chore(deps): update dependency pacote to v17 - autoclosed #1249
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
^13.0.0
->^17.0.0
Release Notes
npm/pacote (pacote)
v17.0.6
Compare Source
Dependencies
0a5920f
#343 bump sigstore from 2.0.0 to 2.2.0 (#343) (@bdehamer)Chores
6fd23ad
#342 postinstall for dependabot template-oss PR (@lukekarrys)c3b398a
#342 bump @npmcli/template-oss from 4.21.1 to 4.21.3 (@dependabot[bot])4557919
#337 postinstall for dependabot template-oss PR (@lukekarrys)c7e293c
#337 bump @npmcli/template-oss from 4.19.0 to 4.21.1 (@dependabot[bot])v17.0.5
Compare Source
Bug Fixes
0c96b9e
#338 bug to support rotated keys in signature/attestation audit (#338) (@feelepxyz)v17.0.4
Compare Source
Dependencies
ba8f790
#309 bump @npmcli/promise-spawn from 6.0.2 to 7.0.02c0d3ae
#308 bump @npmcli/run-script from 6.0.2 to 7.0.0v17.0.3
Compare Source
Dependencies
ace7c28
#305 bump npm-packlist from 7.0.4 to 8.0.0v17.0.2
Compare Source
Dependencies
c3b892d
#303 bump sigstore from 1.3.0 to 2.0.0v17.0.1
Compare Source
Dependencies
6ddae13
#302 bump npm-registry-fetch from 15.0.0 to 16.0.042bf787
#300 bump npm-pick-manifest from 8.0.2 to 9.0.0v17.0.0
Compare Source
Bug Fixes
2db2fb5
#296 drop node 16.13.x support (@lukekarrys)Dependencies
e9e964b
#299 bump read-package-json from 6.0.4 to 7.0.05d26500
#298 bump npm-package-arg from 10.1.0 to 11.0.0d13bb9c
#294 bump @npmcli/git from 4.1.0 to 5.0.07a25e39
#293 bump cacache from 17.1.4 to 18.0.0v16.0.0
Compare Source
@npmcli/agent
. Backwards compatibility should be fully implemented but due to the scope of this change it was made a breaking change out of an abundance of caution.Bug Fixes
73b6297
#290 drop node14 support (#290) (@wraithgar)Dependencies
8dc6a32
bump minipass from 5.0.0 to 7.0.27cebf19
bump npm-registry-fetch from 14.0.5 to 15.0.0v15.2.0
Compare Source
Features
3307ad9
#278 configurable TUF cache dir (#278) (@bdehamer)v15.1.3
Compare Source
Dependencies
c99db13
#271 bump minipass from 4.2.7 to 5.0.0 (#271)v15.1.2
Compare Source
Documentation
43363dd
#266 update dist details (#266) (@wraithgar)Dependencies
d5cb3df
#276[email protected]
(#276)c231986
#267 sigstore@^1.1.0v15.1.1
Compare Source
Bug Fixes
8f4e39c
#261 always ignore ownership from tar headers (#261) (@nlf)v15.1.0
Compare Source
Features
2916b72
#259 verifyAttestations to registry.manifest (@feelepxyz, @bdehamer)Dependencies
f0bd19b
add sigstore 1.0.0v15.0.8
Compare Source
Dependencies
40aa6fe
#253 bump fs-minipass from 2.1.0 to 3.0.0v15.0.7
Compare Source
Dependencies
a734d61
#250 bump minipass from 3.3.6 to 4.0.0v15.0.6
Compare Source
Dependencies
dbbda43
#246@npmcli/[email protected]
v15.0.5
Compare Source
Dependencies
63797a8
#244 bump @npmcli/promise-spawn from 5.0.0 to 6.0.1 (#244)v15.0.4
Compare Source
Dependencies
854fad1
#239 bump @npmcli/promise-spawn from 4.0.0 to 5.0.0 (#239)v15.0.3
Compare Source
Dependencies
2a95ddb
#235 bump @npmcli/installed-package-contents (#235)v15.0.2
Compare Source
Bug Fixes
95f9cd5
handle new npm-package-arg semantics (@wraithgar)Dependencies
2ed4d22
[email protected]
v15.0.1
Compare Source
Dependencies
74821c2
#229 bump @npmcli/run-script from 4.2.1 to 5.0.0 (#229)a9844d0
#226 bump @npmcli/promise-spawn from 3.0.0 to 4.0.0 (#226)1058177
#227 bump read-package-json from 5.0.2 to 6.0.00f5ef8a
#228 bump @npmcli/installed-package-contents from 1.0.7 to 2.0.07e3b4b5
#220 bump ssri from 9.0.1 to 10.0.04e7536d
#222 bump @npmcli/git from 3.0.2 to 4.0.03bc7550
#223 bump npm-pick-manifest from 7.0.2 to 8.0.041fab27
#224 bump proc-log from 2.0.1 to 3.0.04abf24a
#218 bump npm-registry-fetch from 13.3.1 to 14.0.0 (#218)v15.0.0
Compare Source
Features
43ae022
#216 do not alter file ownership (#216) (@nlf)Dependencies
2ac3980
#213 bump read-package-json-fast from 2.0.3 to 3.0.0v14.0.0
Compare Source
Features
ee16f1f
#207 set as release (@fritzy)Configuration
📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.