Bump the production-dependencies group with 3 updates #243

dependabot · 2024-02-01T05:21:06Z

Bumps the production-dependencies group with 3 updates: cmake-js, node-addon-api and npm.

Updates cmake-js from 7.2.1 to 7.3.0

Changelog

v7.3.0 - 15/01/23

feat(windows): replace custom libnode.def generation with version from node-api-headers

fix: support for vs2015 with nodejs 18 and older (#317)

fix(windows): always remove Path if PATH is also defined (#319)

fix: Cmake arguments got converted to numbers (#314)

fix: update node-api-headers

chore: update dependencies

Commits

b4b5b16 v7.3.0
eee8351 chore: update dependencies
b3d4cc6 fix: Cmake arguments got converted to numbers (#314)
30e9ae5 chore: fix typo in README.md (#316)
f3169e8 fix(windows): always remove Path if PATH is also defined (#319)
eee2b4d chore: add some more examples to readme
8e39050 chore: enable tests for pull_requests
62f98e0 fix: update find-visualstudio #317
789bfa7 chore: update ci platforms
d9c190b fix(windows): replace custom libnode.def with version provided by `node-api...
Additional commits viewable in compare view

Updates node-addon-api from 7.0.0 to 7.1.0

Release notes

Sourced from node-addon-api's releases.

v7.1.0

What's Changed

build(deps): bump actions/checkout from 3.5.2 to 3.5.3 by @dependabot in nodejs/node-addon-api#1329

src: add SyntaxError by @KevinEady in nodejs/node-addon-api#1326

build(deps): bump actions/dependency-review-action from 2.5.1 to 3.0.6 by @dependabot in nodejs/node-addon-api#1331

build(deps): bump actions/stale from 5.2.1 to 8.0.0 by @dependabot in nodejs/node-addon-api#1333

build(deps-dev): bump fs-extra from 9.1.0 to 11.1.1 by @dependabot in nodejs/node-addon-api#1335

build(deps): bump step-security/harden-runner from 2.3.0 to 2.4.1 by @dependabot in nodejs/node-addon-api#1342

build(deps): bump github/codeql-action from 2.2.12 to 2.20.1 by @dependabot in nodejs/node-addon-api#1343

build(deps): bump ossf/scorecard-action from 2.0.6 to 2.2.0 by @dependabot in nodejs/node-addon-api#1344

Add Node.js version restrictions by @Apollon77 in nodejs/node-addon-api#1340

build(deps): bump actions/setup-node from 3.6.0 to 3.7.0 by @dependabot in nodejs/node-addon-api#1348

build(deps): bump github/codeql-action from 2.20.1 to 2.20.3 by @dependabot in nodejs/node-addon-api#1349

Doc: fix typo 'Napi::AsyncProgressWorker::ExecutionProcess' to 'Napi::AsyncProgressWorker::ExecutionProgress'. by @JerryZhongJ in nodejs/node-addon-api#1350

doc: add missing title IsBigInt by @MarxJiao in nodejs/node-addon-api#1352

build(deps): bump github/codeql-action from 2.20.3 to 2.21.0 by @dependabot in nodejs/node-addon-api#1353

fix: handle c++ exception in TSFN callback by @legendecas in nodejs/node-addon-api#1345

src: remove duplicate buffer info calls by @legendecas in nodejs/node-addon-api#1354

build(deps): bump step-security/harden-runner from 2.4.1 to 2.5.0 by @dependabot in nodejs/node-addon-api#1356

build(deps): bump github/codeql-action from 2.21.0 to 2.21.1 by @dependabot in nodejs/node-addon-api#1357

build(deps): bump github/codeql-action from 2.21.1 to 2.21.2 by @dependabot in nodejs/node-addon-api#1358

build(deps): bump step-security/harden-runner from 2.5.0 to 2.5.1 by @dependabot in nodejs/node-addon-api#1364

build(deps): bump actions/dependency-review-action from 3.0.6 to 3.0.8 by @dependabot in nodejs/node-addon-api#1368

build(deps): bump actions/setup-node from 3.7.0 to 3.8.1 by @dependabot in nodejs/node-addon-api#1370

build(deps): bump actions/checkout from 3.5.3 to 3.6.0 by @dependabot in nodejs/node-addon-api#1371

build(deps): bump github/codeql-action from 2.21.2 to 2.21.5 by @dependabot in nodejs/node-addon-api#1372

build(deps): bump actions/checkout from 3.6.0 to 4.0.0 by @dependabot in nodejs/node-addon-api#1375

build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @dependabot in nodejs/node-addon-api#1376

build(deps): bump github/codeql-action from 2.21.5 to 2.21.6 by @dependabot in nodejs/node-addon-api#1378

build(deps): bump github/codeql-action from 2.21.6 to 2.21.7 by @dependabot in nodejs/node-addon-api#1380

build(deps): bump actions/dependency-review-action from 3.0.8 to 3.1.0 by @dependabot in nodejs/node-addon-api#1377

build(deps): bump actions/checkout from 4.0.0 to 4.1.0 by @dependabot in nodejs/node-addon-api#1383

build(deps): bump github/codeql-action from 2.21.7 to 2.21.9 by @dependabot in nodejs/node-addon-api#1384

Update LICENSE.md so GitHub recognizes it by @mhdawson in nodejs/node-addon-api#1385

build(deps): bump step-security/harden-runner from 2.5.1 to 2.6.0 by @dependabot in nodejs/node-addon-api#1386

build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0 by @dependabot in nodejs/node-addon-api#1388

build(deps): bump github/codeql-action from 2.21.9 to 2.22.3 by @dependabot in nodejs/node-addon-api#1393

build(deps): bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in nodejs/node-addon-api#1394

test: remove experimental flag from bigint by @gabrielschulhof in nodejs/node-addon-api#1395

build(deps): bump github/codeql-action from 2.22.3 to 2.22.4 by @dependabot in nodejs/node-addon-api#1396

build(deps): bump ossf/scorecard-action from 2.3.0 to 2.3.1 by @dependabot in nodejs/node-addon-api#1397

build(deps): bump actions/setup-node from 3.8.1 to 4.0.0 by @dependabot in nodejs/node-addon-api#1398

gyp: add common targets by @legendecas in nodejs/node-addon-api#1389

src,test,build: allow NAPI_VERSION env var and templatize AttachData … by @gabrielschulhof in nodejs/node-addon-api#1402

chore: lock python version in actions by @legendecas in nodejs/node-addon-api#1403

doc: fix rendering of code blocks in list by @tniessen in nodejs/node-addon-api#1401

build(deps): bump github/codeql-action from 2.22.4 to 2.22.5 by @dependabot in nodejs/node-addon-api#1400

Fixed Broken Links in Docs and Readme by @tuhalf in nodejs/node-addon-api#1405

build(deps): bump actions/setup-python from 4.7.0 to 4.7.1 by @dependabot in nodejs/node-addon-api#1406

... (truncated)

Changelog

Sourced from node-addon-api's changelog.

2024-01-18 Version 7.1.0, @legendecas

Notable changes

API

Add Env::GetModuleFileName

Add SyntaxError

Allow NAPI_VERSION env var and templatize AttachData callback

Add common gyp dependency targets.

Commits

[864fed488c] - build(deps): bump github/codeql-action from 3.22.12 to 3.23.0 (dependabot[bot]) #1428

[81a8d43130] - build(deps): bump actions/dependency-review-action from 3.1.4 to 3.1.5 (dependabot[bot]) #1427

[e20088941b] - build(deps): bump github/codeql-action from 3.22.11 to 3.22.12 (dependabot[bot]) #1426

[76c7b12e4e] - build(deps): bump actions/setup-node from 4.0.0 to 4.0.1 (dependabot[bot]) #1425

[cd58edde1d] - build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0 (dependabot[bot]) #1424

[0fd1b9e0e1] - build(deps): bump github/codeql-action from 2.22.8 to 3.22.11 (dependabot[bot]) #1423

[c181b19d68] - build(deps): bump actions/stale from 8.0.0 to 9.0.0 (dependabot[bot]) #1418

[6fa67791a1] - build(deps): bump actions/setup-python from 4.7.1 to 5.0.0 (dependabot[bot]) #1417

[1fff346fa6] - build(deps): bump actions/dependency-review-action from 3.1.3 to 3.1.4 (dependabot[bot]) #1415

[ecb9690fe5] - build(deps): bump github/codeql-action from 2.22.7 to 2.22.8 (dependabot[bot]) #1414

[969547b871] - build(deps): bump github/codeql-action from 2.22.5 to 2.22.7 (dependabot[bot]) #1413

[183d1522a9] - build(deps): bump step-security/harden-runner from 2.6.0 to 2.6.1 (dependabot[bot]) #1412

[25f977724a] - build(deps): bump actions/dependency-review-action from 3.1.0 to 3.1.3 (dependabot[bot]) #1410

[f6d125a407] - build(deps): bump actions/setup-python from 4.7.0 to 4.7.1 (dependabot[bot]) #1406

[ce78a39ec7] - build(deps): bump github/codeql-action from 2.22.4 to 2.22.5 (dependabot[bot]) #1400

[dc211ebb48] - build(deps): bump actions/setup-node from 3.8.1 to 4.0.0 (dependabot[bot]) #1398

[cab559e3bd] - build(deps): bump ossf/scorecard-action from 2.3.0 to 2.3.1 (dependabot[bot]) #1397

[f71ff5582d] - build(deps): bump github/codeql-action from 2.22.3 to 2.22.4 (dependabot[bot]) #1396

[21c1d08680] - build(deps): bump actions/checkout from 4.1.0 to 4.1.1 (dependabot[bot]) #1394

[e4eec0939c] - build(deps): bump github/codeql-action from 2.21.9 to 2.22.3 (dependabot[bot]) #1393

[94f3459474] - build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0 (dependabot[bot]) #1388

[90a741ef10] - build(deps): bump step-security/harden-runner from 2.5.1 to 2.6.0 (dependabot[bot]) #1386

[7e1aa06132] - Update LICENSE.md (Michael Dawson) #1385

[0a0612362e] - build(deps): bump github/codeql-action from 2.21.7 to 2.21.9 (dependabot[bot]) #1384

[47bd430da2] - build(deps): bump actions/checkout from 4.0.0 to 4.1.0 (dependabot[bot]) #1383

[b3f7f73cb9] - build(deps): bump actions/dependency-review-action from 3.0.8 to 3.1.0 (dependabot[bot]) #1377

[12c1655387] - build(deps): bump github/codeql-action from 2.21.6 to 2.21.7 (dependabot[bot]) #1380

[6abed318e4] - build(deps): bump github/codeql-action from 2.21.5 to 2.21.6 (dependabot[bot]) #1378

[89eda59930] - build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 (dependabot[bot]) #1376

[90870dbffa] - build(deps): bump actions/checkout from 3.6.0 to 4.0.0 (dependabot[bot]) #1375

[b860793eff] - build(deps): bump github/codeql-action from 2.21.2 to 2.21.5 (dependabot[bot]) #1372

[f9b9974b4a] - build(deps): bump actions/checkout from 3.5.3 to 3.6.0 (dependabot[bot]) #1371

[9596e3de2d] - build(deps): bump actions/setup-node from 3.7.0 to 3.8.1 (dependabot[bot]) #1370

[e969210747] - build(deps): bump actions/dependency-review-action from 3.0.6 to 3.0.8 (dependabot[bot]) #1368

[13ef96a5a9] - build(deps): bump step-security/harden-runner from 2.5.0 to 2.5.1 (dependabot[bot]) #1364

[9776d148b3] - build(deps): bump github/codeql-action from 2.21.1 to 2.21.2 (dependabot[bot]) #1358

[59dc6be097] - build(deps): bump github/codeql-action from 2.21.0 to 2.21.1 (dependabot[bot]) #1357

... (truncated)

Commits

185dda1 7.1.0
864fed4 build(deps): bump github/codeql-action from 3.22.12 to 3.23.0 (#1428)
81a8d43 build(deps): bump actions/dependency-review-action from 3.1.4 to 3.1.5 (#1427)
e200889 build(deps): bump github/codeql-action from 3.22.11 to 3.22.12 (#1426)
76c7b12 build(deps): bump actions/setup-node from 4.0.0 to 4.0.1 (#1425)
cd58edd build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0 (#1424)
0fd1b9e build(deps): bump github/codeql-action from 2.22.8 to 3.22.11 (#1423)
c181b19 build(deps): bump actions/stale from 8.0.0 to 9.0.0 (#1418)
6fa6779 build(deps): bump actions/setup-python from 4.7.1 to 5.0.0 (#1417)
1fff346 build(deps): bump actions/dependency-review-action from 3.1.3 to 3.1.4 (#1415)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by legendecas, a new releaser for node-addon-api since your current version.

Updates npm from 10.2.5 to 10.4.0

Changelog

Sourced from npm's changelog.

10.4.0 (2024-01-24)

Features

35a098c #7175 display tree diff on --long (@wraithgar)

dffca29 #7174 format: print --dry-run diffs in table format (#7174) (@ritaaktay)

6d5f9ac #7133 dedupe - display difference when --dry-run is enabled (#7133) (@Blaumaus)

Bug Fixes

ec06f77 #7175 inline diff table code w/ summary code (@wraithgar)

d4ebfba #7157 use util.stripVTControlCharacters instead of strip-ansi (@wraithgar)

81c95c7 #7063 don't reset update notifier duration on every check (#7063) (@wraithgar)

Documentation

2b7eaad #7168 package-json: Reword warning about publishing local dependencies (#7168) (@DanKaplanSES)

67ab0f7 #7142 update: Replace comma with period in run on sentence (#7142) (@DanKaplanSES)

05c69dc #7150 config: State default configuration file affected by npm config set (#7150) (@DanKaplanSES)

44f4518 #7149 Link to the config command in the npm configuration description (#7149) (@DanKaplanSES)

dd5699f #7152 update: Fix a typo and remove unneeded statement (#7152) (@DanKaplanSES)

Dependencies

ec77e81 #7124 [email protected]

e32189c #7173 deduplicate tree

b7af4d9 #7173 [email protected]

6883743 #7173 @npmcli/[email protected]

739634d #7157 remove strip-ansi

162c82e #7148 [email protected] (#7148) (@bdehamer)

a50b03b #7141 [email protected] (#7141) (@bdehamer)

f696b51 #7132 @sigstore/[email protected] (#7132) (@bdehamer)

workspace: @npmcli/[email protected]

workspace: [email protected]

workspace: [email protected]

workspace: [email protected]

workspace: [email protected]

workspace: [email protected]

Chores

a82ccc5 #7173 [email protected] (@wraithgar)

dcaa99c #7173 fix exec test (@wraithgar)

0d96080 #7162 release: do not exclude docs directory from CLI release commits (#7162) (@lukekarrys)

10.3.0 (2024-01-10)

Features

6673c77 #6914 add --libc option to override platform specific install (#6914) (@wraithgar, @Brooooooklyn)

... (truncated)

Commits

3b82f27 chore: release 10.4.0
35a098c feat: display tree diff on --long
ec06f77 fix: inline diff table code w/ summary code
ec77e81 deps: [email protected]
d3f1845 fix: clean up idealTree code
dffca29 feat(format): print --dry-run diffs in table format (#7174)
332ed08 chore: fix smoke test
a82ccc5 chore: [email protected]
e32189c deps: deduplicate tree
dcaa99c chore: fix exec test
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the production-dependencies group with 3 updates: [cmake-js](https://github.com/cmake-js/cmake-js), [node-addon-api](https://github.com/nodejs/node-addon-api) and [npm](https://github.com/npm/cli). Updates `cmake-js` from 7.2.1 to 7.3.0 - [Release notes](https://github.com/cmake-js/cmake-js/releases) - [Changelog](https://github.com/cmake-js/cmake-js/blob/master/changelog.md) - [Commits](cmake-js/cmake-js@v7.2.1...v7.3.0) Updates `node-addon-api` from 7.0.0 to 7.1.0 - [Release notes](https://github.com/nodejs/node-addon-api/releases) - [Changelog](https://github.com/nodejs/node-addon-api/blob/main/CHANGELOG.md) - [Commits](nodejs/node-addon-api@v7.0.0...v7.1.0) Updates `npm` from 10.2.5 to 10.4.0 - [Release notes](https://github.com/npm/cli/releases) - [Changelog](https://github.com/npm/cli/blob/latest/CHANGELOG.md) - [Commits](npm/cli@v10.2.5...v10.4.0) --- updated-dependencies: - dependency-name: cmake-js dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: node-addon-api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: npm dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

burgholzer

@dependabot squash and merge

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 1, 2024

burgholzer approved these changes Feb 1, 2024

View reviewed changes

dependabot bot merged commit ca0cde9 into main Feb 1, 2024
8 checks passed

dependabot bot deleted the dependabot/npm_and_yarn/production-dependencies-6211e59bab branch February 1, 2024 09:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the production-dependencies group with 3 updates #243

Bump the production-dependencies group with 3 updates #243

dependabot bot commented on behalf of github Feb 1, 2024

burgholzer left a comment

Bump the production-dependencies group with 3 updates #243

Bump the production-dependencies group with 3 updates #243

Conversation

dependabot bot commented on behalf of github Feb 1, 2024

v7.3.0 - 15/01/23

v7.1.0

What's Changed

2024-01-18 Version 7.1.0, @​legendecas

Notable changes

API

Commits

10.4.0 (2024-01-24)

Features

Bug Fixes

Documentation

Dependencies

Chores

10.3.0 (2024-01-10)

Features

burgholzer left a comment

Choose a reason for hiding this comment

2024-01-18 Version 7.1.0, `@legendecas`