Skip to content

Bump dependabot-omnibus from 0.115.0 to 0.133.3

NipaNipa requested to merge dependabot/bundler/dependabot-omnibus-0.133.3 into master

Bumps dependabot-omnibus from 0.115.0 to 0.133.3.

Changelog

Sourced from dependabot-omnibus's changelog.

v0.133.3, 16 February 2021

  • common: when detecting changes in vendored dependencies, assume resources are binary
  • Bump phpstan/phpstan from 0.12.74 to 0.12.76 in /composer/helpers/v2
  • Bump eslint from 7.19.0 to 7.20.0 in /npm_and_yarn/helpers
  • Bump @npmcli/arborist from 2.2.1 to 2.2.2 in /npm_and_yarn/helpers
  • Only run flake8 on python helpers folder
  • Add option to profile dry-run using Stackprof
  • Fix go_modules flaky spec accessing archive.org
  • Restore npm6/7 yanked version spec
  • npm: Convert FileParser specs to project fixtures

v0.133.2, 11 February 2021

  • Docker: Fix media types in Accept header for Docker Registry
  • Convert LockfileParserSpec to use project based fixtures

v0.133.1, 10 February 2021

  • npm: fix npm 7 workspace bug when updating nested packages
  • npm: correctly parse npm 7 version from package dependencies
  • npm: Refactor NpmLockfileUpdater
  • Update npm from 7.5.2 to 7.5.3
  • Bump @npmcli/arborist from 2.2.0 to 2.2.1 in /npm_and_yarn/helpers
  • Bump phpstan/phpstan from 0.12.71 to 0.12.74 in /composer/helpers/v2
  • Bump phpstan/phpstan from 0.12.71 to 0.12.74 in /composer/helpers/v1

v0.133.0, 9 February 2021

  • Bundler: Raise UnexpectedExternalCode if reject_external_code: true and the update involves external code

v0.132.0, 8 February 2021

  • npm: Add support for updating npm 7 lockfiles

v0.131.3, 8 February 2021

  • Nuget: handle version ranges in VersionFinder

v0.131.2, 5 February 2021

  • Maven: handle invalid pom references
  • Maven: Raise DependencyFileNotResolvable when invalid repo is specified
  • Bump @npmcli/arborist from 2.1.1 to 2.2.0 in /npm_and_yarn/helpers

v0.131.1, 4 February 2021

  • Composer: handle invalid version string
  • Composer: Don't raise when adding temp platform extensions
  • Composer: Handle version constraints with both caret and dev postfix
... (truncated)
Commits
  • 23e1dac Merge pull request #3146 from dependabot/v0.133.3-release-notes
  • d2e170b v0.133.3
  • ad880ee Merge pull request #3141 from dependabot/jurre/stackprof
  • f3a325f Only run flake8 on python helpers folder
  • 4ee1491 Merge pull request #3140 from dependabot/feelepxyz/fix-go-mod-flake
  • 132f433 Add option to profile dry-run using Stackprof
  • 48ce4e5 Merge pull request #3138 from dependabot/feelepxyz/restore-npm-yanked-version...
  • ca26a46 Fix go_modules flaky spec accessing archive.org
  • 88eef37 Restore npm6/7 yanked version spec
  • 0d84067 Merge pull request #3135 from dependabot/dependabot/composer/composer/helpers...
  • Additional commits viewable in compare view

Merge request reports