Commit Graph

14 Commits

Author SHA1 Message Date
Yuri Astrakhan
125d78c706 ci cleanup 2023-10-12 18:51:44 -04:00
dependabot[bot]
f8b5d36b7d
chore(deps): Bump dependabot/fetch-metadata from 1.5.1 to 1.6.0 ()
Bumps
[dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata)
from 1.5.1 to 1.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's
releases</a>.</em></p>
<blockquote>
<h2>v1.6.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Add <code>.vscode</code> folder to <code>.gitignore</code> by <a
href="https://github.com/timothy-humphrey"><code>@​timothy-humphrey</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/385">dependabot/fetch-metadata#385</a></li>
<li>Support for Grouped Updates by <a
href="https://github.com/Nishnha"><code>@​Nishnha</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/396">dependabot/fetch-metadata#396</a></li>
<li>v1.6.0 by <a
href="https://github.com/fetch-metadata-action-automation"><code>@​fetch-metadata-action-automation</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/403">dependabot/fetch-metadata#403</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/timothy-humphrey"><code>@​timothy-humphrey</code></a>
made their first contribution in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/385">dependabot/fetch-metadata#385</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dependabot/fetch-metadata/compare/v1...v1.6.0">https://github.com/dependabot/fetch-metadata/compare/v1...v1.6.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c9c4182bf1"><code>c9c4182</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/403">#403</a>
from dependabot/bump-to-v1.6.0</li>
<li><a
href="aa6ff64b72"><code>aa6ff64</code></a>
v1.6.0</li>
<li><a
href="62c4c8daf6"><code>62c4c8d</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/396">#396</a>
from dependabot/nishnha/grouped-updates-support</li>
<li><a
href="11c0ea46b8"><code>11c0ea4</code></a>
build</li>
<li><a
href="b8e8f8c79b"><code>b8e8f8c</code></a>
Pull the group name from commit metadata</li>
<li><a
href="b534cb5e81"><code>b534cb5</code></a>
FIXME: prevVersion and newVersion are blank for grouped updates</li>
<li><a
href="9e8fb5b31b"><code>9e8fb5b</code></a>
Add tests for grouped updates</li>
<li><a
href="b3648a31bd"><code>b3648a3</code></a>
Use commit data to infer dependency groups instead of the PR body</li>
<li><a
href="cfab22f699"><code>cfab22f</code></a>
Add dependency group metadata</li>
<li><a
href="73e8a46e9e"><code>73e8a46</code></a>
Add <code>.vscode</code> folder to <code>.gitignore</code> (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/385">#385</a>)</li>
<li>See full diff in <a
href="https://github.com/dependabot/fetch-metadata/compare/v1.5.1...v1.6.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.5.1&new-version=1.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-28 02:15:12 -04:00
dependabot[bot]
9b969d58a1
chore(deps): Bump dependabot/fetch-metadata from 1.5.0 to 1.5.1 ()
Bumps
[dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata)
from 1.5.0 to 1.5.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's
releases</a>.</em></p>
<blockquote>
<h2>v1.5.1</h2>
<h2>What's Changed</h2>
<p>Bugfix:</p>
<ul>
<li>Fix library parser to trim trailing LF by <a
href="https://github.com/kachick"><code>@​kachick</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/380">dependabot/fetch-metadata#380</a></li>
</ul>
<p>Dep bumps that are trivial so decided to keep this a patch
release:</p>
<ul>
<li>Bump yargs from 17.7.1 to 17.7.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/379">dependabot/fetch-metadata#379</a></li>
<li>Bump <code>@​types/node</code> from 20.2.1 to 20.2.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/382">dependabot/fetch-metadata#382</a></li>
</ul>
<p>Internal-facing infra changes:</p>
<ul>
<li>Group :dependabot: PR's for <code>eslint</code>-related deps by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/374">dependabot/fetch-metadata#374</a></li>
<li>Bump the eslint-dependencies group with 3 updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/375">dependabot/fetch-metadata#375</a></li>
<li>Bump the eslint-dependencies group with 2 updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/378">dependabot/fetch-metadata#378</a></li>
<li>Switch to using an app token instead of a PAT by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/362">dependabot/fetch-metadata#362</a></li>
<li>v1.5.1 by <a
href="https://github.com/fetch-metadata-action-automation"><code>@​fetch-metadata-action-automation</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/384">dependabot/fetch-metadata#384</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dependabot/fetch-metadata/compare/v1...v1.5.1">https://github.com/dependabot/fetch-metadata/compare/v1...v1.5.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cd6e996708"><code>cd6e996</code></a>
