dependabot-npm_and_yarn 0.148.9 → 0.149.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/lib/yarn/peer-dependency-checker.js +1 -0
  3. data/helpers/lib/yarn/subdependency-updater.js +4 -2
  4. data/helpers/lib/yarn/updater.js +1 -0
  5. data/helpers/package-lock.json +91 -29
  6. data/helpers/package.json +1 -1
  7. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 4df60b16fa9446fbe6a3f20a0cfbf7bebd32b71b869fafda7cdabb72f0f12c84
4
- data.tar.gz: 10b852168b53fc23ca6ee45c803f7585049b115021aeda8ecb38f9dc0bf5bb7a
3
+ metadata.gz: 84318770cce970ab968995414b8506fa127b8c6d45e86bb9dcaf4951c02ad580
4
+ data.tar.gz: 97f47146cce6e26375deaa713c2ef64597a33bd270f05f7bf73f77a120de4848
5
5
  SHA512:
6
- metadata.gz: e5dcdd117392df3c514c41d8e46fc9c3071673d2202bc1323889c267dc8996ec3b12624a2a3be00bb60084e244e8bcd9c832007a71ef8b85625f46a7b0e9951b
7
- data.tar.gz: b7364912e3f1963583f4f740f67c75f49808f7bbc75faa0287807972ff793aebcb3f8aff49b98ff1b0a7ff6095f55813cad41cf055379962e30bb43fb51b4c2c
6
+ metadata.gz: 7f3e56abfe78c11e5807f497b3bd21db8dc5ed0123ba3f74b3e9e5f6987e925b20da5ad8ab1a1f18eb588711727c3d5b504e94023e42e2a34f6100d23c17f6a1
7
+ data.tar.gz: f5519fa147b1ef9b7558e58a1c325515ce1c63dc96c4432948f439ebc94efcdca44c04c7e68fb1f2b459a0bcdfe55c137e680e96aa1ad46c6800e254ef58c66e
data/helpers/lib/yarn/peer-dependency-checker.js CHANGED
@@ -102,6 +102,7 @@ async function checkPeerDepsForReq(
102
102
  cwd: path.join(directory, path.dirname(requirement.file)),
103
103
  nonInteractive: true,
104
104
  enableDefaultRc: true,
105
+ extraneousYarnrcFiles: [".yarnrc"],
105
106
  });
106
107
 
107
108
  const lockfile = await Lockfile.fromDirectory(directory, reporter);
data/helpers/lib/yarn/subdependency-updater.js CHANGED
@@ -7,8 +7,8 @@ const Lockfile = require("@dependabot/yarn-lib/lib/lockfile").default;
7
7
  const fixDuplicates = require("./fix-duplicates");
8
8
  const { LightweightAdd, LightweightInstall } = require("./helpers");
9
9
  const { parse } = require("./lockfile-parser");
10
- const stringify = require("@dependabot/yarn-lib/lib/lockfile/stringify")
11
- .default;
10
+ const stringify =
11
+ require("@dependabot/yarn-lib/lib/lockfile/stringify").default;
12
12
 
13
13
  // Replace the version comments in the new lockfile with the ones from the old
14
14
  // lockfile. If they weren't present in the old lockfile, delete them.
@@ -39,6 +39,7 @@ async function getLockfileEntryForUpdate(depName, depVersion) {
39
39
  cwd: directory,
40
40
  nonInteractive: true,
41
41
  enableDefaultRc: true,
42
+ extraneousYarnrcFiles: [".yarnrc"],
42
43
  });
43
44
 
44
45
  // Empty lockfile
@@ -73,6 +74,7 @@ async function updateDependencyFile(
73
74
  cwd: directory,
74
75
  nonInteractive: true,
75
76
  enableDefaultRc: true,
77
+ extraneousYarnrcFiles: [".yarnrc"],
76
78
  });
77
79
  config.enableLockfileVersions = Boolean(originalYarnLock.match(/^# yarn v/m));
78
80
  const depName = updatedDependency && updatedDependency.name;
data/helpers/lib/yarn/updater.js CHANGED
@@ -142,6 +142,7 @@ async function updateDependencyFile(
142
142
  cwd: path.join(directory, path.dirname(requirements.file)),
143
143
  nonInteractive: true,
144
144
  enableDefaultRc: true,
145
+ extraneousYarnrcFiles: [".yarnrc"],
145
146
  });
146
147
  config.enableLockfileVersions = Boolean(originalYarnLock.match(/^# yarn v/m));
147
148
 
data/helpers/package-lock.json CHANGED
@@ -16,7 +16,7 @@
16
16
  "helper": "run.js"
17
17
  },
18
18
  "devDependencies": {
19
- "eslint": "^7.26.0",
19
+ "eslint": "^7.27.0",
20
20
  "eslint-config-prettier": "^8.3.0",
21
21
  "jest": "^27.0.1",
22
22
  "prettier": "^2.3.0",
@@ -3225,9 +3225,9 @@
3225
3225
  }
3226
3226
  },
3227
3227
  "node_modules/eslint": {
3228
- "version": "7.26.0",
3229
- "resolved": "https://registry.npmjs.org/eslint/-/eslint-7.26.0.tgz",
3230
- "integrity": "sha512-4R1ieRf52/izcZE7AlLy56uIHHDLT74Yzz2Iv2l6kDaYvEu9x+wMB5dZArVL8SYGXSYV2YAg70FcW5Y5nGGNIg==",
3228
+ "version": "7.27.0",
3229
+ "resolved": "https://registry.npmjs.org/eslint/-/eslint-7.27.0.tgz",
3230
+ "integrity": "sha512-JZuR6La2ZF0UD384lcbnd0Cgg6QJjiCwhMD6eU4h/VGPcVGwawNNzKU41tgokGXnfjOOyI6QIffthhJTPzzuRA==",
3231
3231
  "dev": true,
3232
3232
  "dependencies": {
3233
3233
  "@babel/code-frame": "7.12.11",
@@ -3238,12 +3238,14 @@
3238
3238
  "debug": "^4.0.1",
3239
3239
  "doctrine": "^3.0.0",
3240
3240
  "enquirer": "^2.3.5",
3241
+ "escape-string-regexp": "^4.0.0",
3241
3242
  "eslint-scope": "^5.1.1",
3242
3243
  "eslint-utils": "^2.1.0",
3243
3244
  "eslint-visitor-keys": "^2.0.0",
3244
3245
  "espree": "^7.3.1",
3245
3246
  "esquery": "^1.4.0",
3246
3247
  "esutils": "^2.0.2",
3248
+ "fast-deep-equal": "^3.1.3",
3247
3249
  "file-entry-cache": "^6.0.1",
3248
3250
  "functional-red-black-tree": "^1.0.1",
3249
3251
  "glob-parent": "^5.0.0",
@@ -3255,7 +3257,7 @@
3255
3257
  "js-yaml": "^3.13.1",
3256
3258
  "json-stable-stringify-without-jsonify": "^1.0.1",
3257
3259
  "levn": "^0.4.1",
3258
- "lodash": "^4.17.21",
3260
+ "lodash.merge": "^4.6.2",
3259
3261
  "minimatch": "^3.0.4",
3260
3262
  "natural-compare": "^1.4.0",
3261
3263
  "optionator": "^0.9.1",
@@ -3264,7 +3266,7 @@
3264
3266
  "semver": "^7.2.1",
3265
3267
  "strip-ansi": "^6.0.0",
3266
3268
  "strip-json-comments": "^3.1.0",
3267
- "table": "^6.0.4",
3269
+ "table": "^6.0.9",
3268
3270
  "text-table": "^0.2.0",
3269
3271
  "v8-compile-cache": "^2.0.3"
3270
3272
  },
@@ -3402,6 +3404,18 @@
3402
3404
  }
3403
3405
  }
3404
3406
  },
3407
+ "node_modules/eslint/node_modules/escape-string-regexp": {
