Skip to content
This repository has been archived by the owner on Nov 12, 2024. It is now read-only.

Bump glob from 8.1.0 to 10.2.4 #1486

Closed
wants to merge 1 commit into from
Closed

Bump glob from 8.1.0 to 10.2.4 #1486

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 15, 2023
edited
Loading

Bumps glob from 8.1.0 to 10.2.4.

Changelog

Sourced from glob's changelog.

changeglob

10.2.0

  • Add glob cli

10.1.0

  • Return '.' instead of the empty string '' when the current working directory is returned as a match.
  • Add posix: true option to return / delimited paths, even on Windows.

10.0.0

  • No default exports, only named exports

9.3.3

  • Upgraded minimatch to v8, adding support for any degree of nested extglob patterns.

9.3

  • Add aliases for methods. glob.sync, glob.stream, glob.stream.sync, etc.

9.2

  • Support using a custom fs object, which is passed to PathScurry
  • add maxDepth option
  • add stat option
  • add custom Ignore support

9.1

  • Bring back the root option, albeit with slightly different semantics than in v8 and before.
  • Support { absolute:false } option to explicitly always return relative paths. An unset absolute setting will still return absolute or relative paths based on whether the pattern is absolute.
  • Add magicalBraces option to treat brace expansion as "magic" in the hasMagic function.
  • Add dotRelative option
  • Add escape() and unescape() methods

9.0

This is a full rewrite, with significant API and algorithm

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 15, 2023
@dependabot dependabot bot requested a review from a team May 15, 2023 11:57
@dependabot dependabot bot mentioned this pull request May 15, 2023
Closed
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/glob-10.2.4 branch 2 times, most recently from 9d7fc5a to 640f5a3 Compare May 15, 2023 14:53
@apupier
Copy link
Member

apupier commented May 16, 2023

@dependabot recreate

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/glob-10.2.4 branch from 640f5a3 to 711792e Compare May 16, 2023 07:12
@dependabot @apupier
Bump glob from 8.1.0 to 10.2.4
d409959 
Bumps [glob](https://github.com/isaacs/node-glob) from 8.1.0 to 10.2.4.
- [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md)
- [Commits](isaacs/node-glob@v8.1.0...v10.2.4)

---
updated-dependencies:
- dependency-name: glob
  dependency-type: direct:development
  update-type: version-update:semver-major
...

adapted to new API

Signed-off-by: dependabot[bot] <support@github.com>
@apupier apupier force-pushed the dependabot/npm_and_yarn/glob-10.2.4 branch from 711792e to d409959 Compare May 16, 2023 07:18
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@apupier
Copy link
Member

apupier commented May 17, 2023

compile error due to isaacs/minipass#49

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 18, 2023

A newer version of glob exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

@apupier
Copy link
Member

apupier commented May 22, 2023

@dependabot recreate

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github May 22, 2023

Superseded by #1500.

@dependabot dependabot bot closed this May 22, 2023
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/glob-10.2.4 branch May 22, 2023 07:30
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@apupier