v1.5.1 (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/384">#384</a>)</li>
<li><a
href="64bd9b825f"><code>64bd9b8</code></a>
Fix library parser to trim trailing LF (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/380">#380</a>)</li>
<li><a
href="0908fa19ff"><code>0908fa1</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/382">#382</a>
from dependabot/dependabot/npm_and_yarn/types/node-20...</li>
<li><a
href="2624edc352"><code>2624edc</code></a>
Bump <code>@​types/node</code> from 20.2.1 to 20.2.3</li>
<li><a
href="d1defa4769"><code>d1defa4</code></a>
Switch to using an app token instead of a PAT (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/362">#362</a>)</li>
<li><a
href="cb17c9e1eb"><code>cb17c9e</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/379">#379</a>
from dependabot/dependabot/npm_and_yarn/yargs-17.7.2</li>
<li><a
href="c6f9c16b9f"><code>c6f9c16</code></a>
Bump yargs from 17.7.1 to 17.7.2</li>
<li><a
href="0f533276d7"><code>0f53327</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/378">#378</a>
from dependabot/dependabot/npm_and_yarn/eslint-depend...</li>
<li><a
href="398ed41843"><code>398ed41</code></a>
Bump the eslint-dependencies group with 2 updates</li>
<li><a
href="801acabef1"><code>801acab</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/375">#375</a>
from dependabot/dependabot/npm_and_yarn/eslint-depend...</li>
<li>Additional commits viewable in <a
href="https://github.com/dependabot/fetch-metadata/compare/v1.5.0...v1.5.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.5.0&new-version=1.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-24 23:24:18 +00:00
dependabot[bot]
2df254af4d
chore(deps): Bump dependabot/fetch-metadata from 1.4.0 to 1.5.0 ()
Bumps
[dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata)
from 1.4.0 to 1.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's
releases</a>.</em></p>
<blockquote>
<h2>v1.5.0</h2>
<h2>What's Changed</h2>
<p>New Features:</p>
<ul>
<li>Added flag if &quot;Maintainer changes&quot; appears in the PR body
by <a href="https://github.com/mwaddell"><code>@​mwaddell</code></a> in
<a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/174">dependabot/fetch-metadata#174</a></li>
</ul>
<p>Bumped Deps:</p>
<ul>
<li>Bump <code>@​types/node</code> from 18.15.11 to 20.2.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/364">dependabot/fetch-metadata#364</a></li>
<li>Bump nock from 13.3.0 to 13.3.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/366">dependabot/fetch-metadata#366</a></li>
</ul>
<p>Docs:</p>
<ul>
<li>Add minimum permissions to usage example by <a
href="https://github.com/jablko"><code>@​jablko</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/343">dependabot/fetch-metadata#343</a></li>
<li>Document verification overrides in readme by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/345">dependabot/fetch-metadata#345</a></li>
</ul>
<p>Code cleanup:</p>
<ul>
<li>Simplify the release process by linking to release notes instead of
copy/pasting them by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/347">dependabot/fetch-metadata#347</a></li>
<li>Use the full email for the GitHub Actions bot by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/354">dependabot/fetch-metadata#354</a></li>
<li>Inline the PR URL by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/359">dependabot/fetch-metadata#359</a></li>
<li>No need to request escalated permissions for
<code>GITHUB_TOKEN</code> by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/357">dependabot/fetch-metadata#357</a></li>
<li>Remove unused step by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/358">dependabot/fetch-metadata#358</a></li>
<li>Simplify <code>bin/bump-version</code> by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/368">dependabot/fetch-metadata#368</a></li>
<li>Add a deeplink for tagging releases to the Readme by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/369">dependabot/fetch-metadata#369</a></li>
<li>Stop using deprecated <code>set-output</code> by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/370">dependabot/fetch-metadata#370</a></li>
<li>Add workflow for creating release PR's by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/360">dependabot/fetch-metadata#360</a></li>
<li>Add workflow for floating the <code>v1</code> tag to the latest
release by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/361">dependabot/fetch-metadata#361</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dependabot/fetch-metadata/compare/v1...v1.5.0">https://github.com/dependabot/fetch-metadata/compare/v1...v1.5.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="28a846a119"><code>28a846a</code></a>
v1.5.0 (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/372">#372</a>)</li>
<li><a