3408
+ "version": "4.0.0",
3409
+ "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz",
3410
+ "integrity": "sha512-TtpcNJ3XAzx3Gq8sWRzJaVajRs0uVxA2YAkdb1jm2YkPz4G6egUFAyA3n5vtEIZefPk5Wa4UXbKuS5fKkJWdgA==",
3411
+ "dev": true,
3412
+ "engines": {
3413
+ "node": ">=10"
3414
+ },
3415
+ "funding": {
3416
+ "url": "https://github.com/sponsors/sindresorhus"
3417
+ }
3418
+ },
3405
3419
  "node_modules/eslint/node_modules/globals": {
3406
3420
  "version": "13.7.0",
3407
3421
  "resolved": "https://registry.npmjs.org/globals/-/globals-13.7.0.tgz",
@@ -7041,11 +7055,29 @@
7041
7055
  "resolved": "https://registry.npmjs.org/lodash.clone/-/lodash.clone-4.5.0.tgz",
7042
7056
  "integrity": "sha1-GVhwRQ9aExkkeN9Lw9I9LeoZB7Y="
7043
7057
  },
7058
+ "node_modules/lodash.clonedeep": {
7059
+ "version": "4.5.0",
7060
+ "resolved": "https://registry.npmjs.org/lodash.clonedeep/-/lodash.clonedeep-4.5.0.tgz",
7061
+ "integrity": "sha1-4j8/nE+Pvd6HJSnBBxhXoIblzO8=",
7062
+ "dev": true
7063
+ },
7064
+ "node_modules/lodash.merge": {
7065
+ "version": "4.6.2",
7066
+ "resolved": "https://registry.npmjs.org/lodash.merge/-/lodash.merge-4.6.2.tgz",
7067
+ "integrity": "sha512-0KpjqXRVvrYyCsX1swR/XTK0va6VQkQM6MNo7PqW77ByjAhoARA8EfrP1N4+KlKj8YS0ZUCtRT/YUuhyYDujIQ==",
7068
+ "dev": true
7069
+ },
7044
7070
  "node_modules/lodash.toarray": {
7045
7071
  "version": "4.4.0",
7046
7072
  "resolved": "https://registry.npmjs.org/lodash.toarray/-/lodash.toarray-4.4.0.tgz",
7047
7073
  "integrity": "sha1-JMS/zWsvuji/0FlNsRedjptlZWE="
7048
7074
  },
7075
+ "node_modules/lodash.truncate": {
7076
+ "version": "4.4.2",
7077
+ "resolved": "https://registry.npmjs.org/lodash.truncate/-/lodash.truncate-4.4.2.tgz",
7078
+ "integrity": "sha1-WjUNoLERO4N+z//VgSy+WNbq4ZM=",
7079
+ "dev": true
7080
+ },
7049
7081
  "node_modules/loose-envify": {
7050
7082
  "version": "1.4.0",
7051
7083
  "resolved": "https://registry.npmjs.org/loose-envify/-/loose-envify-1.4.0.tgz",
@@ -13479,24 +13511,26 @@
13479
13511
  "dev": true
13480
13512
  },
13481
13513
  "node_modules/table": {
13482
- "version": "6.0.7",
13483
- "resolved": "https://registry.npmjs.org/table/-/table-6.0.7.tgz",
13484
- "integrity": "sha512-rxZevLGTUzWna/qBLObOe16kB2RTnnbhciwgPbMMlazz1yZGVEgnZK762xyVdVznhqxrfCeBMmMkgOOaPwjH7g==",
13514
+ "version": "6.7.1",
13515
+ "resolved": "https://registry.npmjs.org/table/-/table-6.7.1.tgz",
13516
+ "integrity": "sha512-ZGum47Yi6KOOFDE8m223td53ath2enHcYLgOCjGr5ngu8bdIARQk6mN/wRMv4yMRcHnCSnHbCEha4sobQx5yWg==",
13485
13517
  "dev": true,
13486
13518
  "dependencies": {
13487
- "ajv": "^7.0.2",
13488
- "lodash": "^4.17.20",
13519
+ "ajv": "^8.0.1",
13520
+ "lodash.clonedeep": "^4.5.0",
13521
+ "lodash.truncate": "^4.4.2",
13489
13522
  "slice-ansi": "^4.0.0",
13490
- "string-width": "^4.2.0"
13523
+ "string-width": "^4.2.0",
13524
+ "strip-ansi": "^6.0.0"
13491
13525
  },
13492
13526
  "engines": {
13493
13527
  "node": ">=10.0.0"
13494
13528
  }
13495
13529
  },
13496
13530
  "node_modules/table/node_modules/ajv": {
13497
- "version": "7.1.1",
13498
- "resolved": "https://registry.npmjs.org/ajv/-/ajv-7.1.1.tgz",
13499
- "integrity": "sha512-ga/aqDYnUy/o7vbsRTFhhTsNeXiYb5JWDIcRIeZfwRNCefwjNTVYCGdGSUrEmiu3yDK3vFvNbgJxvrQW4JXrYQ==",
13531
+ "version": "8.5.0",
13532
+ "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.5.0.tgz",
13533
+ "integrity": "sha512-Y2l399Tt1AguU3BPRP9Fn4eN+Or+StUGWCUpbnFyXSo8NZ9S4uj+AG2pjs5apK+ZMOwYOz1+a+VKvKH7CudXgQ==",
13500
13534
  "dev": true,
13501
13535
  "dependencies": {
13502
13536
  "fast-deep-equal": "^3.1.1",
@@ -16885,9 +16919,9 @@
16885
16919
  }
16886
16920
  },
16887
16921
  "eslint": {
16888
- "version": "7.26.0",
16889
- "resolved": "https://registry.npmjs.org/eslint/-/eslint-7.26.0.tgz",
16890
- "integrity": "sha512-4R1ieRf52/izcZE7AlLy56uIHHDLT74Yzz2Iv2l6kDaYvEu9x+wMB5dZArVL8SYGXSYV2YAg70FcW5Y5nGGNIg==",
16922
+ "version": "7.27.0",
16923
+ "resolved": "https://registry.npmjs.org/eslint/-/eslint-7.27.0.tgz",
16924
+ "integrity": "sha512-JZuR6La2ZF0UD384lcbnd0Cgg6QJjiCwhMD6eU4h/VGPcVGwawNNzKU41tgokGXnfjOOyI6QIffthhJTPzzuRA==",
16891
16925
  "dev": true,
16892
16926
  "requires": {
16893
16927
  "@babel/code-frame": "7.12.11",
@@ -16898,12 +16932,14 @@
16898
16932
  "debug": "^4.0.1",
16899
16933
  "doctrine": "^3.0.0",
16900
16934
  "enquirer": "^2.3.5",
16935
+ "escape-string-regexp": "^4.0.0",
16901
16936
  "eslint-scope": "^5.1.1",
16902
16937
  "eslint-utils": "^2.1.0",
16903
16938
  "eslint-visitor-keys": "^2.0.0",
16904
16939
  "espree": "^7.3.1",
16905
16940
  "esquery": "^1.4.0",
16906
16941
  "esutils": "^2.0.2",
16942
+ "fast-deep-equal": "^3.1.3",
16907
16943
  "file-entry-cache": "^6.0.1",
16908
16944
  "functional-red-black-tree": "^1.0.1",
16909
16945
  "glob-parent": "^5.0.0",
@@ -16915,7 +16951,7 @@
16915
16951
  "js-yaml": "^3.13.1",
16916
16952
  "json-stable-stringify-without-jsonify": "^1.0.1",
16917
16953
  "levn": "^0.4.1",
16918
- "lodash": "^4.17.21",
16954
+ "lodash.merge": "^4.6.2",
16919
16955
  "minimatch": "^3.0.4",
16920
16956
  "natural-compare": "^1.4.0",
16921
16957
  "optionator": "^0.9.1",
@@ -16924,7 +16960,7 @@
16924
16960
  "semver": "^7.2.1",
16925
16961
  "strip-ansi": "^6.0.0",
16926
16962
  "strip-json-comments": "^3.1.0",
16927
- "table": "^6.0.4",
16963
+ "table": "^6.0.9",
16928
16964
  "text-table": "^0.2.0",
16929
16965
  "v8-compile-cache": "^2.0.3"
16930
16966
  },
@@ -16972,6 +17008,12 @@
16972
17008
  "ms": "2.1.2"
16973
17009
  }
16974
17010
  },
17011
+ "escape-string-regexp": {
17012
+ "version": "4.0.0",
17013
+ "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz",
17014
+ "integrity": "sha512-TtpcNJ3XAzx3Gq8sWRzJaVajRs0uVxA2YAkdb1jm2YkPz4G6egUFAyA3n5vtEIZefPk5Wa4UXbKuS5fKkJWdgA==",
17015
+ "dev": true
17016
+ },
16975
17017
  "globals": {
16976
17018
  "version": "13.7.0",
16977
17019
  "resolved": "https://registry.npmjs.org/globals/-/globals-13.7.0.tgz",
@@ -19764,11 +19806,29 @@
19764
19806
  "resolved": "https://registry.npmjs.org/lodash.clone/-/lodash.clone-4.5.0.tgz",
19765
19807
  "integrity": "sha1-GVhwRQ9aExkkeN9Lw9I9LeoZB7Y="
19766
19808
  },
19809
+ "lodash.clonedeep": {
19810
+ "version": "4.5.0",
19811
+ "resolved": "https://registry.npmjs.org/lodash.clonedeep/-/lodash.clonedeep-4.5.0.tgz",
19812
+ "integrity": "sha1-4j8/nE+Pvd6HJSnBBxhXoIblzO8=",
19813
+ "dev": true
19814
