Skip to content

Bump patch-package from 6.4.7 to 8.0.1 #14110

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump patch-package from 6.4.7 to 8.0.1 #14110

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 30, 2025
edited
Loading

Bumps patch-package from 6.4.7 to 8.0.1.

Release notes

Sourced from patch-package's releases.

v8.0.0

  • Add support for multiple patch files for a single package. (@​ds300) #474

Breaking

I removed some really old legacy filename handling stuff so it's technically a breaking change.

v7.0.0

7.0.0

Breaking changes

  • Bump yaml to fix security issue. Required bumping minimum node version from 8 to 14. (contribution from @​mayank99 in #463)

Other changes

v6.5.1

Special thanks to @​orta again for putting this release together.

ds300/patch-package@v6.5.0...v6.5.1

v6.5.0

  • fix runIntegrationTest 120d85d
  • update README 6b2ec57
  • Merge pull request #345 from mvargeson/mvargeson/issue-314/error-on-warn 86ed9f6
  • Merge pull request #422 from Serjobas/patch-1 fe6138b
  • Update LICENSE 4afe391
  • Update outdated LICENSE year 9e30dc4
  • Merge pull request #301 from bill2004158/bill2004158-fix-new-line-for-windows 9ab4e66
  • Merge pull request #359 from MHekert/tests/getPackageVersion 745757d
  • Merge pull request #331 from orta/no_dt 639b9c8
  • Merge pull request #402 from jimmyltsinn/master 1486859
  • Merge pull request #390 from milahu/patch-2 63bc500
  • Update README.md 6fc78ff
  • Merge pull request #395 from tye-singwa/fix/git-diff-prefixes e16546c
  • Merge pull request #363 from maman/feature/add-yarn-berry-compatibility bb628da
  • Merge pull request #412 from tapanprakasht/master 7c87e05
  • Apply suggestions from code review b80d96a
  • Merge pull request #389 from stianjensen/bump-chalk 896827d

... (truncated)

Changelog

Sourced from patch-package's changelog.

8.0.1

  • Update tmp to fix security alert. #578

8.0.0

  • Add support for multiple patch files for a single package. #474

Breaking Changes

  • Removed support for some very old legacy filename format stuff (pre-2019).

7.0.2

7.0.1

Breaking changes

  • Bump yaml to fix security issue. Required bumping minimum node version from 8 to 14. (contribution from @​mayank99 in #463)

Other changes

6.5.1

Special thanks to @​orta again for putting this release together.

6.5.0

Special thanks to @​orta for stepping in to get this release out.

  • Don't show issue creation tips for DefinitelyTyped (contribution from @​orta in #331)

... (truncated)

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
Bump patch-package from 6.4.7 to 8.0.1
a3120aa 
Bumps [patch-package](https://github.com/ds300/patch-package) from 6.4.7 to 8.0.1.
- [Release notes](https://github.com/ds300/patch-package/releases)
- [Changelog](https://github.com/ds300/patch-package/blob/master/CHANGELOG.md)
- [Commits](https://github.com/ds300/patch-package/commits)

---
updated-dependencies:
- dependency-name: patch-package
  dependency-version: 8.0.1
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Sep 30, 2025
@shopify-shipitnext
Copy link

shopify-shipitnext bot commented Dec 2, 2025

🔎 View this PR in Shipit Next.

ℹ️ Expand to learn how to deploy and handle emergencies using Shipit Next

Overview

Shipit Next will merge your code on your behalf because this repository uses Shipit Next and its merge queue.

To ship this PR, you can either:

Comment Commands

  • /shipit: Enqueue this PR into the merge queue where it will eventually be merged and deployed.
  • /cancel: Eject this PR from the merge queue and rebuild PRs that were enqueued after this PR.
  • /shipit --jump-queue: Enqueue this PR at the top of the merge queue where it will be included in the next deploy. Use this for non-emergency situations.
    - Emergency handling procedure for this command can be found here.
  • /shipit --emergency: Merge this PR directly into main and deploy to all environments once all require_for_emergency CI checks pass. Please be aware that changes deployed with this command will not be automatically rolled back.

Commands exclusive to Deploy Before Merge

  • /cancel --emergency: Eject this PR from the merge and rollback any deployments containing this PR.

Documentation

Questions or feedback?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants