Skip to content

Comments

Bump simple-git and @bigcommerce/stencil-cli#8

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/simple-git-and-bigcommerce/stencil-cli-3.18.0
Open

Bump simple-git and @bigcommerce/stencil-cli#8
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/simple-git-and-bigcommerce/stencil-cli-3.18.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 6, 2023

Bumps simple-git to 3.18.0 and updates ancestor dependency @bigcommerce/stencil-cli. These dependencies need to be updated together.

Updates simple-git from 1.122.0 to 3.18.0

Release notes

Sourced from simple-git's releases.

simple-git@3.18.0

Minor Changes

  • 5100f04: Add new interface for showBuffer to allow using git show on binary files.

Patch Changes

  • f54cd0d: Examples and documentation for outputHandler

simple-git@3.17.0

Minor Changes

  • a63cfc2: Timeout plugin can now be configured to ignore data on either stdOut or stdErr in the git process when determining whether to kill the spawned process.

simple-git@3.16.1

Patch Changes

  • 066b228: Fix overly permissive regex in push parser

simple-git@3.16.0

Minor Changes

  • 97fde2c: Support the use of -B in place of the default -b in checkout methods
  • 0a623e5: Adds vulnerability detection to prevent use of --upload-pack and --receive-pack without explicitly opting in.

Patch Changes

  • ec97a39: Include restricting the use of git push --exec with other allowUnsafePack exclusions, thanks to @​stsewd for the suggestion.

simple-git@3.15.1

Patch Changes

  • de570ac: Resolves an issue whereby non-strings can be passed into the config switch detector.

simple-git@3.15.0

Minor Changes

  • 7746480: Disables the use of inline configuration arguments to prevent unitentionally allowing non-standard remote protocols without explicitly opting in to this practice with the new allowUnsafeProtocolOverride property having been enabled.

Patch Changes

  • 7746480: - Upgrade repo dependencies - lerna and jest
    • Include node@19 in the test matrix

simple-git@3.14.1

Patch Changes

  • 5a2e7e4: Add version parsing support for non-numeric patches (including "built from source" style 1.11.GIT)

simple-git@3.14.0

... (truncated)

Changelog

Sourced from simple-git's changelog.

3.18.0

Minor Changes

  • 5100f04: Add new interface for showBuffer to allow using git show on binary files.

Patch Changes

  • f54cd0d: Examples and documentation for outputHandler

3.17.0

Minor Changes

  • a63cfc2: Timeout plugin can now be configured to ignore data on either stdOut or stdErr in the git process when determining whether to kill the spawned process.

3.16.1

Patch Changes

  • 066b228: Fix overly permissive regex in push parser

3.16.0

Minor Changes

  • 97fde2c: Support the use of -B in place of the default -b in checkout methods
  • 0a623e5: Adds vulnerability detection to prevent use of --upload-pack and --receive-pack without explicitly opting in.

Patch Changes

  • ec97a39: Include restricting the use of git push --exec with other allowUnsafePack exclusions, thanks to @​stsewd for the suggestion.

3.15.1

Patch Changes

  • de570ac: Resolves an issue whereby non-strings can be passed into the config switch detector.

3.15.0

Minor Changes

  • 7746480: Disables the use of inline configuration arguments to prevent unitentionally allowing non-standard remote protocols without explicitly opting in to this practice with the new allowUnsafeProtocolOverride property having been enabled.

Patch Changes

  • 7746480: - Upgrade repo dependencies - lerna and jest
    • Include node@19 in the test matrix

... (truncated)

Commits
  • a52466d Version Packages (#917)
  • 155c78d Add new interface git.showBuffer to allow using git.show with binary file...
  • 4f7d401 Add example documentation for the output handler
  • a3a94e7 (chore) Update optional argument syntax throughout readme
  • a86dc31 syntax correction
  • 6752835 Version Packages (#903)
  • a63cfc2 Fix/timeout progress combo (#900)
  • 3a0ac21 Version Packages
  • 9971b23 Update push.spec.ts
  • d5c11b5 Fix regex in parse-push.ts
  • Additional commits viewable in compare view

Updates @bigcommerce/stencil-cli from 1.17.0 to 7.1.0

Release notes

Sourced from @​bigcommerce/stencil-cli's releases.

7.1.0

7.1.0 (2023-04-27)

Features

Bug Fixes

  • fix(storefront): MERC-9452 Return variation id when activating theme (#1094) (027b5c0)

7.0.1

7.0.1 (2023-04-13)

Bug Fixes

7.0.0

7.0.0 (2023-03-30)

Bug Fixes

  • update scss autofix cmd name (de977a4)

Features

  • strf-10292 Node 16 Support (#1048) (c754933)
  • strf-10292 Node 18 Support (#1048) (#1058) (48c912c)
  • strf-10366 Beta branch cut off (e7887ea)
  • strf-10437 Autofix script: conditional file import (#1071) (e4d084c)
  • strf-10457 Conditional multi import (483c752)
  • strf-10477, strf-10457 Base-level rules and conditional multi file import (037c4d5)
  • strf-10482 Bad comma in the selectors (14f4f79)
  • strf-10485 Nested multi file import (5507b5e)
  • strf-10507 Scss autofix issue: Undefined variable (4991e6f)

BREAKING CHANGES

Drop Node 14 Support

... (truncated)

Changelog

Sourced from @​bigcommerce/stencil-cli's changelog.

7.1.0 (2023-04-27)

Features

Bug Fixes

  • fix(storefront): MERC-9452 Return variation id when activating theme (#1094) (027b5c0)

7.0.1 (2023-04-13)

Bug Fixes

7.0.0 (2023-03-30)

Bug Fixes

  • update scss autofix cmd name (de977a4)

Features

  • storefront: strf-10292 Node 16 Support (#1048) (c754933)
  • storefront: strf-10292 Node 18 Support (#1048) (#1058) (48c912c)
  • strf-10366 beta version (e7887ea)
  • strf-10437 Autofix script: conditional file import (#1071) (e4d084c)
  • strf-10457 Conditional multi import (483c752)
  • strf-10477, strf-10457 Base-level rules and conditional multi file import (037c4d5)
  • strf-10482 Bad comma in the selectors (14f4f79)
  • STRF-10485 Nested multi file import (5507b5e)
  • STRF-10507 Scss autofix issue: Undefined variable (4991e6f)

BREAKING CHANGES

  • storefront: Drop Node 14 Support

6.1.1 (2023-02-28)

Reverts

  • "feat: strf-10437 Autofix script: conditional file import (#1064)" (#1068) (060b713)

... (truncated)

Commits
  • e671f6b feat: add codewoners (#1097)
  • 0926e81 Merge pull request #1094 from bc-jcha/MERC-9452
  • 027b5c0 chore(storefront): Return variation id when activating theme
  • 416c198 chore(release): update release 7.0.1 (#1092)
  • 4f550e1 fix(storefront): fix typo in AutoFixer (#1091)
  • de977a4 fix: update scss autofix cmd name
  • 4991e6f feat: STRF-10507 Scss autofix issue: Undefined variable
  • 5507b5e feat: STRF-10485 Nested multi file import
  • 14f4f79 feat: strf-10482 Bad comma in the selectors
  • 037c4d5 feat: strf-10477, strf-10457 Base-level rules and conditional multi file import
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by bcnpmuser, a new releaser for @​bigcommerce/stencil-cli since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump simple-git and @bigcommerce/stencil-cli
d4bac59 
Bumps [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) to 3.18.0 and updates ancestor dependency [@bigcommerce/stencil-cli](https://github.com/bigcommerce/stencil-cli). These dependencies need to be updated together.


Updates `simple-git` from 1.122.0 to 3.18.0
- [Release notes](https://github.com/steveukx/git-js/releases)
- [Changelog](https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md)
- [Commits](https://github.com/steveukx/git-js/commits/simple-git@3.18.0/simple-git)

Updates `@bigcommerce/stencil-cli` from 1.17.0 to 7.1.0
- [Release notes](https://github.com/bigcommerce/stencil-cli/releases)
- [Changelog](https://github.com/bigcommerce/stencil-cli/blob/master/CHANGELOG.md)
- [Commits](bigcommerce/stencil-cli@1.17.0...7.1.0)

---
updated-dependencies:
- dependency-name: simple-git
  dependency-type: indirect
- dependency-name: "@bigcommerce/stencil-cli"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 6, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants