Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump tough-cookie and cordova-lib #148

Closed
wants to merge 1 commit into from
Closed

Bump tough-cookie and cordova-lib #148

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 8, 2023

Removes tough-cookie. It's no longer used after updating ancestor dependency cordova-lib. These dependencies need to be updated together.

Removes tough-cookie

Updates cordova-lib from 11.1.0 to 12.0.1

Changelog

Sourced from cordova-lib's changelog.

12.0.1 (May 19, 2023)

  • GH-918 fix: platform add with tarball & directory

12.0.0 (May 13, 2023)

Features:

  • GH-917 feat!(run): call platform api to list targets
  • GH-894 feat!: remove platform pinning
  • GH-896 feat!: remove OSX & Windows platform

Dependencies:

  • GH-915 dep!: bump @cordova/eslint-config@latest@5.0.0 w/ automatic fix
  • GH-914 dep!: packages upgrade & requirements
    • Bumped Packages
      • cordova-common@5.0.0
      • cordova-fetch@4.0.0
      • cordova-serve@4.0.1
      • init-package-json@5.0.0
      • jasmine@4.6.0
      • semver@7.5.0
    • Rebuilt package-lock.json
    • Bumped node engine requirement >=16.13.0
  • GH-910 dep(npm): bump all dependencies to next major
    • fs-extra@^11.1.0
    • write-file-atomic@^5.0.0
    • cordova-android@^11.0.0
    • jasmine@^4.5.0
    • jasmine-spec-reporter@^7.0.0
    • rewire@^6.0.0
    • init-package-json@^4.0.1

Others:

  • GH-916 fix(node-18): hook tests
  • GH-905 ci(workflow): update codecov action usage
  • GH-903 ci(workflow): update node support & action dependencies
  • GH-911 test: temporary disable broken spec#012
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump tough-cookie and cordova-lib
61d0992 
Removes [tough-cookie](https://github.com/salesforce/tough-cookie). It's no longer used after updating ancestor dependency [cordova-lib](https://github.com/apache/cordova-lib). These dependencies need to be updated together.


Removes `tough-cookie`

Updates `cordova-lib` from 11.1.0 to 12.0.1
- [Changelog](https://github.com/apache/cordova-lib/blob/master/RELEASENOTES.md)
- [Commits](apache/cordova-lib@11.1.0...12.0.1)

---
updated-dependencies:
- dependency-name: tough-cookie
  dependency-type: indirect
- dependency-name: cordova-lib
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jul 8, 2023
@socket-security
Copy link

Updated dependencies detected. Learn more about Socket for GitHub ↗︎

Packages Version New capabilities Transitives Size Publisher
cordova-lib 11.1.0...12.0.1 None +106/-112 6.89 MB erisu

@dpogue dpogue closed this Jul 8, 2023
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 8, 2023

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dpogue dpogue deleted the dependabot/npm_and_yarn/tough-cookie-and-cordova-lib--removed branch July 8, 2023 17:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@dpogue