Skip to content

Bump dependabot-omnibus from 0.115.0 to 0.125.4

NipaNipa requested to merge dependabot/bundler/dependabot-omnibus-0.125.4 into master

Bumps dependabot-omnibus from 0.115.0 to 0.125.4.

Changelog

Sourced from dependabot-omnibus's changelog.

v0.125.4, 17 November 2020

  • Yarn: Explain conflicting top-level dependency

v0.125.3, 16 November 2020

  • Bundler: Add top-level dependency to conflict explanation
  • Use conflicting deps explanation in the dry-run script
  • Bundler: Add explanation message to conflicting dependencies
  • Add js helper README with debugging tips.
  • JS: Include the top-level npm dependency for conflicting dependencies
  • Hex: support reading files in elixir supporting files like in mixfiles (@​baseballlover723)
  • Update simplecov-console requirement from ~> 0.7.2 to ~> 0.8.0
  • Bump @npmcli/arborist from 1.0.9 to 1.0.10 in /npm_and_yarn/helpers
  • Hex: support elixir Code.require_file like Code.eval_file (@​baseballlover723)

v0.125.2, 11 November 2020

  • Update CI jobs env variable assignment (@​baseballlover723)
  • Hex: Support elixir Code.eval_file without specifying a relative directory (@​baseballlover723)
  • JS: Explain update not possible for yarn and npm
  • Extract DependencyFileBuilder to remove duplication

v0.125.1, 5 November 2020

  • Escape SharedHelpers.run_shell_command with shellwords

v0.125.0, 5 November 2020

  • Bundler: Explain why security update was not possible
  • Raise descriptive error when update is not possible
  • Go mod: Handle post-v0 module path updates

v0.124.8, 4 November 2020

  • Add missing python versions: 3.6.12 3.6.11 3.6.10, 3.5.10 and 3.5.8

v0.124.7, 3 November 2020

  • composer: assume a helper terminated by SIGKILL is OutOfMemory
  • dry-run: handle comma separated list of deps
  • Bump jest from 26.6.1 to 26.6.2 in /npm_and_yarn/helpers
  • Bump phpstan/phpstan from 0.12.49 to 0.12.53 in /composer/helpers
  • Bump npm-user-validate from 1.0.0 to 1.0.1 in /npm_and_yarn/helpers

v0.124.6, 2 November 2020

  • Go mod: handle major version mismatch
  • Cargo: handle caret version requirements
... (truncated)
Commits
  • b8c8b0e v0.125.4
  • a571f62 Merge pull request #2772 from dependabot/feelepxyz/explain-yarn-top-level
  • ccc4c3e Yarn: Explain conflicting top-level dependency
  • 15dd03b Merge pull request #2768 from dependabot/v0.125.3-release-notes
  • b1e06da v0.125.3
  • 4024ffc Merge pull request #2748 from baseballlover723/pr/sanitize_supporting_files
  • 187fe7d Merge pull request #2759 from dependabot/jurre/bundler-top-level-conflict
  • b88d37c Add top-level dependency to bundler conflict explanation
  • ecd309b Merge pull request #2749 from dependabot/dependabot/npm_and_yarn/npm_and_yarn...
  • 205f9e9 Merge pull request #2754 from dependabot/jurre/npm-explain-top-level-conflict
  • Additional commits viewable in compare view

Merge request reports