chore(deps): bump yaml and semantic-release #380
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Removes [yaml](https://github.com/eemeli/yaml). It's no longer used after updating ancestor dependency [semantic-release](https://github.com/semantic-release/semantic-release). These dependencies need to be updated together. Removes `yaml` Updates `semantic-release` from 19.0.3 to 21.0.1 - [Release notes](https://github.com/semantic-release/semantic-release/releases) - [Commits](semantic-release/semantic-release@v19.0.3...v21.0.1) --- updated-dependencies: - dependency-name: yaml dependency-type: indirect - dependency-name: semantic-release dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
requested review from
fmvilas,
derberg,
dalelane,
smoya and
char0n
as code owners
dependabot
bot
added
dependencies
|
Kudos, SonarCloud Quality Gate passed!
|
|
Here is the entire list of breaking changes on v20.0.0 21.0.0 (2023-03-24) |
I don't fully understand if this affects us. We do have projects that are ESM and others that are CommonJS.
CI do not install node v18 but 14 in this case
Relates to the previous point.
We already use cc @derberg |
|
actually asyncapi/.github#205 must be done to remove semantic-release from package.json, and other related dependencies and use the latest release configuration |
|
Looks like these dependencies are updatable in another way, so this is no longer needed. |
dependabot
bot
deleted the
dependabot/npm_and_yarn/yaml-and-semantic-release--removed
branch
Removes yaml. It's no longer used after updating ancestor dependency semantic-release. These dependencies need to be updated together.
Removes
yamlUpdates
semantic-releasefrom 19.0.3 to 21.0.1Release notes
Sourced from semantic-release's releases.
... (truncated)
Commits
4bddb37fix(deps): update dependency env-ci to v9 (#2757)aa90774chore(deps): update dependency testdouble to v3.17.2 (#2751)d7e14f6docs(artifactory): removed details about using artifactory with legacy auth4a943a5chore(deps): pin dependencies (#2744)f47a510chore(deps): lock file maintenance (#2737)05596bcchore(deps): update dependency prettier to ^2.8.4 (#2746)c6e84efchore(deps): update dependency sinon to v15.0.3 (#2748)0cbe804chore(deps): update dependency fs-extra to ^11.1.0 (#2745)ea32d10chore(deps): update dependency testdouble to v3.17.1 (#2740)deb1b7fMerge pull request #2741 from semantic-release/betaDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.