Bump dependabot-omnibus from 0.115.0 to 0.125.5 (!1217) · Merge requests · David Rodríguez / nipanipa

NipaNipa requested to merge dependabot/bundler/dependabot-omnibus-0.125.5 into master Nov 26, 2020

Bumps dependabot-omnibus from 0.115.0 to 0.125.5.

Changelog

Sourced from dependabot-omnibus's changelog.

v0.125.5, 25 November 2020

go_modules: raise Dependabot::GitDependenciesNotReachable for dependencies missing from github.com

JS: Prefer the npm conflicting dependency parser

Clean go_modules build cache in dependabot/dependabot-core docker image

Check Azure PR description against utf-16 encoded length

Bump @npmcli/arborist from 1.0.10 to 1.0.12 in /npm_and_yarn/helpers

Bump npm from 6.14.8 to 6.14.9 in /npm_and_yarn/helpers

Bump eslint from 7.12.1 to 7.14.0 in /npm_and_yarn/helpers

v0.125.4, 17 November 2020

Yarn: Explain conflicting top-level dependency

v0.125.3, 16 November 2020

Bundler: Add top-level dependency to conflict explanation

Use conflicting deps explanation in the dry-run script

Bundler: Add explanation message to conflicting dependencies

Add js helper README with debugging tips.

JS: Include the top-level npm dependency for conflicting dependencies

Hex: support reading files in elixir supporting files like in mixfiles (@baseballlover723)

Update simplecov-console requirement from ~> 0.7.2 to ~> 0.8.0

Bump @npmcli/arborist from 1.0.9 to 1.0.10 in /npm_and_yarn/helpers

Hex: support elixir Code.require_file like Code.eval_file (@baseballlover723)

v0.125.2, 11 November 2020

Update CI jobs env variable assignment (@baseballlover723)

Hex: Support elixir Code.eval_file without specifying a relative directory (@baseballlover723)

JS: Explain update not possible for yarn and npm

Extract DependencyFileBuilder to remove duplication

v0.125.1, 5 November 2020

Escape SharedHelpers.run_shell_command with shellwords

v0.125.0, 5 November 2020

Bundler: Explain why security update was not possible

Raise descriptive error when update is not possible

Go mod: Handle post-v0 module path updates

v0.124.8, 4 November 2020

Add missing python versions: 3.6.12 3.6.11 3.6.10, 3.5.10 and 3.5.8

v0.124.7, 3 November 2020

composer: assume a helper terminated by SIGKILL is OutOfMemory

... (truncated)

Commits

4bec76c Merge pull request #2790 from dependabot/v0.125.5-release-notes
8eafe20 Merge pull request #2789 from dependabot/feelepxyz/dry-run-count-rename
78df732 v0.125.5
bdd7375 Merge pull request #2788 from dependabot/go-modules-cleanup
1edcaee Rename force updater var to dependencies_to_unlock
a1cad16 Add updated dependency names and count to dry run
10b4d91 Merge pull request #2780 from dependabot/go-modules-git-dependency-not-reachable
646ff7a go_modules: clean build cache
6f2277a go_modules: raise GitDependenciesNotReachable
eb3fbc0 Merge pull request #2783 from dependabot/dependabot/npm_and_yarn/npm_and_yarn...
Additional commits viewable in compare view

Bump dependabot-omnibus from 0.115.0 to 0.125.5

v0.125.5, 25 November 2020

v0.125.4, 17 November 2020

v0.125.3, 16 November 2020

v0.125.2, 11 November 2020

v0.125.1, 5 November 2020

v0.125.0, 5 November 2020

v0.124.8, 4 November 2020

v0.124.7, 3 November 2020

Merge request reports