Bump npm from 10.4.0 to 10.5.0 #34

dependabot · 2024-03-11T11:17:44Z

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps npm from 10.4.0 to 10.5.0.

Changelog

10.5.0 (2024-02-28)

Features

2366edc #7218 query: add :vuln pseudo selector (@wraithgar)

4f3ddbb #5966 add --expect-entries to npm query (@wraithgar)

Bug Fixes

818957c #7158 pack, publish: default foreground-scripts to true (#7158) (@ljharb)

d04111d #7197 view: filter out invalid semver (#7197) (@wraithgar)

b0a3ba0 #7195 prevent adding invalid dist-tag (#7195) (@wraithgar)

Documentation

c4741fe #7254 Remove additional example and comments about uninstall script (#7254) (@rveerd)

686a622 #7247 scope: update example command to work in windows (#7247) (@robertobasile84)

95b5057 #5966 clarify in-range and out-of-range in dependency selectors (@wraithgar)

5b7184f #7190 workspaces: fix grammar (#7190) (@alekstech)

0dd03f9 #7182 fix typos (#7182) (@GoodDaisy)

Dependencies

16d4c9f #7218 @npmcli/[email protected]

06247d1 #7242 [email protected]

79d1e0b #7242 [email protected]

67e853a #7242 [email protected]

4c9fe4b #7242 [email protected]

4a50c5a #7242 [email protected]

ed3f254 #7242 [email protected]

8ec4fd5 #7242 [email protected]

98b1189 #7242 @npmcli/[email protected]

dafa903 #7242 [email protected]

d0bcb76 #7242 [email protected]

a13808e #7242 [email protected]

d6521ac #7242 @sigstore/[email protected]

43cac2f #7242 [email protected]

workspace: @npmcli/[email protected]

workspace: @npmcli/[email protected]

workspace: [email protected]

workspace: [email protected]

workspace: [email protected]

workspace: [email protected]

Chores

d6bc684 #7242 update devDependencies in lockfile (@wraithgar)

Commits

569f391 chore: release 10.5.0
6d1789c fix: Arborist code cleanup (#7237)
818957c fix(pack, publish): default foreground-scripts to true (#7158)
a530215 chore(smoke-tests): always return stdout and stderr from npm spawn
c4741fe docs: Remove additional example and comments about uninstall script (#7254)
2366edc feat(query): add :vuln pseudo selector
16d4c9f deps: @npmcli/query@3.1.0
ed17276 fix(query-selector): don't look up private packages on :outdated
686a622 docs(scope): update example command to work in windows (#7247)
95b5057 docs: clarify in-range and out-of-range in dependency selectors
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

vercel · 2024-03-11T11:17:46Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
github-profile-viewer	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Mar 11, 2024 3:39pm

Bumps [npm](https://github.com/npm/cli) from 10.4.0 to 10.5.0. - [Release notes](https://github.com/npm/cli/releases) - [Changelog](https://github.com/npm/cli/blob/latest/CHANGELOG.md) - [Commits](npm/cli@v10.4.0...v10.5.0) --- updated-dependencies: - dependency-name: npm dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 11, 2024

vercel bot deployed to Preview March 11, 2024 11:19 View deployment

dependabot bot force-pushed the dependabot/npm_and_yarn/npm-10.5.0 branch from 3fa577b to 1d14f14 Compare March 11, 2024 15:36

sametcn99 merged commit 5cbecd1 into master Mar 11, 2024
3 of 4 checks passed

sametcn99 deleted the dependabot/npm_and_yarn/npm-10.5.0 branch March 11, 2024 15:36

vercel bot deployed to Preview March 11, 2024 15:39 View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump npm from 10.4.0 to 10.5.0 #34

Bump npm from 10.4.0 to 10.5.0 #34

dependabot bot commented on behalf of github Mar 11, 2024 •

edited

Loading

vercel bot commented Mar 11, 2024 •

edited

Loading

Bump npm from 10.4.0 to 10.5.0 #34

Bump npm from 10.4.0 to 10.5.0 #34

Conversation

dependabot bot commented on behalf of github Mar 11, 2024 • edited Loading

10.5.0 (2024-02-28)

Features

Bug Fixes

Documentation

Dependencies

Chores

vercel bot commented Mar 11, 2024 • edited Loading

dependabot bot commented on behalf of github Mar 11, 2024 •

edited

Loading

vercel bot commented Mar 11, 2024 •

edited

Loading