href="a2a3a43b4a"><code>a2a3a43</code></a>
Add workflow for floating the <code>v1</code> tag to the latest release
(<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/361">#361</a>)</li>
<li><a
href="6c5b8c2d48"><code>6c5b8c2</code></a>
Add workflow for creating release PR's (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/360">#360</a>)</li>
<li><a
href="c40140bc51"><code>c40140b</code></a>
Stop using deprecated <code>set-output</code> (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/370">#370</a>)</li>
<li><a
href="042f8db0bc"><code>042f8db</code></a>
Add a deeplink for tagging releases to the Readme (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/369">#369</a>)</li>
<li><a
href="fd7c300f7c"><code>fd7c300</code></a>
Simplify <code>bin/bump-version</code> (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/368">#368</a>)</li>
<li><a
href="9cc71e706f"><code>9cc71e7</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/366">#366</a>
from dependabot/dependabot/npm_and_yarn/nock-13.3.1</li>
<li><a
href="f29558c5b5"><code>f29558c</code></a>
Bump nock from 13.3.0 to 13.3.1</li>
<li><a
href="ec762ddf3e"><code>ec762dd</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/364">#364</a>
from dependabot/dependabot/npm_and_yarn/types/node-20...</li>
<li><a
href="e79c5ea20c"><code>e79c5ea</code></a>
Bump <code>@​types/node</code> from 18.15.11 to 20.2.1</li>
<li>Additional commits viewable in <a
href="https://github.com/dependabot/fetch-metadata/compare/v1.4.0...v1.5.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.4.0&new-version=1.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-22 23:29:42 +00:00
dependabot[bot]
d4f3144fb7
chore(deps): Bump dependabot/fetch-metadata from 1.3.6 to 1.4.0 ()
Bumps
[dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata)
from 1.3.6 to 1.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's
releases</a>.</em></p>
<blockquote>
<h2>v1.4.0</h2>
<h2>New Features</h2>
<ul>
<li>feat: add option to skip internal verifications by <a
href="https://github.com/yeikel"><code>@​yeikel</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/336">dependabot/fetch-metadata#336</a></li>
</ul>
<h2>Bugfix</h2>
<ul>
<li>Allow leading <code>v</code> on commit message versions by <a
href="https://github.com/jonmcquillan"><code>@​jonmcquillan</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/338">dependabot/fetch-metadata#338</a></li>
</ul>
<h2>Dep Bumps</h2>
<ul>
<li>Bump <code>@​typescript-eslint/eslint-plugin</code> from 5.48.2 to
5.49.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/307">dependabot/fetch-metadata#307</a></li>
<li>Bump <code>@​types/yargs</code> from 17.0.19 to 17.0.20 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/308">dependabot/fetch-metadata#308</a></li>
<li>Bump <code>@​typescript-eslint/parser</code> from 5.48.2 to 5.49.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/309">dependabot/fetch-metadata#309</a></li>
<li>Bump eslint from 8.32.0 to 8.33.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/315">dependabot/fetch-metadata#315</a></li>
<li>Bump <code>@​typescript-eslint/parser</code> from 5.49.0 to 5.50.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/314">dependabot/fetch-metadata#314</a></li>
<li>Bump <code>@​types/yargs</code> from 17.0.20 to 17.0.22 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/312">dependabot/fetch-metadata#312</a></li>
<li>Bump <code>@​vercel/ncc</code> from 0.36.0 to 0.36.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/311">dependabot/fetch-metadata#311</a></li>
<li>Bump typescript from 4.9.4 to 4.9.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/313">dependabot/fetch-metadata#313</a></li>
<li>Bump yargs from 17.6.2 to 17.7.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/322">dependabot/fetch-metadata#322</a></li>
<li>Bump eslint from 8.33.0 to 8.35.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/321">dependabot/fetch-metadata#321</a></li>
<li>Bump <code>@​typescript-eslint/eslint-plugin</code> from 5.49.0 to
5.54.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/319">dependabot/fetch-metadata#319</a></li>
<li>Bump <code>@​typescript-eslint/parser</code> from 5.50.0 to 5.54.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/320">dependabot/fetch-metadata#320</a></li>
<li>Bump <code>@​types/node</code> from 18.11.18 to 18.14.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/318">dependabot/fetch-metadata#318</a></li>
<li>Bump <code>@​types/node</code> from 18.14.2 to 18.15.11 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/324">dependabot/fetch-metadata#324</a></li>
<li>Bump eslint from 8.35.0 to 8.37.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/327">dependabot/fetch-metadata#327</a></li>
<li>Bump <code>@​types/yargs</code> from 17.0.22 to 17.0.24 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/326">dependabot/fetch-metadata#326</a></li>
<li>Bump <code>@​typescript-eslint/parser</code> from 5.54.0 to 5.57.1
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/330">dependabot/fetch-metadata#330</a></li>
<li>Bump <code>@​typescript-eslint/eslint-plugin</code> from 5.54.0 to
5.57.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/329">dependabot/fetch-metadata#329</a></li>
<li>Bump eslint from 8.37.0 to 8.38.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/340">dependabot/fetch-metadata#340</a></li>
<li>Bump <code>@​typescript-eslint/parser</code> from 5.57.1 to 5.59.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/341">dependabot/fetch-metadata#341</a></li>
<li>Bump <code>@​typescript-eslint/eslint-plugin</code> from 5.57.1 to
5.59.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/342">dependabot/fetch-metadata#342</a></li>
</ul>
<h2>Other</h2>
<ul>
<li>chore(ee): add devcontainer by <a
href="https://github.com/yeikel"><code>@​yeikel</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/337">dependabot/fetch-metadata#337</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/jonmcquillan"><code>@​jonmcquillan</code></a>
made their first contribution in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/338">dependabot/fetch-metadata#338</a></li>
<li><a href="https://github.com/yeikel"><code>@​yeikel</code></a> made
their first contribution in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/337">dependabot/fetch-metadata#337</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dependabot/fetch-metadata/compare/v1...v1.4.0">https://github.com/dependabot/fetch-metadata/compare/v1...v1.4.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="efb5c8deb1"><code>efb5c8d</code></a>
v1.4.0 (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/344">#344</a>)</li>
<li><a
href="e8685ee3f1"><code>e8685ee</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/342">#342</a>
from dependabot/dependabot/npm_and_yarn/typescript-es...</li>
<li><a
href="9ca898d8c8"><code>9ca898d</code></a>
Bump <code>@​typescript-eslint/eslint-plugin</code> from 5.57.1 to
5.59.0</li>
<li><a
href="f2fbcde837"><code>f2fbcde</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/341">#341</a>
from dependabot/dependabot/npm_and_yarn/typescript-es...</li>
<li><a
href="1b2ca2fef8"><code>1b2ca2f</code></a>
Bump <code>@​typescript-eslint/parser</code> from 5.57.1 to 5.59.0</li>
<li><a
href="ffc304e015"><code>ffc304e</code></a>
Merge pull request <a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/340">#340</a>
from dependabot/dependabot/npm_and_yarn/eslint-8.38.0</li>
<li><a
href="67395c4850"><code>67395c4</code></a>
Bump eslint from 8.37.0 to 8.38.0</li>
<li><a
href="6c2bf2fe33"><code>6c2bf2f</code></a>
feat: add option to skip internal verifications (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/336">#336</a>)</li>
<li><a
href="684ca1c3fd"><code>684ca1c</code></a>
Add devcontainer (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/337">#337</a>)</li>
<li><a
href="919f913865"><code>919f913</code></a>
Allow leading <code>v</code> on commit message versions (<a
href="https://redirect.github.com/dependabot/fetch-metadata/issues/338">#338</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/dependabot/fetch-metadata/compare/v1.3.6...v1.4.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.3.6&new-version=1.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-24 13:48:42 -04:00
dependabot[bot]
f56be44089
chore(deps): Bump dependabot/fetch-metadata from 1.3.5 to 1.3.6 ()
Bumps
[dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata)
from 1.3.5 to 1.3.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's
releases</a>.</em></p>
<blockquote>
<h2>v1.3.6</h2>
<h2>What's Changed</h2>
<ul>
<li>Drop mention of &quot;locally&quot; by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/281">dependabot/fetch-metadata#281</a></li>
<li>Don't assume <code>git pull</code> fetches all branches/tags by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/284">dependabot/fetch-metadata#284</a></li>
<li>Clarify release notes slightly by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/283">dependabot/fetch-metadata#283</a></li>
<li>Bump eslint-plugin-promise from 6.0.1 to 6.1.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/287">dependabot/fetch-metadata#287</a></li>
<li>Bump <code>@​typescript-eslint/parser</code> from 5.38.0 to 5.45.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/290">dependabot/fetch-metadata#290</a></li>
<li>Bump yargs and <code>@​types/yargs</code> by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/286">dependabot/fetch-metadata#286</a></li>
<li>Bump <code>@​types/node</code> from 18.11.9 to 18.11.10 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/289">dependabot/fetch-metadata#289</a></li>
<li>Bump decode-uri-component from 0.2.0 to 0.2.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/291">dependabot/fetch-metadata#291</a></li>
<li>Bump yaml from 2.1.1 to 2.1.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/288">dependabot/fetch-metadata#288</a></li>
<li>Bump <code>@​types/node</code> from 18.11.10 to 18.11.18 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/296">dependabot/fetch-metadata#296</a></li>
<li>Bump <code>@​vercel/ncc</code> from 0.34.0 to 0.36.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/294">dependabot/fetch-metadata#294</a></li>
<li>Bump dotenv from 16.0.2 to 16.0.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/293">dependabot/fetch-metadata#293</a></li>
<li>Bump typescript from 4.8.3 to 4.9.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/295">dependabot/fetch-metadata#295</a></li>
<li>Bump yaml from 2.1.3 to 2.2.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/292">dependabot/fetch-metadata#292</a></li>
<li>Bump json5 from 1.0.1 to 1.0.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/297">dependabot/fetch-metadata#297</a></li>
<li>Bump eslint from 8.23.1 to 8.32.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/303">dependabot/fetch-metadata#303</a></li>
<li>Bump <code>@​typescript-eslint/parser</code> from 5.45.0 to 5.48.2
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/300">dependabot/fetch-metadata#300</a></li>
<li>Bump <code>@​typescript-eslint/eslint-plugin</code> from 5.42.0 to
5.48.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/302">dependabot/fetch-metadata#302</a></li>
<li>Bump eslint-plugin-import from 2.26.0 to 2.27.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/301">dependabot/fetch-metadata#301</a></li>
<li>Bump nock from 13.2.9 to 13.3.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/299">dependabot/fetch-metadata#299</a></li>
<li>Bump <code>@​types/yargs</code> from 17.0.15 to 17.0.19 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/304">dependabot/fetch-metadata#304</a></li>
<li>Fix parser for libraries by <a
href="https://github.com/kachick"><code>@​kachick</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/224">dependabot/fetch-metadata#224</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/kachick"><code>@​kachick</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/224">dependabot/fetch-metadata#224</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dependabot/fetch-metadata/compare/v1...v1.3.6">https://github.com/dependabot/fetch-metadata/compare/v1...v1.3.6</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4de7a6c08c"><code>4de7a6c</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/306">#306</a>
from dependabot/v1.3.6-release-notes</li>
<li><a
href="dfa376e5c1"><code>dfa376e</code></a>
v1.3.6</li>
<li><a
href="2b4e1681e0"><code>2b4e168</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/224">#224</a>
from kachick/fix-get-info-for-library</li>
<li><a
href="0a3f18375a"><code>0a3f183</code></a>
Adjust indent style with existing code</li>
<li><a
href="cf0e979712"><code>cf0e979</code></a>
Merge branch 'main' into fix-get-info-for-library</li>
<li><a
href="6b3627f3f1"><code>6b3627f</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/304">#304</a>
from dependabot/dependabot/npm_and_yarn/types/yargs-1...</li>
<li><a
href="b385d6219b"><code>b385d62</code></a>
Bump <code>@​types/yargs</code> from 17.0.15 to 17.0.19</li>
<li><a
href="ab5ccc9b61"><code>ab5ccc9</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/299">#299</a>
from dependabot/dependabot/npm_and_yarn/nock-13.3.0</li>
<li><a
href="ce0ec4e5d5"><code>ce0ec4e</code></a>
Bump nock from 13.2.9 to 13.3.0</li>
<li><a
href="26d146ee07"><code>26d146e</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/301">#301</a>
from dependabot/dependabot/npm_and_yarn/eslint-plugin...</li>
<li>Additional commits viewable in <a
href="https://github.com/dependabot/fetch-metadata/compare/v1.3.5...v1.3.6">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.3.5&new-version=1.3.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-24 22:39:53 +00:00
dependabot[bot]
aabc31e067
chore(deps): bump dependabot/fetch-metadata from 1.3.4 to 1.3.5 ()
Bumps
[dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata)
from 1.3.4 to 1.3.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's
releases</a>.</em></p>
<blockquote>
<h2>v1.3.5</h2>
<h2>What's Changed</h2>
<ul>
<li>v1.3.4 Release Notes by <a
href="https://github.com/Nishnha"><code>@​Nishnha</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/267">dependabot/fetch-metadata#267</a></li>
<li>docs: fix auto-merge example by <a
href="https://github.com/rribeiro1"><code>@​rribeiro1</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/250">dependabot/fetch-metadata#250</a></li>
<li>Bump <code>@​types/node</code> from 18.7.18 to 18.11.9 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/275">dependabot/fetch-metadata#275</a></li>
<li>Fix object-shorthand linter warnings by <a
href="https://github.com/mattt"><code>@​mattt</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/276">dependabot/fetch-metadata#276</a></li>
<li>Bump <code>@​actions/core</code> from 1.9.1 to 1.10.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/272">dependabot/fetch-metadata#272</a></li>
<li>Bump <code>@​typescript-eslint/eslint-plugin</code> from 5.38.0 to
5.42.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/274">dependabot/fetch-metadata#274</a></li>
<li>Bump <code>@​actions/github</code> from 5.0.3 to 5.1.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/271">dependabot/fetch-metadata#271</a></li>
<li>Bump yargs and <code>@​types/yargs</code> by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/273">dependabot/fetch-metadata#273</a></li>
<li>Document steps for cutting a new release by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/252">dependabot/fetch-metadata#252</a></li>
<li>Don't bump pin versions in <code>README.md</code> by <a
href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/280">dependabot/fetch-metadata#280</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/Nishnha"><code>@​Nishnha</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/267">dependabot/fetch-metadata#267</a></li>
<li><a href="https://github.com/rribeiro1"><code>@​rribeiro1</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/250">dependabot/fetch-metadata#250</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dependabot/fetch-metadata/compare/v1...v1.3.5">https://github.com/dependabot/fetch-metadata/compare/v1...v1.3.5</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ef0018793"><code>5ef0018</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/282">#282</a>
from dependabot/v1.3.5-release-notes</li>
<li><a
href="a9380d24b2"><code>a9380d2</code></a>
v1.3.5</li>
<li><a
href="404ba25b3f"><code>404ba25</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/280">#280</a>
from dependabot/drop-readme-from-bump-script</li>
<li><a
href="f40d4c77c9"><code>f40d4c7</code></a>
Don't bump pin versions in <code>README.md</code></li>
<li><a
href="7db64c379f"><code>7db64c3</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/252">#252</a>
from dependabot/document-release-steps</li>
<li><a
href="daa85e7aee"><code>daa85e7</code></a>
Add mention of <code>npm run build</code> if dev deps need
updating.</li>
<li><a
href="b768c4033e"><code>b768c40</code></a>
Document steps for cutting a new release</li>
<li><a
href="9833f74bfb"><code>9833f74</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/273">#273</a>
from dependabot/dependabot/npm_and_yarn/yargs-and-typ...</li>
<li><a
href="32b7ed324b"><code>32b7ed3</code></a>
Bump yargs and <code>@​types/yargs</code></li>
<li><a
href="7942397165"><code>7942397</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/271">#271</a>
from dependabot/dependabot/npm_and_yarn/actions/githu...</li>
<li>Additional commits viewable in <a
href="https://github.com/dependabot/fetch-metadata/compare/v1.3.4...v1.3.5">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.3.4&new-version=1.3.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-07 22:15:28 +00:00
dependabot[bot]
44f293d2bb
chore(deps): bump dependabot/fetch-metadata from 1.3.3 to 1.3.4 ()
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.3 to 1.3.4.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.3...v1.3.4)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-30 22:36:36 +00:00
Stepan Kuzmin
40d2b647a9
Auto approve Dependabot semver patch PRs () 2022-07-29 12:20:37 +03:00
dependabot[bot]
84a11092f4
chore(deps): bump dependabot/fetch-metadata from 1.3.2 to 1.3.3 ()
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.2 to 1.3.3.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.2...v1.3.3)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-05 10:21:31 -04:00
Stepan Kuzmin
ab9699482a
ci: use squash instead of merge when auto-merging Dependabot PRs ()
use squash instead of merge when auto-merging Dependabot PRs
2022-07-02 08:08:59 -04:00
dependabot[bot]
dd91fd0068
chore(deps): bump dependabot/fetch-metadata from 1.3.1 to 1.3.2 ()
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.1 to 1.3.2.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.1...v1.3.2)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-30 19:02:33 -04:00
dependabot[bot]
405e8226d5
chore(deps): bump dependabot/fetch-metadata from 1.1.1 to 1.3.1 ()
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.1.1 to 1.3.1.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.1.1...v1.3.1)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-29 11:17:17 +03:00
Stepan Kuzmin
9b4df609c6
ci: enable dependabot auto-merge () 2022-05-27 14:46:48 +03:00