Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade pnpm from 8.15.8 to 9.0.6 #31

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade pnpm from 8.15.8 to 9.0.6 #31

wants to merge 1 commit into from

Conversation

OKEAMAH
Copy link
Owner

@OKEAMAH OKEAMAH commented May 26, 2024

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade pnpm from 8.15.8 to 9.0.6.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

  • The recommended version is 24 versions ahead of your current version.

  • The recommended version was released on a month ago.

Release notes
Package name: pnpm
  • 9.0.6 - 2024-04-24

    Patch Changes

    • Lockfiles that have git-hosted dependencies specified should be correctly converted to the new lockfile format #7990.
    • Don't upgrade the lockfile format on pnpm install --frozen-lockfile #7991.

    Platinum Sponsors

    Gold Sponsors

    Our Silver Sponsors
  • 9.0.5 - 2024-04-21

    Patch Changes

    • Lockfiles with local or git-hosted dependencies are now successfully converted to the new lockfile format #7955.
    • Resolve peer dependencies correctly, when they have prerelease versions #7977.
    • Fix aliased dependencies resolution on repeat install with existing lockfile, when the aliased dependency doesn't specify a version or range #7957.
    • The lockfile should be saved in the new format even if it is up-to-date.

    Platinum Sponsors

    Gold Sponsors

    Our Silver Sponsors
  • 9.0.4 - 2024-04-19

    Patch Changes

    • Fix aliased dependencies resolution on repeat install with existing lockfile #7957.
    • The engines.pnpm field in the package.json files of dependencies should be ignored #7965.

    Platinum Sponsors

    Gold Sponsors

    Our Silver Sponsors
  • 9.0.3 - 2024-04-18

    Patch Changes

    • If the script-shell option is configured to a .bat/.cmd file on Windows, pnpm will now error with ERR_PNPM_INVALID_SCRIPT_SHELL_WINDOWS. Newer versions of Node.js released in April 2024 do not support executing these files directly without behavior differences. If the script-shell option is necessary for your use-case, please set a .exe file instead.
    • Print a hint about the package-manager-strict setting, when pnpm doesn't match the version specified in the packageManager field in package.json.
    • pnpm completion command should work in the standalone version of pnpm #7948.

    Platinum Sponsors

    Gold Sponsors

    Our Silver Sponsors

@snyk-bot
feat: upgrade pnpm from 8.15.8 to 9.0.6
5847019 
Snyk has created this PR to upgrade pnpm from 8.15.8 to 9.0.6.

See this package in npm:
pnpm

See this project in Snyk:
https://app.snyk.io/org/okeamah/project/c8e6e4df-a1f1-48e2-a0ed-2c51d6675314?utm_source=github&utm_medium=referral&page=upgrade-pr
sourcery-ai[bot]
sourcery-ai bot reviewed May 26, 2024
View reviewed changes
Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We have skipped reviewing this pull request. Here's why:

  • It seems to have been created by a bot ('[Snyk]' found in title). We assume it knows what it's doing!
  • We don't review packaging changes - Let us know if you'd like us to change this.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@OKEAMAH @snyk-bot