+ },
19815
+ "lodash.merge": {
19816
+ "version": "4.6.2",
19817
+ "resolved": "https://registry.npmjs.org/lodash.merge/-/lodash.merge-4.6.2.tgz",
19818
+ "integrity": "sha512-0KpjqXRVvrYyCsX1swR/XTK0va6VQkQM6MNo7PqW77ByjAhoARA8EfrP1N4+KlKj8YS0ZUCtRT/YUuhyYDujIQ==",
19819
+ "dev": true
19820
+ },
19767
19821
  "lodash.toarray": {
19768
19822
  "version": "4.4.0",
19769
19823
  "resolved": "https://registry.npmjs.org/lodash.toarray/-/lodash.toarray-4.4.0.tgz",
19770
19824
  "integrity": "sha1-JMS/zWsvuji/0FlNsRedjptlZWE="
19771
19825
  },
19826
+ "lodash.truncate": {
19827
+ "version": "4.4.2",
19828
+ "resolved": "https://registry.npmjs.org/lodash.truncate/-/lodash.truncate-4.4.2.tgz",
19829
+ "integrity": "sha1-WjUNoLERO4N+z//VgSy+WNbq4ZM=",
19830
+ "dev": true
19831
+ },
19772
19832
  "loose-envify": {
19773
19833
  "version": "1.4.0",
19774
19834
  "resolved": "https://registry.npmjs.org/loose-envify/-/loose-envify-1.4.0.tgz",
@@ -24417,21 +24477,23 @@
24417
24477
  "dev": true
24418
24478
  },
24419
24479
  "table": {
24420
- "version": "6.0.7",
24421
- "resolved": "https://registry.npmjs.org/table/-/table-6.0.7.tgz",
24422
- "integrity": "sha512-rxZevLGTUzWna/qBLObOe16kB2RTnnbhciwgPbMMlazz1yZGVEgnZK762xyVdVznhqxrfCeBMmMkgOOaPwjH7g==",
24480
+ "version": "6.7.1",
24481
+ "resolved": "https://registry.npmjs.org/table/-/table-6.7.1.tgz",
24482
+ "integrity": "sha512-ZGum47Yi6KOOFDE8m223td53ath2enHcYLgOCjGr5ngu8bdIARQk6mN/wRMv4yMRcHnCSnHbCEha4sobQx5yWg==",
24423
24483
  "dev": true,
24424
24484
  "requires": {
24425
- "ajv": "^7.0.2",
24426
- "lodash": "^4.17.20",
24485
+ "ajv": "^8.0.1",
24486
+ "lodash.clonedeep": "^4.5.0",
24487
+ "lodash.truncate": "^4.4.2",
24427
24488
  "slice-ansi": "^4.0.0",
24428
- "string-width": "^4.2.0"
24489
+ "string-width": "^4.2.0",
24490
+ "strip-ansi": "^6.0.0"
24429
24491
  },
24430
24492
  "dependencies": {
24431
24493
  "ajv": {
24432
- "version": "7.1.1",
24433
- "resolved": "https://registry.npmjs.org/ajv/-/ajv-7.1.1.tgz",
24434
- "integrity": "sha512-ga/aqDYnUy/o7vbsRTFhhTsNeXiYb5JWDIcRIeZfwRNCefwjNTVYCGdGSUrEmiu3yDK3vFvNbgJxvrQW4JXrYQ==",
24494
+ "version": "8.5.0",
24495
+ "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.5.0.tgz",
24496
+ "integrity": "sha512-Y2l399Tt1AguU3BPRP9Fn4eN+Or+StUGWCUpbnFyXSo8NZ9S4uj+AG2pjs5apK+ZMOwYOz1+a+VKvKH7CudXgQ==",
24435
24497
  "dev": true,
24436
24498
  "requires": {
24437
24499
  "fast-deep-equal": "^3.1.1",
data/helpers/package.json CHANGED
@@ -16,7 +16,7 @@
16
16
  "semver": "^7.3.4"
17
17
  },
18
18
  "devDependencies": {
19
- "eslint": "^7.26.0",
19
+ "eslint": "^7.27.0",
20
20
  "eslint-config-prettier": "^8.3.0",
21
21
  "jest": "^27.0.1",
22
22
  "prettier": "^2.3.0",
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-npm_and_yarn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.148.9
4
+ version: 0.149.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-05-26 00:00:00.000000000 Z
11
+ date: 2021-05-28 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.148.9
19
+ version: 0.149.3
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.148.9
26
+ version: 0.149.3
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement