Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the linters group with 2 updates #62

Merged
merged 1 commit into from
Jan 28, 2025
Merged

Bump the linters group with 2 updates #62

merged 1 commit into from
Jan 28, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 28, 2025

Bumps the linters group with 2 updates: lint-staged and typescript-eslint.

Updates lint-staged from 15.4.2 to 15.4.3

Release notes

Sourced from lint-staged's releases.

v15.4.3

Patch Changes

  • #1512 cbfed1d Thanks @​tarik02! - Adjust TypeScript types for the default export so that it can be used as a value without error TS2693.
Changelog

Sourced from lint-staged's changelog.

15.4.3

Patch Changes

  • #1512 cbfed1d Thanks @​tarik02! - Adjust TypeScript types for the default export so that it can be used as a value without error TS2693.
Commits
  • e53f950 chore(changeset): release
  • 089da56 test: fail Jest when coverage is under 100%
  • 19aa461 ci: remove code coverage action since it's not working in PRs from forks
  • cbfed1d fix: update types.d.ts (#1512)
  • See full diff in compare view

Updates typescript-eslint from 8.21.0 to 8.22.0

Release notes

Sourced from typescript-eslint's releases.

v8.22.0

8.22.0 (2025-01-27)

🚀 Features

  • parser: add standalone isolatedDeclarations option (#10499)

🩹 Fixes

  • eslint-plugin: [prefer-nullish-coalescing] doesn't report on ternary but on equivalent || (#10517)
  • eslint-plugin: [no-duplicate-type-constituents] handle nested types (#10638)
  • eslint-plugin: [no-shadow] don't report unnecessarily on valid ways of using module augmentation (#10616)
  • eslint-plugin: [no-extraneous-class] handle accessor keyword (#10678)
  • eslint-plugin: [prefer-readonly] autofixer doesn't add type to property that is mutated in the constructor (#10552)
  • eslint-plugin: [no-unnecessary-template-expression] handle template literal type (#10612)
  • type-utils: support matching intersection types in TypeOrValueSpecifier with a PackageSpecifier (#10667)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.22.0 (2025-01-27)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the linters group with 2 updates
8c2c10e 
Bumps the linters group with 2 updates: [lint-staged](https://github.com/lint-staged/lint-staged) and [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint).


Updates `lint-staged` from 15.4.2 to 15.4.3
- [Release notes](https://github.com/lint-staged/lint-staged/releases)
- [Changelog](https://github.com/lint-staged/lint-staged/blob/master/CHANGELOG.md)
- [Commits](lint-staged/lint-staged@v15.4.2...v15.4.3)

Updates `typescript-eslint` from 8.21.0 to 8.22.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.22.0/packages/typescript-eslint)

---
updated-dependencies:
- dependency-name: lint-staged
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: linters
- dependency-name: typescript-eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: linters
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 28, 2025
@vercel Vercel
Copy link

vercel bot commented Jan 28, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
codegate-docs ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 28, 2025 6:28am

@dependabot dependabot bot mentioned this pull request Jan 28, 2025
Closed
@stacklok-cloud-staging Stacklok Cloud (Staging)
Copy link
Contributor

Minder Vulnerability Report ✅

Minder analyzed this PR and found it does not add any new vulnerable dependencies.

Vulnerability scan of 8c2c10e2:

  • 🐞 vulnerable packages: 0
  • 🛠 fixes available for: 0

stacklok-cloud-staging[bot]
stacklok-cloud-staging bot reviewed Jan 28, 2025
View reviewed changes
Copy link
Contributor

@stacklok-cloud-staging stacklok-cloud-staging bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @typescript-eslint/eslint-plugin

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 3868
Number of git tags or releases 177
Versions matched to tags or releases 167
Alternatives
Package Score Description
@typescript-eslint/parser 0

📦 Dependency: @typescript-eslint/parser

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 3952
Number of git tags or releases 177
Versions matched to tags or releases 167
Alternatives
Package Score Description
@babel/eslint-parser 0

📦 Dependency: @typescript-eslint/scope-manager

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 3199
Number of git tags or releases 177
Versions matched to tags or releases 168
Alternatives
Package Score Description
@typescript-eslint/parser 0
@typescript-eslint/eslint-plugin 0

📦 Dependency: @typescript-eslint/type-utils

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 2262
Number of git tags or releases 177
Versions matched to tags or releases 166
Alternatives
Package Score Description
typescript 0

📦 Dependency: @typescript-eslint/types

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 3234
Number of git tags or releases 177
Versions matched to tags or releases 168
Alternatives
Package Score Description
@typescript-eslint/eslint-plugin 0
@typescript-eslint/parser 0
@typescript-eslint/typescript-estree 0

📦 Dependency: @typescript-eslint/typescript-estree

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 3965
Number of git tags or releases 177
Versions matched to tags or releases 168
Alternatives
Package Score Description
@typescript-eslint/parser 0

📦 Dependency: @typescript-eslint/utils

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 2247
Number of git tags or releases 177
Versions matched to tags or releases 167
Alternatives
Package Score Description
@typescript-eslint/parser 0
@typescript-eslint/eslint-plugin 0

📦 Dependency: @typescript-eslint/visitor-keys

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 3232
Number of git tags or releases 177
Versions matched to tags or releases 168
Alternatives
Package Score Description
@typescript-eslint/parser 0
@typescript-eslint/typescript-estree 0

📦 Dependency: lint-staged

Trusty Score: 0

Scoring details
Component Score
Package activity 7.8
Repository activity 6.6
User activity 8.9
Provenance verified_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 257
Number of git tags or releases 117
Versions matched to tags or releases 115

This package has been digitally signed using sigtore.
Source repository https://github.com/lint-staged/lint-staged
Cerificate Issuer CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow .github/workflows/tag.yml
Rekor (public ledger) entry https://search.sigstore.dev/?logIndex=165668511
Alternatives
Package Score Description
husky 0
prettier 0

📦 Dependency: typescript-eslint

Trusty Score: 0

Scoring details
Component Score
Package activity 8.5
Repository activity 8.2
User activity 8.8
Provenance historical_provenance_match
Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.
Published package versions 662
Number of git tags or releases 177
Versions matched to tags or releases 51
Alternatives
Package Score Description
@typescript-eslint/eslint-plugin 0
@typescript-eslint/parser 0

@danbarr danbarr merged commit 3539eb8 into main Jan 28, 2025
6 checks passed
@danbarr danbarr deleted the dependabot/npm_and_yarn/linters-8ea37f6f95 branch January 28, 2025 13:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@stacklok-cloud-staging stacklok-cloud-staging[bot] stacklok-cloud-staging[bot] left review comments

@danbarr danbarr danbarr approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@danbarr