Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update pnpm to v7.4.0 #349

Merged
merged 1 commit into from
Jun 29, 2022
Merged

chore(deps): update pnpm to v7.4.0 #349

merged 1 commit into from
Jun 29, 2022

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jun 19, 2022
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
pnpm (source) 7.2.1 -> 7.4.0 age adoption passing confidence

Release Notes

pnpm/pnpm

v7.4.0

Compare Source

Minor Changes

  • Dependencies patching is possible via the pnpm.patchedDependencies field of the package.json.
    To patch a package, the package name, exact version, and the relative path to the patch file should be specified. For instance:

    {
  "pnpm": {
    "patchedDependencies": {
      "eslint@1.0.0": "./patches/eslint@1.0.0.patch"
    }
  }
}

  • Two new commands added: pnpm patch and pnpm patch-commit.

    pnpm patch <pkg> prepares a package for patching. For instance, if you want to patch express v1, run:

    pnpm patch express@1.0.0

    pnpm will create a temporary directory with express@1.0.0 that you can modify with your changes.
    Once you are read with your changes, run:

    pnpm patch-commit <path to temp folder>

    This will create a patch file and write it to <project>/patches/express@1.0.0.patch.
    Also, it will reference this new patch file from the patchedDependencies field in package.json:

    {
  "pnpm": {
    "patchedDependencies": {
      "express@1.0.0": "patches/express@1.0.0.patch"
    }
  }
}

  • A new experimental command added: pnpm deploy. The deploy command takes copies a project from a workspace and installs all of its production dependencies (even if some of those dependencies are other projects from the workspace).

    For example, the new command will deploy the project named foo to the dist directory in the root of the workspace:

    pnpm --filter=foo deploy dist

  • package-import-method supports a new option: clone-or-copy.

  • New setting added: include-workspace-root. When it is set to true, the run, exec, add, and test commands will include the root package, when executed recursively #​4906

Patch Changes

  • Don't crash when pnpm update --interactive is cancelled with Ctrl+c.

  • The use-node-version setting should work with prerelease Node.js versions. For instance:

    use-node-version=18.0.0-rc.3

  • Return early when the lockfile is up-to-date.

  • Resolve native workspace path for case-insensitive file systems #​4904.

  • Don't link local dev dependencies, when prod dependencies should only be installed.

  • pnpm audit --fix should not add an override for a vulnerable package that has no fixes released.

  • Update the compatibility database.

Our Gold Sponsors
#### Our Silver Sponsors
#### What's Changed * feat: patch package by @​zkochan in https://github.com/pnpm/pnpm/pull/4885 * feat: add `patch` and `patch-commit` commands by @​zkochan in https://github.com/pnpm/pnpm/pull/4900 * fix(env): `use-node-version` should work with prerelease versions by @​zkochan in https://github.com/pnpm/pnpm/pull/4903 * refactor: create @​pnpm/node.fetcher by @​zkochan in https://github.com/pnpm/pnpm/pull/4908 * feat(patch): update patched dependencies on install by @​zkochan in https://github.com/pnpm/pnpm/pull/4905 * fix: throw an error if not all patches were applied by @​zkochan in https://github.com/pnpm/pnpm/pull/4911 * fix: a modified patch should update the deps on install by @​zkochan in https://github.com/pnpm/pnpm/pull/4918 * fix: packages should be patched even when scripts are ignored by @​zkochan in https://github.com/pnpm/pnpm/pull/4922 * fix: patch package even if it is not in the onlyBuiltDependencies list by @​zkochan in https://github.com/pnpm/pnpm/pull/4925 * fix: respect include-workspace-root npmrc option by @​shirotech in https://github.com/pnpm/pnpm/pull/4928 * fix: install --lockfile-only should exit early by @​zkochan in https://github.com/pnpm/pnpm/pull/4932 * fix: resolve real path for case insensitive systems by @​mdogadailo in https://github.com/pnpm/pnpm/pull/4935 * feat: deploy command by @​zkochan in https://github.com/pnpm/pnpm/pull/4933 * fix: use recursive for deploy command directory creation by @​ragrag in https://github.com/pnpm/pnpm/pull/4943 * fix: don't fail when the patched pkg appears multiple times by @​zkochan in https://github.com/pnpm/pnpm/pull/4945 #### New Contributors * @​shirotech made their first contribution in https://github.com/pnpm/pnpm/pull/4928 * @​mdogadailo made their first contribution in https://github.com/pnpm/pnpm/pull/4935 * @​ragrag made their first contribution in https://github.com/pnpm/pnpm/pull/4943

Full Changelog: pnpm/pnpm@v7.3.0...v7.4.0

v7.3.0

Compare Source

Minor Changes

  • A new setting added: pnpm.peerDependencyRules.allowAny. allowAny is an array of package name patterns, any peer dependency matching the pattern will be resolved from any version, regardless of the range specified in peerDependencies. For instance:

    {
   "pnpm": {
     "peerDependencyRules": {
       "allowAny": ["@&#8203;babel/*", "eslint"]
     }
   }
}

    The above setting will mute any warnings about peer dependency version mismatches related to @babel/ packages or eslint.

  • The pnpm.peerDependencyRules.ignoreMissing setting may accept package name patterns. So you may ignore any missing @babel/* peer dependencies, for instance:

    {
  "pnpm": {
    "peerDependencyRules": {
      "ignoreMissing": ["@&#8203;babel/*"]
    }
  }
}

  • Experimental. New settings added: use-git-branch-lockfile, merge-git-branch-lockfiles, merge-git-branch-lockfiles-branch-pattern #​4475.

Patch Changes

  • Packages that should be built are always cloned or copied from the store. This is required to prevent the postinstall scripts from modifying the original source files of the package.

Our Sponsors
#### What's Changed * feat: enhance peer dependency rules by @​TravisJRyan in https://github.com/pnpm/pnpm/pull/4876 * feat: add git-branch-lockfile config to generate lockfile in each branch by @​chengcyber in https://github.com/pnpm/pnpm/pull/4475 * fix: built packages should not modify the original files in the store by @​zkochan in https://github.com/pnpm/pnpm/pull/4898 #### New Contributors * @​TravisJRyan made their first contribution in https://github.com/pnpm/pnpm/pull/4876

Full Changelog: pnpm/pnpm@v7.2.1...v7.3.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by Mend Renovate. View repository job log here.

@changeset-bot
Copy link

changeset-bot bot commented Jun 19, 2022
edited
Loading

⚠️ No Changeset found

Latest commit: 889069c

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@renovate
Copy link
Contributor Author

renovate bot commented Jun 19, 2022
edited
Loading

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml
installing v2 tool pnpm v7.4.0
npm WARN config global `--global`, `--local` are deprecated. Use `--location=global` instead.

added 1 package in 3s
linking tool pnpm v7.4.0
7.4.0
Scope: all 4 workspace projects
Progress: resolved 1, reused 0, downloaded 0, added 0
Progress: resolved 34, reused 0, downloaded 11, added 0
Progress: resolved 39, reused 0, downloaded 17, added 0
Progress: resolved 43, reused 0, downloaded 19, added 0
Progress: resolved 45, reused 0, downloaded 19, added 0
Progress: resolved 45, reused 0, downloaded 20, added 0
Progress: resolved 52, reused 0, downloaded 23, added 0
Progress: resolved 55, reused 0, downloaded 25, added 0
Progress: resolved 56, reused 0, downloaded 27, added 0
Progress: resolved 57, reused 0, downloaded 27, added 0
Progress: resolved 94, reused 0, downloaded 33, added 0
Progress: resolved 168, reused 0, downloaded 50, added 0
Progress: resolved 206, reused 0, downloaded 69, added 0
Progress: resolved 235, reused 0, downloaded 85, added 0
Progress: resolved 250, reused 0, downloaded 94, added 0
Progress: resolved 275, reused 0, downloaded 118, added 0
Progress: resolved 283, reused 0, downloaded 129, added 0
Progress: resolved 301, reused 0, downloaded 142, added 0
Progress: resolved 374, reused 0, downloaded 165, added 0
Progress: resolved 436, reused 0, downloaded 186, added 0
Progress: resolved 526, reused 0, downloaded 213, added 0
Progress: resolved 606, reused 0, downloaded 251, added 0
Progress: resolved 662, reused 0, downloaded 274, added 0
Progress: resolved 715, reused 0, downloaded 294, added 0
Progress: resolved 749, reused 0, downloaded 318, added 0
.                                        |  WARN  deprecated smartwrap@1.2.5
Progress: resolved 796, reused 0, downloaded 357, added 0
Progress: resolved 881, reused 0, downloaded 392, added 0
Progress: resolved 942, reused 0, downloaded 429, added 0
Progress: resolved 1039, reused 0, downloaded 454, added 0
Progress: resolved 1150, reused 0, downloaded 485, added 0
Progress: resolved 1324, reused 0, downloaded 522, added 0
Progress: resolved 1450, reused 0, downloaded 568, added 0
Progress: resolved 1533, reused 0, downloaded 587, added 0
Progress: resolved 1633, reused 0, downloaded 638, added 0
Progress: resolved 1671, reused 0, downloaded 652, added 0
Progress: resolved 1674, reused 0, downloaded 654, added 0
Progress: resolved 1676, reused 0, downloaded 656, added 0
 ERR_PNPM_PEER_DEP_ISSUES  Unmet peer dependencies

packages/core
└─┬ ts-jest
  └── ✕ unmet peer @types/jest@^27.0.0: found 28.1.0

packages/rollup
└─┬ ts-jest
  └── ✕ unmet peer @types/jest@^27.0.0: found 28.1.0

packages/vite
└─┬ ts-jest
  └── ✕ unmet peer @types/jest@^27.0.0: found 28.1.0

hint: If you don't want pnpm to fail on peer dependency issues, add "strict-peer-dependencies=false" to an .npmrc file at the root of your project.

@codecov
Copy link

codecov bot commented Jun 19, 2022
edited
Loading

Codecov Report

Merging #349 (889069c) into main (fa2e53d) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             main     #349   +/-   ##
=======================================
  Coverage   94.47%   94.47%           
=======================================
  Files          30       30           
  Lines         434      434           
  Branches      111      111           
=======================================
  Hits          410      410           
  Misses         24       24
Flag Coverage Δ
imagetools-core 97.64% <ø> (ø)
rollup-plugin-imagetools 98.30% <ø> (ø)
vite-imagetools 79.48% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update fa2e53d...889069c. Read the comment docs.

@renovate renovate bot force-pushed the renovate/pnpm-7.x branch from 02cf748 to 889069c Compare June 28, 2022 15:26
@renovate renovate bot changed the title chore(deps): update pnpm to v7.3.0 chore(deps): update pnpm to v7.4.0 Jun 28, 2022
@JonasKruckenberg JonasKruckenberg merged commit 3c5307c into main Jun 29, 2022
@JonasKruckenberg JonasKruckenberg deleted the renovate/pnpm-7.x branch June 29, 2022 06:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@JonasKruckenberg