358ac3e9c4
Bump minimist from 1.2.5 to 1.2.6 ( #98 )
...
Bumps [minimist](https://github.com/substack/minimist ) from 1.2.5 to 1.2.6.
- [Release notes](https://github.com/substack/minimist/releases )
- [Commits](https://github.com/substack/minimist/compare/1.2.5...1.2.6 )
---
updated-dependencies:
- dependency-name: minimist
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-23 11:59:02 -07:00
d0ac5b8a01
Bump minimist from 1.2.5 to 1.2.6 in /src/__fixtures__/basic-yarn ( #99 )
...
Bumps [minimist](https://github.com/substack/minimist ) from 1.2.5 to 1.2.6.
- [Release notes](https://github.com/substack/minimist/releases )
- [Commits](https://github.com/substack/minimist/compare/1.2.5...1.2.6 )
---
updated-dependencies:
- dependency-name: minimist
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-23 11:58:43 -07:00
1dc03a5785
Bump ansi-regex from 4.1.0 to 4.1.1 ( #101 )
...
Bumps [ansi-regex](https://github.com/chalk/ansi-regex ) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/chalk/ansi-regex/releases )
- [Commits](https://github.com/chalk/ansi-regex/compare/v4.1.0...v4.1.1 )
---
updated-dependencies:
- dependency-name: ansi-regex
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-23 11:58:32 -07:00
f7acbc6ebc
Bump async from 2.6.3 to 2.6.4 in /src/__fixtures__/basic-yarn ( #104 )
...
Bumps [async](https://github.com/caolan/async ) from 2.6.3 to 2.6.4.
- [Release notes](https://github.com/caolan/async/releases )
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md )
- [Commits](https://github.com/caolan/async/compare/v2.6.3...v2.6.4 )
---
updated-dependencies:
- dependency-name: async
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-23 11:58:17 -07:00
2c3e171a49
Bump workspace-tools in /src/__fixtures__/basic-yarn ( #108 )
...
Bumps [workspace-tools](https://github.com/microsoft/workspace-tools ) from 0.14.1 to 0.18.4.
- [Release notes](https://github.com/microsoft/workspace-tools/releases )
- [Changelog](https://github.com/microsoft/workspace-tools/blob/master/CHANGELOG.md )
- [Commits](https://github.com/microsoft/workspace-tools/compare/workspace-tools_v0.14.1...workspace-tools_v0.18.4 )
---
updated-dependencies:
- dependency-name: workspace-tools
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-23 11:56:26 -07:00
7e1cb98ddd
Bump eventsource from 1.0.7 to 1.1.1 in /src/__fixtures__/basic-yarn ( #109 )
...
Bumps [eventsource](https://github.com/EventSource/eventsource ) from 1.0.7 to 1.1.1.
- [Release notes](https://github.com/EventSource/eventsource/releases )
- [Changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md )
- [Commits](https://github.com/EventSource/eventsource/compare/v1.0.7...v1.1.1 )
---
updated-dependencies:
- dependency-name: eventsource
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-23 11:55:58 -07:00
5b51031915
applying package updates
2022-06-23 18:52:05 +00:00
cf0a0d77be
Allow full spawnSync options for git methods ( #112 )
2022-06-23 11:51:08 -07:00
275e1fe2ff
applying package updates
2022-06-03 16:57:07 +00:00
81c4609bc4
Split Git output by line-endings instead NUL character ( #111 )
...
* properly split git status --short output
* Change files
2022-06-03 09:56:15 -07:00
7c540721b2
fixes script for publish docs
2022-05-05 13:13:31 -07:00
de4e4046bd
fixes lockfile
2022-05-05 13:13:14 -07:00
1fc1c64d0e
fixes gh-pages output
2022-05-05 13:12:55 -07:00
6b1d44da2d
fixes lockfile
2022-05-05 13:10:48 -07:00
7815e8e0c4
adding docs
2022-05-05 13:10:04 -07:00
d89592134c
applying package updates
2022-05-05 19:40:25 +00:00
8d3b9dd8a8
Changed packages between 2 refs ( #105 )
...
* changed packages between refs
* refactoring the getChangedPackages to allow for change between refs
* adding changed packages by file vs packages by file
* Change files
* adding a test for the between refs changed package detection
* exports one more
* get rid of it.only
* name tests correctly
* getting all workspace packages if none matched
2022-05-05 12:39:29 -07:00
48724042f4
applying package updates
2022-04-20 16:49:02 +00:00
9bc7e65ce4
Fix git fetch - addresses a potential security concern regarding git fetch ( #103 )
...
* fixes a potential security issue where fetch --upload-pack can allow for command injection
* Change files
2022-04-20 09:47:57 -07:00
24040a5bfa
applying package updates
2022-04-09 15:51:15 +00:00
b99f6f82a6
fix: `rush.json` is missed in repos using Rush + Yarn ( #100 )
...
* fix: Rush is not correctly detected in some setups
In certain repos, Rush is set up to be run in postinstall so people
can't avoid running the correct thing. This means that the repo is
littered with lock files from other package managers. `workspace-tools`
fails to detect Rush because it finds these lock files first.
* add/fix tests
* move gpg fix out of real code
2022-04-09 08:50:27 -07:00
e0a79ffe0a
Bump node-fetch from 2.6.1 to 2.6.7 in /src/__fixtures__/basic-yarn ( #96 )
...
Bumps [node-fetch](https://github.com/node-fetch/node-fetch ) from 2.6.1 to 2.6.7.
- [Release notes](https://github.com/node-fetch/node-fetch/releases )
- [Commits](https://github.com/node-fetch/node-fetch/compare/v2.6.1...v2.6.7 )
---
updated-dependencies:
- dependency-name: node-fetch
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-02 22:13:36 -08:00
3633c6f744
Bump shelljs from 0.8.4 to 0.8.5 in /src/__fixtures__/basic-yarn ( #87 )
...
Bumps [shelljs](https://github.com/shelljs/shelljs ) from 0.8.4 to 0.8.5.
- [Release notes](https://github.com/shelljs/shelljs/releases )
- [Changelog](https://github.com/shelljs/shelljs/blob/master/CHANGELOG.md )
- [Commits](https://github.com/shelljs/shelljs/compare/v0.8.4...v0.8.5 )
---
updated-dependencies:
- dependency-name: shelljs
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-02 22:13:07 -08:00
c9c1bdb828
Bump ajv from 6.12.2 to 6.12.6 ( #89 )
...
Bumps [ajv](https://github.com/ajv-validator/ajv ) from 6.12.2 to 6.12.6.
- [Release notes](https://github.com/ajv-validator/ajv/releases )
- [Commits](https://github.com/ajv-validator/ajv/compare/v6.12.2...v6.12.6 )
---
updated-dependencies:
- dependency-name: ajv
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-02 20:55:57 -08:00
1c38d84bfd
Bump ajv from 6.12.2 to 6.12.6 in /src/__fixtures__/basic-yarn ( #90 )
...
Bumps [ajv](https://github.com/ajv-validator/ajv ) from 6.12.2 to 6.12.6.
- [Release notes](https://github.com/ajv-validator/ajv/releases )
- [Commits](https://github.com/ajv-validator/ajv/compare/v6.12.2...v6.12.6 )
---
updated-dependencies:
- dependency-name: ajv
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-02 20:34:34 -08:00
2796151b45
Bump follow-redirects in /src/__fixtures__/basic-yarn ( #91 )
...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects ) from 1.11.0 to 1.14.8.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases )
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.11.0...v1.14.8 )
---
updated-dependencies:
- dependency-name: follow-redirects
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-02 20:34:15 -08:00
74da217fa6
Bump prismjs from 1.25.0 to 1.27.0 in /src/__fixtures__/basic-yarn ( #93 )
...
Bumps [prismjs](https://github.com/PrismJS/prism ) from 1.25.0 to 1.27.0.
- [Release notes](https://github.com/PrismJS/prism/releases )
- [Changelog](https://github.com/PrismJS/prism/blob/master/CHANGELOG.md )
- [Commits](https://github.com/PrismJS/prism/compare/v1.25.0...v1.27.0 )
---
updated-dependencies:
- dependency-name: prismjs
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-02 20:34:06 -08:00
c512d0605e
Bump url-parse from 1.5.3 to 1.5.10 in /src/__fixtures__/basic-yarn ( #94 )
...
Bumps [url-parse](https://github.com/unshiftio/url-parse ) from 1.5.3 to 1.5.10.
- [Release notes](https://github.com/unshiftio/url-parse/releases )
- [Commits](https://github.com/unshiftio/url-parse/compare/1.5.3...1.5.10 )
---
updated-dependencies:
- dependency-name: url-parse
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-02 20:33:57 -08:00
b7fff70ae4
applying package updates
2022-01-07 18:15:36 +00:00
caf984c0c5
Makes the output of parseLockFile for npm v7+ lock file compatible with queryLockFile ( #85 )
...
* Makes parseLockFile and queryLockFile compatible
* Adds annotation
* Amends .gitignore
* Change files
* Adds a change message
Co-authored-by: Ria Carmin <riacarmin@microsoft.com>
2022-01-07 10:14:46 -08:00
db441af92c
applying package updates
2022-01-07 17:07:22 +00:00
253384a2c9
Bump TS to 4.5! ( #86 )
...
* bump ts to 4.5 and fixed typing issues with caught errors as unknown
* Change files
2022-01-07 09:06:32 -08:00
c547e6a008
applying package updates
2022-01-07 00:04:32 +00:00
6105a8eb81
Speed up workspace-tools! ( #84 )
...
* speed up workspace-tools - reducing weight and adding caches - lazy load pkg mgr helpers
* Change files
* fixed incompatibility
* fixed up the incompatibility
2022-01-06 16:03:40 -08:00
7363d49534
applying package updates
2021-12-02 17:11:12 +00:00
0d9b3bd5c0
Adds npm 7 package-lock.json parser ( #82 )
...
* Adds npm 7 package-lock.json parcer
* Adds a check for unsupported package-lock version
* Updates error message
* Adds tests for parseLockFile with npm 7 workspaces
* Updates README with npm workspaces
* Style cleanup
* Changes the error message language
* Rewrites types in a different style
* Change files
* Adds changelog file.
Co-authored-by: Ria Carmin <riacarmin@microsoft.com>
2021-12-02 09:10:14 -08:00
1c825bab65
Bump tmpl from 1.0.4 to 1.0.5 ( #73 )
...
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl ) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/daaku/nodejs-tmpl/releases )
- [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5 )
---
updated-dependencies:
- dependency-name: tmpl
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 13:07:15 -07:00
53ea210571
Bump ws from 7.3.0 to 7.5.5 ( #80 )
...
Bumps [ws](https://github.com/websockets/ws ) from 7.3.0 to 7.5.5.
- [Release notes](https://github.com/websockets/ws/releases )
- [Commits](https://github.com/websockets/ws/compare/7.3.0...7.5.5 )
---
updated-dependencies:
- dependency-name: ws
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 13:07:09 -07:00
577a010649
Bump path-parse from 1.0.6 to 1.0.7 ( #69 )
...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse ) from 1.0.6 to 1.0.7.
- [Release notes](https://github.com/jbgutierrez/path-parse/releases )
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7 )
---
updated-dependencies:
- dependency-name: path-parse
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 13:06:44 -07:00
17a30a5c73
Bump hosted-git-info from 2.8.8 to 2.8.9 ( #54 )
...
Bumps [hosted-git-info](https://github.com/npm/hosted-git-info ) from 2.8.8 to 2.8.9.
