Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump shell-quote and next #693

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 31, 2024

Removes shell-quote. It's no longer used after updating ancestor dependency next. These dependencies need to be updated together.

Removes shell-quote

Updates next from 11.1.4 to 14.2.3

Release notes

Sourced from next's releases.

v14.2.3

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • Fix: resolve mixed re-exports module as cjs (#64681)
  • fix: mixing namespace import and named import client components (#64809)
  • Fix mixed exports in server component with barrel optimization (#64894)
  • Fix next/image usage in mdx(#64875)
  • fix(fetch-cache): fix additional typo, add type & data validation (#64799)
  • prevent erroneous route interception during lazy fetch (#64692)
  • fix root page revalidation when redirecting in a server action (#64730)
  • fix: remove traceparent from cachekey should not remove traceparent from original object (#64727)
  • Clean-up fetch metrics tracking (#64746)

Credits

Huge thanks to @​huozhi, @​samcx, @​ztanner, @​Jeffrey-Zutt, and @​ijjk for helping!

v14.2.2

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • Fix Server Action error logs for unhandled POST requests (#64315)
  • Improve rendering performance (#64408)
  • Fix the method prop case in Server Actions transform (#64398)
  • fix(next-lint): update option --report-unused-disable-directives to --report-unused-disable-directives-severity (#64405)
  • tweak test for Azure (#64424)
  • router restore should take priority over pending actions (#64449)
  • Fix client boundary inheritance for barrel optimization (#64467)
  • improve turborepo caching (#64493)
  • feat: strip traceparent header from cachekey (#64499)
  • Fix more Turbopack build tests
  • Update lockfile for compatibility with turbo (#64360)
  • Fix typo in dynamic-rendering.ts (#64365)
  • Fix DynamicServerError not being thrown in fetch (#64511)
  • fix(next): Metadata.openGraph values not resolving basic values when type is set (#63620)
  • disable production chunking in dev (#64488)
  • Fix cjs client components tree-shaking (#64558)
  • fix refresh behavior for discarded actions (#64532)
  • fix: filter out middleware requests in logging (#64549)
  • Turbopack: Allow client components to be imported in app routes (#64520)
  • Fix ASL bundling for dynamic css (#64451)
  • add pathname normalizer for actions (#64592)
  • fix incorrect refresh request when basePath is set (#64589)
  • test: skip turbopack build test (#64356)
  • hotfix(turbopack): Update with patch for postcss.config.js path resolution on Windows (#64677)

... (truncated)

Commits
  • 2e7a96a v14.2.3
  • a230be4 Clean-up fetch metrics tracking (#64746)
  • 73c2d63 fix: remove traceparent from cachekey should not remove traceparent from orig...
  • dd44191 fix root page revalidation when redirecting in a server action (#64730)
  • 8b4c234 prevent erroneous route interception during lazy fetch (#64692)
  • d6a7ca0 fix(fetch-cache): fix additional typo, add type & data validation (#64799)
  • 4a6b511 Fix next/image usage in mdx (#64875)
  • 04cc13c Fix mixed exports in server component with barrel optimization (#64894)
  • 8d01d49 fix: mixing namespace import and named import client components (#64809)
  • de84e3a Fix: resolve mixed re-exports module as cjs (#64681)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Removes [shell-quote](https://github.com/ljharb/shell-quote). It's no longer used after updating ancestor dependency [next](https://github.com/vercel/next.js). These dependencies need to be updated together.


Removes `shell-quote`

Updates `next` from 11.1.4 to 14.2.3
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v11.1.4...v14.2.3)

---
updated-dependencies:
- dependency-name: shell-quote
  dependency-type: indirect
- dependency-name: next
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 31, 2024
@dependabot dependabot bot requested a review from a team May 31, 2024 06:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants