Skip to content

Bump minimatch, babel-eslint, gh-pages, gulp and karma-coverage #12

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump minimatch, babel-eslint, gh-pages, gulp and karma-coverage #12

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Jul 15, 2025

Bumps minimatch to 3.1.2 and updates ancestor dependencies minimatch, babel-eslint, gh-pages, gulp and karma-coverage. These dependencies need to be updated together.

Updates minimatch from 3.0.4 to 3.1.2

Commits

Updates babel-eslint from 4.1.8 to 10.1.0

Release notes

Sourced from babel-eslint's releases.

v10.1.0

v10.0.3

Fixes babel/babel-eslint#791, also eslint/eslint#12117

Some context: babel/babel-eslint#793

We ended up going with @​JLHwung's PR babel/babel-eslint#794 which uses ESLint's deps instead of going with peerDeps since it really depends on the version being used and we don't want users to have to install it directly on their own.

babel-eslint is patching patches of the dependencies of ESLint itself so these kinds of issues have happened in the past. We'll need to look into figuring out how to have a more solid way of modifying behavior instead of this monkeypatching type of thing for future releases.

v10.0.2

Fixes babel/babel-eslint#772

v10.0.1

The TypeAlias "conversion" to a function has issues. Sounds like we need to rethink the change, most likely we can just actually change the scoping rather than hardcode an AST change.

v10.0.0

Small breaking change: add a peerDependency starting from the ESLint version that added a parser feature that we were monkeypatching before (and drop that code). If already using ESLint 5 shouldn't be any different.

/* @flow */
type Node<T> = { head: T; tail: Node<T> }
// or
type File = {chunks: Array<Chunk>}
type Chunk = {file: File}

v9.0.0

We've released v7: https://twitter.com/left_pad/status/1034204330352500736, so this just updates babel-eslint to use those versions internally. That in itself doesn't break anything but:

  • Babel now supports the new decorators proposal by default, so we need to switch between the new and the old proposal. This is a breaking change.

To enable the legacy decorators proposal users should add a specific parser option:

{
</tr></table>

... (truncated)

Commits

Updates gh-pages from 0.2.0 to 6.3.0

Release notes

Sourced from gh-pages's releases.

v6.3.0

What's Changed

New Contributors

Full Changelog: tschaub/gh-pages@v6.2.0...v6.3.0

v6.2.0

What's Changed

New Contributors

Full Changelog: tschaub/gh-pages@v6.1.1...v6.2.0

v6.1.1

Fixes

Dependency Updates

New Contributors

... (truncated)

Changelog

Sourced from gh-pages's changelog.

v6.3.0

This relesae includes a fix for filenames starting with - and a number of dependency updates. See below for details.

v6.2.0

Assorted dependency updates and a documentation change.

v6.1.1

This release fixes an issue with the --cname option.

v6.1.0

This release adds support for --nojekyll and --cname options.

... (truncated)

Commits
  • ed6cd8e 6.3.0
  • 7bfced0 Log changes
  • fe4756c Merge pull request #593 from sherlockdoyle/fix-592
  • 7e44de2 fixes #592
  • b3478f0 Merge pull request #591 from tschaub/dependabot/npm_and_yarn/commander-13.0.0
  • 1208c2e Remove extra argument
  • fbf8432 Bump commander from 11.1.0 to 13.0.0
  • 4be5ff0 Merge pull request #587 from tschaub/dependabot/npm_and_yarn/eslint-config-ts...
  • b18ebf0 Updates to work with ESLint 9
  • b7862ca Bump eslint-config-tschaub from 14.1.2 to 15.1.0
  • Additional commits viewable in compare view

Updates gulp from 3.9.1 to 5.0.1

Release notes

Sourced from gulp's releases.

gulp v5.0.1

Bug Fixes

  • Avoid globbing before read stream is opened (#2839) (19122f3)
  • Avoid Node.js deprecation warning for fs.Stats (#2838) (69a5d0e)
  • Support top-level await on Node 22.12+ (#2836) (04b4a74)

gulp v5.0.0

We've tried to provide a high-level changelog for gulp v5 below, but it doesn't contain all changes from the 60+ dependencies that we maintain.

Please see individual changelogs to drill down into all changes that were made.

⚠ BREAKING CHANGES

  • Drop support for Node.js <10.13
  • Default stream encoding to UTF-8
  • Standardized on anymatch library for globbing paths. All globs should work the same between src and watch now!
  • Removed support for ordered globs. This aligns with the chokidar globbing implementation. If you need your globs to be ordered, you can use ordered-read-stream
  • All globs and paths are normalized to unix-like filepaths
  • Only allow JS variants for .gulp.* config files
  • Removed support for alpha releases of v4 from gulp-cli
  • Removed the --verify flag
  • Renamed the --require flag to --preload to avoid conflicting with Node.js flags
  • Removed many legacy and deprecated loaders
  • Upgrade to chokidar v3
  • Clone Vinyl objects with stream contents using teex, but no longer wait for all streams to flow before cloned streams will receive data
  • Stop using process.umask() to make directories, instead falling back to Node's default mode
  • Throw on non-function, non-string option coercers
  • Drop support of Node.js snake_case flags
  • Use a Symbol for attaching the gulplog namespace to the store
  • Use a Symbol for attaching the gulplog store to the global
  • Use sha256 to hash the v8flags cache into a filename

Features

  • Streamlined the dependency tree
  • Switch all streams implementation to Streamx
  • Rewrote glob-stream to use a custom directory walk that relies on newer Node.js features and is more performant than old implementation
  • Implement translation support for all CLI messages and all messages passing through gulplog
  • Allow users to customize or remove the timestamp from their logs
  • Upgraded gulplog to v2. Messages logged via v1 will also display a deprecated warning. Plugins should update to v2 as the community upgrades to gulp 5
  • Added support for gulpile.cjs and gulpfile.mjs
  • Add support for swc, esbuild, sucrase, and mdx loaders
  • Provide an ESM export (#2760) (b00de68)
  • Support sourcemap handling on streaming Vinyl contents

... (truncated)

Changelog

Sourced from gulp's changelog.

5.0.1 (2025-06-01)

Bug Fixes

  • Avoid globbing before read stream is opened (#2839) (19122f3)
  • Avoid Node.js deprecation warning for fs.Stats (#2838) (69a5d0e)
  • Support top-level await on Node 22.12+ (#2836) (04b4a74)

5.0.0 (2024-03-29)

We've tried to provide a high-level changelog for gulp v5 below, but it doesn't contain all changes from the 60+ dependencies that we maintain.

Please see individual changelogs to drill down into all changes that were made.

⚠ BREAKING CHANGES

  • Drop support for Node.js <10.13
  • Default stream encoding to UTF-8
  • Standardized on anymatch library for globbing paths. All globs should work the same between src and watch now!
  • Removed support for ordered globs. This aligns with the chokidar globbing implementation. If you need your globs to be ordered, you can use ordered-read-stream
  • All globs and paths are normalized to unix-like filepaths
  • Only allow JS variants for .gulp.* config files
  • Removed support for alpha releases of v4 from gulp-cli
  • Removed the --verify flag
  • Renamed the --require flag to --preload to avoid conflicting with Node.js flags
  • Removed many legacy and deprecated loaders
  • Upgrade to chokidar v3
  • Clone Vinyl objects with stream contents using teex, but no longer wait for all streams to flow before cloned streams will receive data
  • Stop using process.umask() to make directories, instead falling back to Node's default mode
  • Throw on non-function, non-string option coercers
  • Drop support of Node.js snake_case flags
  • Use a Symbol for attaching the gulplog namespace to the store
  • Use a Symbol for attaching the gulplog store to the global
  • Use sha256 to hash the v8flags cache into a filename

Features

  • Streamlined the dependency tree
  • Switch all streams implementation to Streamx
  • Rewrote glob-stream to use a custom directory walk that relies on newer Node.js features and is more performant than old implementation
  • Implement translation support for all CLI messages and all messages passing through gulplog
  • Allow users to customize or remove the timestamp from their logs
  • Upgraded gulplog to v2. Messages logged via v1 will also display a deprecated warning. Plugins should update to v2 as the community upgrades to gulp 5
  • Added support for gulpile.cjs and gulpfile.mjs
  • Add support for swc, esbuild, sucrase, and mdx loaders
  • Provide an ESM export (#2760) (b00de68)
  • Support sourcemap handling on streaming Vinyl contents

... (truncated)

Commits

Updates karma-coverage from 0.4.2 to 2.2.1

Release notes

Sourced from karma-coverage's releases.

v2.2.1

2.2.1 (2023-06-23)

Bug Fixes

  • exit code when reporter file is not provided (1388186)

v2.2.0

2.2.0 (2022-02-10)

Features

  • update Istanbul packages (24aac11)

v2.1.1

2.1.1 (2022-02-05)

Bug Fixes

v2.1.0

2.1.0 (2021-12-01)

Bug Fixes

  • deps: update main and dev dependencies (c20d982)

Features

  • reporter: log coverage threshold as a warning fixed #432 (a6c95d8)

v2.0.3

2.0.3 (2020-07-24)

Bug Fixes

  • report: waiting promise resolve in onExist method fix #418 (c93f061)

v2.0.2

2.0.2 (2020-04-13)

... (truncated)

Changelog

Sourced from karma-coverage's changelog.

2.2.1 (2023-06-23)

Bug Fixes

  • exit code when reporter file is not provided (1388186)

2.2.0 (2022-02-10)

Features

  • update Istanbul packages (24aac11)

2.1.1 (2022-02-05)

Bug Fixes

2.1.0 (2021-12-01)

Bug Fixes

  • deps: update main and dev dependencies (c20d982)

Features

  • reporter: log coverage threshold as a warning fixed #432 (a6c95d8)

2.0.3 (2020-07-24)

Bug Fixes

  • report: waiting promise resolve in onExist method fix #418 (c93f061)

2.0.2 (2020-04-13)

Bug Fixes

  • reporter: update calls to match new API in istanbul-lib-report fix #398 (#403) (4962a70)
  • remove information about old istanbul lib (#404) (5cf931a)

... (truncated)

Commits
  • 55eb8a8 chore(release): 2.2.1 [skip ci]
  • 1388186 fix: exit code when reporter file is not provided
  • 06fb9ad chore(release): 2.2.0 [skip ci]
  • 24aac11 feat: update Istanbul packages
  • 9e8492c chore(deps): bump follow-redirects from 1.14.5 to 1.14.7
  • 68daaa7 chore(deps): bump node-fetch from 2.6.6 to 2.6.7
  • 2675374 chore(release): 2.1.1 [skip ci]
  • bca2c69 fix: handle unexpected error when generating code coverage
  • 44b31eb fix: race condition between the Karma shutdown and coverage writing
  • 4adb3ef chore(deps): update indirect deps
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by karmarunnerbot, a new releaser for karma-coverage since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump minimatch, babel-eslint, gh-pages, gulp and karma-coverage
04b57ff 
Bumps [minimatch](https://github.com/isaacs/minimatch) to 3.1.2 and updates ancestor dependencies [minimatch](https://github.com/isaacs/minimatch), [babel-eslint](https://github.com/babel/babel-eslint), [gh-pages](https://github.com/tschaub/gh-pages), [gulp](https://github.com/gulpjs/gulp) and [karma-coverage](https://github.com/karma-runner/karma-coverage). These dependencies need to be updated together.


Updates `minimatch` from 3.0.4 to 3.1.2
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v3.0.4...v3.1.2)

Updates `babel-eslint` from 4.1.8 to 10.1.0
- [Release notes](https://github.com/babel/babel-eslint/releases)
- [Commits](babel/babel-eslint@v4.1.8...v10.1.0)

Updates `gh-pages` from 0.2.0 to 6.3.0
- [Release notes](https://github.com/tschaub/gh-pages/releases)
- [Changelog](https://github.com/tschaub/gh-pages/blob/main/changelog.md)
- [Commits](tschaub/gh-pages@v0.2.0...v6.3.0)

Updates `gulp` from 3.9.1 to 5.0.1
- [Release notes](https://github.com/gulpjs/gulp/releases)
- [Changelog](https://github.com/gulpjs/gulp/blob/master/CHANGELOG.md)
- [Commits](gulpjs/gulp@v3.9.1...v5.0.1)

Updates `karma-coverage` from 0.4.2 to 2.2.1
- [Release notes](https://github.com/karma-runner/karma-coverage/releases)
- [Changelog](https://github.com/karma-runner/karma-coverage/blob/master/CHANGELOG.md)
- [Commits](karma-runner/karma-coverage@v0.4.2...v2.2.1)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 3.1.2
  dependency-type: indirect
- dependency-name: babel-eslint
  dependency-version: 10.1.0
  dependency-type: direct:development
- dependency-name: gh-pages
  dependency-version: 6.3.0
  dependency-type: direct:development
- dependency-name: gulp
  dependency-version: 5.0.1
  dependency-type: direct:development
- dependency-name: karma-coverage
  dependency-version: 2.2.1
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 15, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant