dependabot-npm_and_yarn 0.148.9 → 0.148.10

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 4df60b16fa9446fbe6a3f20a0cfbf7bebd32b71b869fafda7cdabb72f0f12c84
4
- data.tar.gz: 10b852168b53fc23ca6ee45c803f7585049b115021aeda8ecb38f9dc0bf5bb7a
3
+ metadata.gz: 2c964234e697fcb12766ee76eae545ead028e5459e93a46abcaa84e786eb8f59
4
+ data.tar.gz: fad159579488601152ed6969d42b48fa089b71077290c82fdba77c7c299e1055
5
5
  SHA512:
6
- metadata.gz: e5dcdd117392df3c514c41d8e46fc9c3071673d2202bc1323889c267dc8996ec3b12624a2a3be00bb60084e244e8bcd9c832007a71ef8b85625f46a7b0e9951b
7
- data.tar.gz: b7364912e3f1963583f4f740f67c75f49808f7bbc75faa0287807972ff793aebcb3f8aff49b98ff1b0a7ff6095f55813cad41cf055379962e30bb43fb51b4c2c
6
+ metadata.gz: fe2437098341fc281fed110fc11c8f1c3fa94fd7589d2ad20b2adc3ada566cc0bbd6be45aa78fbb5424d885a0a2beb4a717243e983a0dc7d12053fcae1408b08
7
+ data.tar.gz: c52d75a04929818af4249b7f95c708277d18a9984294f25c4c8186bb653e957c982eea56fd6e61f55b783cc6f4a0009562ede6db7a3bfe4e2dfdedaca5c8bd87
@@ -102,6 +102,7 @@ async function checkPeerDepsForReq(
102
102
  cwd: path.join(directory, path.dirname(requirement.file)),
103
103
  nonInteractive: true,
104
104
  enableDefaultRc: true,
105
+ extraneousYarnrcFiles: [".yarnrc"],
105
106
  });
106
107
 
107
108
  const lockfile = await Lockfile.fromDirectory(directory, reporter);
@@ -7,8 +7,8 @@ const Lockfile = require("@dependabot/yarn-lib/lib/lockfile").default;
7
7
  const fixDuplicates = require("./fix-duplicates");
8
8
  const { LightweightAdd, LightweightInstall } = require("./helpers");
9
9
  const { parse } = require("./lockfile-parser");
10
- const stringify = require("@dependabot/yarn-lib/lib/lockfile/stringify")
11
- .default;
10
+ const stringify =
11
+ require("@dependabot/yarn-lib/lib/lockfile/stringify").default;
12
12
 
13
13
  // Replace the version comments in the new lockfile with the ones from the old
14
14
  // lockfile. If they weren't present in the old lockfile, delete them.
@@ -39,6 +39,7 @@ async function getLockfileEntryForUpdate(depName, depVersion) {
39
39
  cwd: directory,
40
40
  nonInteractive: true,
41
41
  enableDefaultRc: true,
42
+ extraneousYarnrcFiles: [".yarnrc"],
42
43
  });
43
44
 
44
45
  // Empty lockfile
@@ -73,6 +74,7 @@ async function updateDependencyFile(
73
74
  cwd: directory,
74
75
  nonInteractive: true,
75
76
  enableDefaultRc: true,
77
+ extraneousYarnrcFiles: [".yarnrc"],
76
78
  });
77
79
  config.enableLockfileVersions = Boolean(originalYarnLock.match(/^# yarn v/m));
78
80
  const depName = updatedDependency && updatedDependency.name;
@@ -142,6 +142,7 @@ async function updateDependencyFile(
142
142
  cwd: path.join(directory, path.dirname(requirements.file)),
143
143
  nonInteractive: true,
144
144
  enableDefaultRc: true,
145
+ extraneousYarnrcFiles: [".yarnrc"],
145
146
  });
146
147
  config.enableLockfileVersions = Boolean(originalYarnLock.match(/^# yarn v/m));
147
148
 
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-npm_and_yarn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.148.9
4
+ version: 0.148.10
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.148.9
19
+ version: 0.148.10
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.148.9
26
+ version: 0.148.10
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement