Skip to content

chore(deps): update dependency np to v10 #543

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
renovate wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update dependency np to v10 #543

renovate wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Feb 26, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
np ^9.0.0^10.0.0 age confidence

Release Notes

sindresorhus/np (np)

v10.2.0

Compare Source

v10.1.0

Compare Source

v10.0.7

Compare Source

  • Allow publishConfig.registry to be npm default registry when using Yarn berry (#​750) 6c5eee3

v10.0.6

Compare Source

v10.0.5

Compare Source

v10.0.4

Compare Source

v10.0.3

Compare Source

v10.0.2

Compare Source

  • Use npm for tagging versions when pnpm is the chosen package manager (#​739) 770418f

v10.0.1

Compare Source

v10.0.0

Compare Source

Breaking
  • Remove the --yarn flag (#​730) 4b3b599
    • The functionality is replaced by --package-manager. See below.
Improvements
  • Add --package-manager flag (#​730) 4b3b599
    • This acts like the packageManager field in package.json. np will default to reading package.json, and look for lockfiles to determine the best package manager as a last resort.
  • Add pnpm support (#​730) 4b3b599

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/np-10.x branch from a92f537 to 65c4458 Compare January 21, 2025 18:41
@renovate renovate bot force-pushed the renovate/np-10.x branch 2 times, most recently from 791a63d to 962dff7 Compare July 13, 2025 08:57
@renovate renovate bot force-pushed the renovate/np-10.x branch from 962dff7 to 049cd64 Compare August 10, 2025 13:30
@renovate renovate bot force-pushed the renovate/np-10.x branch from 049cd64 to 73d4ecd Compare August 19, 2025 18:42
@renovate renovate bot force-pushed the renovate/np-10.x branch from 73d4ecd to 98508a5 Compare August 31, 2025 09:55
@renovate renovate bot force-pushed the renovate/np-10.x branch from 98508a5 to 504e4ba Compare September 25, 2025 14:35
@renovate renovate bot force-pushed the renovate/np-10.x branch from 504e4ba to 0ba62b5 Compare October 21, 2025 20:46
@renovate renovate bot force-pushed the renovate/np-10.x branch from 0ba62b5 to f9257ee Compare November 10, 2025 20:05
@renovate renovate bot force-pushed the renovate/np-10.x branch from f9257ee to 99d81fa Compare November 18, 2025 22:57
@renovate renovate bot force-pushed the renovate/np-10.x branch from 99d81fa to fa5e810 Compare December 31, 2025 13:38
@socket-security
Copy link

socket-security bot commented Dec 31, 2025

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatednp@​9.2.0 ⏵ 10.2.098 +1100100 +184100

View full report

@socket-security
Copy link

socket-security bot commented Dec 31, 2025

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn High
Obfuscated code: npm safer-buffer is 94.0% likely obfuscated

Confidence: 0.94

Location: Package overview

From: package-lock.jsonnpm/@wdio/[email protected]npm/[email protected]npm/[email protected]

ℹ Read more on: This package | This alert | What is obfuscated code?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at [email protected].

Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/[email protected]. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant