Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings
This repository was archived by the owner on Mar 6, 2024. It is now read-only.

Bump minimatch from 9.0.1 to 9.0.3 #358

Open
dependabot wants to merge 1 commit into main
base: main
Choose a base branch
Loading
from dependabot/npm_and_yarn/minimatch-9.0.3

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 14, 2023
edited by github-actions bot
Loading

Bumps minimatch from 9.0.1 to 9.0.3.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
### Summary by OpenAI 
**Chore:**
- Updated the `minimatch` package from version 9.0.1 to 9.0.3.
This update ensures that our application stays up-to-date with the latest bug fixes and improvements in the `minimatch` package.

In the realm of code, where logic is king,
An update arrives, a simple, small thing.
minimatch ascends, from 9.0.1 to .3,
For better performance, as smooth as the sea. 🌊🚀

 

Bumps [minimatch](https://github.com/isaacs/minimatch) from 9.0.1 to 9.0.3.
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.1...v9.0.3)
---
updated-dependencies:
- dependency-name: minimatch
 dependency-type: direct:production
 update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 14, 2023
Copy link
Contributor

🤖 OpenAI

The pull request primarily updates the minimatch package from version 9.0.1 to 9.0.3. This change in dependency version could potentially alter the behavior or functionality of the codebase, hence it warrants a review.

Files Summary
package-lock.json, package.json The minimatch package has been updated from version 9.0.1 to 9.0.3. This change may introduce modifications to the behavior or functionality of the code and should be reviewed.

Chat with 🤖 OpenAI Bot (@openai)

  • Reply on review comments left by this bot to ask follow-up questions. A review comment is a comment on a diff or a file.
  • Invite the bot into a review comment chain by tagging @openai in a reply.

Code suggestions

  • The bot may make code suggestions, but please review them carefully before committing since the line number ranges may be misaligned.
  • You can edit the comment made by the bot and manually tweak the suggestion if it is slightly off.

Ignoring further reviews

  • Type @openai: ignore anywhere in the PR description to ignore further reviews from the bot.

In the recent run, only the files that changed from the base of the PR and between bc5ee5a3faa74dcf049453ebf61454c669bc0e4a and 1b50fc551ccfe4b7e097c45c049f27e0983483be commits were reviewed.

"@octokit/plugin-retry": "^4.1.3",
"@octokit/plugin-throttling": "^6.1.0",
"minimatch": "^9.0.1",
"minimatch": "^9.0.3",
Copy link
Contributor

@github-actions github-actions bot Jul 14, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🤖 OpenAI

The version of minimatch has been updated from ^9.0.1 to ^9.0.3. This is a minor version update, and as per semantic versioning, it should not introduce any breaking changes. However, it's important to ensure that the new version doesn't have any unexpected side effects on your application. Consider running your test suite and doing some manual testing if necessary.

Comment on lines +8482 to +8484
"version": "9.0.3",
"resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.3.tgz",
"integrity": "sha512-RHiac9mvaRw0x3AYRgDC1CxAP7HTcNrrECeA8YYJeWnpo+2Q5CegtZjaotWTWxDG3UeGA1coE05iH1mPjT/2mg==",
Copy link
Contributor

@github-actions github-actions bot Jul 14, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🤖 OpenAI

The version, resolved URL, and integrity hash for minimatch in the node_modules section have been updated. This change is consistent with the update in the dependencies section. As mentioned before, please ensure to run your tests to verify that this update does not break anything in your application.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@github-actions github-actions[bot] github-actions[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

AltStyle によって変換されたページ (->オリジナル) /