Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency pnpm to v7.32.5 #3131

Merged
merged 1 commit into from
May 29, 2023
Merged

Update dependency pnpm to v7.32.5 #3131

merged 1 commit into from
May 29, 2023

Conversation

zemnmez-renovate-bot
Copy link
Collaborator

This PR contains the following updates:

Package Type Update Change
pnpm (source) dependencies minor ^8.5.1 -> ^7.30.3

Release Notes

pnpm/pnpm

v7.32.5

Compare Source

Patch Changes

  • pnpm rebuild should not fail when node-linker is set to hoisted and there are skipped optional dependencies #​6553.
  • Expanded missing command error, including 'did you mean' #​6492.
  • Normalize current working directory on Windows #​6524.
  • Build projects in a workspace in correct order #​6568.

Our Gold Sponsors

Our Silver Sponsors

v7.32.4

Compare Source

Patch Changes

  • pnpm link -g <pkg-name> should not modify the package.json file #​4341.
  • Node.js range specified through the engines field should match prerelease versions #​6509.
  • pnpm publish --otp should work #​6514.

Our Gold Sponsors

Our Silver Sponsors

v7.32.3

Compare Source

Patch Changes

  • Link the bin files of local workspace dependencies, when node-linker is set to hoisted 6486.
  • Show cyclic workspace dependency details #​5059.

Our Gold Sponsors

Our Silver Sponsors

v7.32.2

Compare Source

Patch Changes

  • Patch node-fetch to fix an error that happens on Node.js 20 #​6424.

Our Gold Sponsors

Our Silver Sponsors

v7.32.1

Compare Source

Patch Changes

  • Warn user when publishConfig.directory of an injected workspace dependency does not exist #​6396.
  • Use hard links to link the node executable on Windows machines #​4315.

Our Gold Sponsors

Our Silver Sponsors

v7.32.0

Compare Source

Minor Changes

  • Allow env variables to be specified with default values in .npmrc. This is a convention used by Yarn too.
    Using ${NAME-fallback} will return fallback if NAME isn't set. ${NAME:-fallback} will return fallback if NAME isn't set, or is an empty string #​6018.

Patch Changes

  • pnpm config get <key> returns empty when the value is a boolean
  • Don't print an info message about linked dependencies if they are real linked dependencies specified via the link: protocol in package.json.
  • Add -g to mismatch registries error info when original command has -g option #​6224.

Our Gold Sponsors

Our Silver Sponsors

v7.31.0

Compare Source

Minor Changes

  • Add ignore-workspace-cycles to silence workspace cycle warning #​6308.
Patch Changes
  • Registries are now passed to the preResolution hook.
  • Repeat installation should work on a project that has a dependency with () chars in the scope name #​6348.
  • Should report error summary as expected.
  • Update @yarnpkg/shell to fix issues in the shell emulator #​6320.
  • Installation should not fail when there is a local dependency that starts in a directory that starts with the @ char #​6332.

Our Gold Sponsors

Our Silver Sponsors

v7.30.5

Compare Source

Patch Changes

  • pnpm audit should work even if there are no package.json file, just a pnpm-lock.yaml file.
  • Dedupe direct dependencies after hoisting.
  • Don't remove automatically installed peer dependencies from the root workspace project, when dedupe-peer-dependents is true #​6154.

Our Gold Sponsors

Our Silver Sponsors

v7.30.4

Compare Source

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@zemnmez-renovate-bot zemnmez-renovate-bot enabled auto-merge (rebase) May 25, 2023 03:50
@zemnmez-renovate-bot zemnmez-renovate-bot force-pushed the renovate/pnpm-7.x branch 13 times, most recently from 78b2729 to 7ccaaac Compare May 29, 2023 02:54
@Zemnmez
Copy link
Member

Zemnmez commented May 29, 2023

why is it trying to do this

Zemnmez added a commit that referenced this pull request May 29, 2023
@Zemnmez
Disable dependabot NPM.
7228bb8 
Dependabot was creating PRs such as this: 56a2b7d

It updates the package.json, but not the pnpm lockfile. This is because dependabot does not support the PNPM lock file dependabot/dependabot-core#1736

This caused the repo to get into a weird state where it would try to do insane stuff like downgrade packages. #3131

This should stop that happening.
@Zemnmez Zemnmez mentioned this pull request May 29, 2023
Merged
@zemnmez-renovate-bot zemnmez-renovate-bot force-pushed the renovate/pnpm-7.x branch 3 times, most recently from 31aed6b to 16cb0d0 Compare May 29, 2023 05:06
@zemnmez-renovate-bot zemnmez-renovate-bot merged commit 96326d5 into main May 29, 2023
@zemnmez-renovate-bot zemnmez-renovate-bot deleted the renovate/pnpm-7.x branch May 29, 2023 06:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@zemnmez-renovate-bot @Zemnmez