deps: upgrade npm to 9.6.6 #47862

npm-cli-bot · 2023-05-04T16:22:26Z

This PR contains changes from: npm@9.6.5 npm@9.6.6

9.6.5

9.6.5 (2023-04-19)

Bug Fixes

33dc428 #6374 account for npx package-name with no spec (@wraithgar)
82879f6 #6225 lazy loading of arborist and pacote (#6225) (@wraithgar)
f4e73ab #6322 remove incompatible params from ci (#6322) (@wraithgar)
c7fe1c7 #6328 save raw data to file, not parsed data (@wraithgar)

Documentation

31214a6 #6381 Update description for publish --provenance flag (#6381) (@feelepxyz)
997bcdf #6329 fix npm cache folder location for windows (#6329) (@charlie-wong)

Dependencies

fae5e00 #6372 sigstore@1.3.0 (#6372)
3fa9542 #6363 semver@7.5.0
e49844e #6363 minipass-fetch@3.0.2
357cc29 #6363 walk-up-path@3.0.1
2c80b1e #6363 ini@4.1.0
5933841 #6363 minipass@4.2.8
b39d54e #6363 minimatch@7.4.6
201aa5a #6363 ssri@10.0.3
acb9120 #6363 read@2.1.0
2472205 #6363 npm-registry-fetch@14.0.4
2780714 #6363 npm-install-checks@6.1.1
b5af015 #6363 make-fetch-happen@11.1.0
14c498d #6363 @npmcli/metavuln-calculator@5.0.1
Workspace: @npmcli/arborist@6.2.8
Workspace: @npmcli/config@6.1.6
Workspace: libnpmdiff@5.0.16
Workspace: libnpmexec@5.0.16
Workspace: libnpmfund@4.0.16
Workspace: libnpmpack@5.0.16

9.6.6

9.6.6 (2023-05-03)

Dependencies

70e65b1 #6423 tuf-js@1.1.5 (#6423)
72291f7 #6416 read-package-json@6.0.3
e498f82 #6416 minimatch@9.0.0
13aa7b7 #6416 minipass@5.0.0
f2a5678 #6416 tar@6.1.14
69d4dd2 #6416 npm update
abdca39 #6416 sigstore@1.4.0
16f68fb #6416 glob@10.2.2
67fcfb1 #6416 ignore-walk@6.0.3
bfa2ff3 #6416 make-fetch-happen@11.1.1
877591a #6416 npm-registry-fetch@14.0.5
7630517 #6416 pacote@15.1.3
c2d6e0a #6416 write-file-atomic@5.0.1
acdf97e #6416 which@3.0.1
00c541a #6416 ssri@10.0.4
1b95e73 #6416 read-package-json@6.0.2
6927fd3 #6416 fs-minipass@3.0.2
3eec56e #6416 cacache@17.1.0
7a2ce3f #6416 @npmcli/run-script@6.0.1
3881770 #6416 @npmcli/map-workspaces@3.0.4
Workspace: @npmcli/arborist@6.2.9
Workspace: libnpmdiff@5.0.17
Workspace: libnpmexec@5.0.17
Workspace: libnpmfund@4.0.17
Workspace: libnpmorg@5.0.4
Workspace: libnpmpack@5.0.17
Workspace: libnpmpublish@7.1.4

github-actions · 2023-05-04T16:22:56Z

Fast-track has been requested by @nodejs-github-bot. Please 👍 to approve.

nodejs-github-bot · 2023-05-04T16:47:58Z

CI: https://ci.nodejs.org/job/node-test-pull-request/51630/

tniessen

Adding 13,000 lines in a semver-patch update... 😆

wraithgar · 2023-05-04T18:18:57Z

Adding 13,000 lines in a semver-patch update... 😆

This is a valid concern and I'd like to address it.

There are some big shuffles going on in a lot of the modules that isaacs maintains. Semver-major bumps in most of them to change the export signature to make supporting types easier. This led to some necessary new duplication in the tree as not EVERY subdependency got onto the newest version.

The decision to live w/ the duplication instead of holding off on updating subdependencies was made, as the longer we go w/o updating the harder the update tends to become.

nodejs-github-bot · 2023-05-07T10:37:36Z

Landed in b7c82a3

PR-URL: #47862 Reviewed-By: Debadree Chatterjee <debadree333@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luke Karrys <luke@lukekarrys.com>

PR-URL: nodejs#47862 Reviewed-By: Debadree Chatterjee <debadree333@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luke Karrys <luke@lukekarrys.com>

deps: upgrade npm to 9.6.6

2ecf9ae

nodejs-github-bot added fast-track PRs that do not need to wait for 48 hours to land. needs-ci PRs that need a full CI run. npm Issues and PRs related to the npm client dependency or the npm registry. labels May 4, 2023

debadree25 added the request-ci Add this label to start a Jenkins CI on a PR. label May 4, 2023

debadree25 approved these changes May 4, 2023

View reviewed changes

github-actions bot removed the request-ci Add this label to start a Jenkins CI on a PR. label May 4, 2023

lpinca approved these changes May 4, 2023

View reviewed changes

tniessen approved these changes May 4, 2023

View reviewed changes

lukekarrys approved these changes May 4, 2023

View reviewed changes

tniessen added commit-queue Add this label to land a pull request using GitHub Actions. and removed fast-track PRs that do not need to wait for 48 hours to land. labels May 7, 2023

nodejs-github-bot removed the commit-queue Add this label to land a pull request using GitHub Actions. label May 7, 2023

nodejs-github-bot merged commit b7c82a3 into nodejs:main May 7, 2023

targos added the lts-watch-v18.x PRs that may need to be released in v18.x. label May 15, 2023

targos mentioned this pull request May 15, 2023

v20.2.0 release proposal #48020

Merged

danielleadams mentioned this pull request Jul 10, 2023

v18.17.0 release proposal #48694

Merged

mcollina mentioned this pull request Sep 12, 2023

Downgrade to npm v9.6.4 or v9.6.5 to avoid potential licensing issues #49625

Open

targos added backported-to-v18.x PRs backported to the v18.x-staging branch. and removed lts-watch-v18.x PRs that may need to be released in v18.x. labels Oct 27, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps: upgrade npm to 9.6.6 #47862

deps: upgrade npm to 9.6.6 #47862

npm-cli-bot commented May 4, 2023

github-actions bot commented May 4, 2023

nodejs-github-bot commented May 4, 2023

tniessen left a comment

wraithgar commented May 4, 2023

nodejs-github-bot commented May 7, 2023

deps: upgrade npm to 9.6.6 #47862

deps: upgrade npm to 9.6.6 #47862

Conversation

npm-cli-bot commented May 4, 2023

9.6.5 (2023-04-19)

Bug Fixes

Documentation

Dependencies

9.6.6 (2023-05-03)

Dependencies

github-actions bot commented May 4, 2023

nodejs-github-bot commented May 4, 2023

tniessen left a comment

Choose a reason for hiding this comment

wraithgar commented May 4, 2023

nodejs-github-bot commented May 7, 2023