- [Release notes](https://github.com/npm/hosted-git-info/releases )
- [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md )
- [Commits](https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 13:05:46 -07:00
a9d7f04e9e
Bump glob-parent from 5.1.1 to 5.1.2 ( #65 )
...
Bumps [glob-parent](https://github.com/gulpjs/glob-parent ) from 5.1.1 to 5.1.2.
- [Release notes](https://github.com/gulpjs/glob-parent/releases )
- [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md )
- [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2 )
---
updated-dependencies:
- dependency-name: glob-parent
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 13:05:31 -07:00
48c520d56f
Bump y18n from 4.0.0 to 4.0.3 ( #50 )
...
Bumps [y18n](https://github.com/yargs/y18n ) from 4.0.0 to 4.0.3.
- [Release notes](https://github.com/yargs/y18n/releases )
- [Changelog](https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md )
- [Commits](https://github.com/yargs/y18n/compare/v4.0.0...y18n-v4.0.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 13:03:33 -07:00
8490038ada
Bump lodash from 4.17.19 to 4.17.21 ( #53 )
...
Bumps [lodash](https://github.com/lodash/lodash ) from 4.17.19 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases )
- [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 13:02:54 -07:00
0774311b84
applying package updates
2021-10-21 20:01:33 +00:00
1aca866df2
Update beachball and add ignorePatterns ( #81 )
...
* Update beachball and add ignorePatterns
* Change files
2021-10-21 13:00:48 -07:00
446d9df662
Bump color-string from 1.5.3 to 1.6.0 in /src/__fixtures__/basic-yarn ( #77 )
...
Bumps [color-string](https://github.com/Qix-/color-string ) from 1.5.3 to 1.6.0.
- [Release notes](https://github.com/Qix-/color-string/releases )
- [Changelog](https://github.com/Qix-/color-string/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Qix-/color-string/commits/1.6.0 )
---
updated-dependencies:
- dependency-name: color-string
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 12:52:08 -07:00
97e1b843c9
Bump url-parse from 1.4.7 to 1.5.3 in /src/__fixtures__/basic-yarn ( #74 )
...
Bumps [url-parse](https://github.com/unshiftio/url-parse ) from 1.4.7 to 1.5.3.
- [Release notes](https://github.com/unshiftio/url-parse/releases )
- [Commits](https://github.com/unshiftio/url-parse/compare/1.4.7...1.5.3 )
---
updated-dependencies:
- dependency-name: url-parse
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 12:43:02 -07:00
53ab8f199e
Bump ws from 6.2.1 to 6.2.2 in /src/__fixtures__/basic-yarn ( #64 )
...
Bumps [ws](https://github.com/websockets/ws ) from 6.2.1 to 6.2.2.
- [Release notes](https://github.com/websockets/ws/releases )
- [Commits](https://github.com/websockets/ws/commits )
---
updated-dependencies:
- dependency-name: ws
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 12:42:32 -07:00
dd18475eb2
Bump lodash from 4.17.15 to 4.17.21 in /src/__fixtures__/basic-yarn ( #56 )
...
Bumps [lodash](https://github.com/lodash/lodash ) from 4.17.15 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases )
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.21 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 12:42:21 -07:00
15acfa6373
Bump postcss from 7.0.30 to 7.0.39 in /src/__fixtures__/basic-yarn ( #79 )
...
Bumps [postcss](https://github.com/postcss/postcss ) from 7.0.30 to 7.0.39.
- [Release notes](https://github.com/postcss/postcss/releases )
- [Changelog](https://github.com/postcss/postcss/blob/7.0.39/CHANGELOG.md )
- [Commits](https://github.com/postcss/postcss/compare/7.0.30...7.0.39 )
---
updated-dependencies:
- dependency-name: postcss
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-10-21 12:42:04 -07:00
dependabot[bot]
Ken Chau
Elizabeth Craig
Nicky Kalu
Kenneth Chau
Tommy Nguyen
Ria Nicole Carmin