npm context
  • Additional commits viewable in compare view

Merge request reports