From e9a06ad749352a6a28927f43e8bd91df1cc0b6e1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 9 Apr 2025 07:30:20 -0700
Subject: [PATCH 1/8] chore: bump @npmcli/template-oss from 4.23.3 to 4.24.3
(#284)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.23.3 to 4.24.3.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.24.3
4.24.3
(2025-03-31)
Bug Fixes
v4.24.2
4.24.2
(2025-03-05)
Bug Fixes
v4.24.1
4.24.1
(2025-02-04)
Bug Fixes
v4.24.0
4.24.0
(2025-01-30)
Features
Dependencies
v4.23.6
4.23.6
(2024-12-11)
Bug Fixes
v4.23.5
4.23.5
(2024-11-25)
Bug Fixes
Dependencies
Chores
v4.23.4
4.23.4
(2024-10-02)
Dependencies
... (truncated)
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.24.3
(2025-03-31)
Bug Fixes
4.24.2
(2025-03-05)
Bug Fixes
4.24.1
(2025-02-04)
Bug Fixes
4.24.0
(2025-01-30)
Features
Dependencies
4.23.6
(2024-12-11)
Bug Fixes
4.23.5
(2024-11-25)
Bug Fixes
Dependencies
Chores
4.23.4
(2024-10-02)
Dependencies
Chores
Commits
Most Recent Ignore Conditions Applied to This Pull
Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| @npmcli/template-oss | [< 4.24, > 4.23.3] |
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
.gitignore | 1 +
package.json | 4 ++--
release-please-config.json | 2 +-
3 files changed, 4 insertions(+), 3 deletions(-)
diff --git a/.gitignore b/.gitignore
index 2bab6d1..dedbc77 100644
--- a/.gitignore
+++ b/.gitignore
@@ -5,6 +5,7 @@
!**/.gitignore
!/.commitlintrc.js
+!/.eslint.config.js
!/.eslintrc.js
!/.eslintrc.local.*
!/.git-blame-ignore-revs
diff --git a/package.json b/package.json
index 6a3995f..3943ff7 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
},
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.23.3",
+ "@npmcli/template-oss": "4.24.3",
"tap": "^16.0.1"
},
"license": "ISC",
@@ -33,7 +33,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.23.3",
+ "version": "4.24.3",
"publish": "true"
},
"tap": {
diff --git a/release-please-config.json b/release-please-config.json
index a1676b9..c56fd1d 100644
--- a/release-please-config.json
+++ b/release-please-config.json
@@ -33,5 +33,5 @@
"package-name": ""
}
},
- "prerelease-type": "pre"
+ "prerelease-type": "pre.0"
}
From 0ce45451c2e7943ef0b8814b1e65d70da2851a8f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 26 Jun 2025 11:38:22 -0700
Subject: [PATCH 2/8] chore: bump @npmcli/template-oss from 4.24.3 to 4.24.4
(#285)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.24.3 to 4.24.4.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.24.4
4.24.4
(2025-06-25)
Bug Fixes
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.24.4
(2025-06-25)
Bug Fixes
Commits
Most Recent Ignore Conditions Applied to This Pull
Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| @npmcli/template-oss | [< 4.24, > 4.23.3] |
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Michael Smith
---
.github/workflows/audit.yml | 3 +++
.github/workflows/ci-release.yml | 4 ++++
.github/workflows/ci.yml | 3 +++
.github/workflows/codeql-analysis.yml | 3 +++
.github/workflows/post-dependabot.yml | 2 +-
.github/workflows/pull-request.yml | 3 +++
.github/workflows/release-integration.yml | 4 ++++
.github/workflows/release.yml | 1 +
package.json | 4 ++--
9 files changed, 24 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
index a3ae725..85282bd 100644
--- a/.github/workflows/audit.yml
+++ b/.github/workflows/audit.yml
@@ -8,6 +8,9 @@ on:
# "At 08:00 UTC (01:00 PT) on Monday" https://crontab.guru/#0_8_*_*_1
- cron: "0 8 * * 1"
+permissions:
+ contents: read
+
jobs:
audit:
name: Audit Dependencies
diff --git a/.github/workflows/ci-release.yml b/.github/workflows/ci-release.yml
index 673f9ca..d9fcb92 100644
--- a/.github/workflows/ci-release.yml
+++ b/.github/workflows/ci-release.yml
@@ -18,6 +18,10 @@ on:
required: true
type: string
+permissions:
+ contents: read
+ checks: write
+
jobs:
lint-all:
name: Lint All
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index a44b227..b991984 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -12,6 +12,9 @@ on:
# "At 09:00 UTC (02:00 PT) on Monday" https://crontab.guru/#0_9_*_*_1
- cron: "0 9 * * 1"
+permissions:
+ contents: read
+
jobs:
lint:
name: Lint
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 15c8efe..af848e1 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -13,6 +13,9 @@ on:
# "At 10:00 UTC (03:00 PT) on Monday" https://crontab.guru/#0_10_*_*_1
- cron: "0 10 * * 1"
+permissions:
+ contents: read
+
jobs:
analyze:
name: Analyze
diff --git a/.github/workflows/post-dependabot.yml b/.github/workflows/post-dependabot.yml
index 1ea8693..3a91911 100644
--- a/.github/workflows/post-dependabot.yml
+++ b/.github/workflows/post-dependabot.yml
@@ -54,7 +54,7 @@ jobs:
else
# strip leading slash from directory so it works as a
# a path to the workspace flag
- echo "workspace=-w ${dependabot_dir#/}" >> $GITHUB_OUTPUT
+ echo "workspace=--workspace ${dependabot_dir#/}" >> $GITHUB_OUTPUT
fi
- name: Apply Changes
diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml
index 7dbdfd4..c69932d 100644
--- a/.github/workflows/pull-request.yml
+++ b/.github/workflows/pull-request.yml
@@ -10,6 +10,9 @@ on:
- edited
- synchronize
+permissions:
+ contents: read
+
jobs:
commitlint:
name: Lint Commits
diff --git a/.github/workflows/release-integration.yml b/.github/workflows/release-integration.yml
index 130578e..9ca9a2b 100644
--- a/.github/workflows/release-integration.yml
+++ b/.github/workflows/release-integration.yml
@@ -19,6 +19,10 @@ on:
PUBLISH_TOKEN:
required: true
+permissions:
+ contents: read
+ id-token: write
+
jobs:
publish:
name: Publish
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 75acebb..53ff3c2 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -244,6 +244,7 @@ jobs:
if: needs.release.outputs.releases
uses: ./.github/workflows/release-integration.yml
permissions:
+ contents: read
id-token: write
secrets:
PUBLISH_TOKEN: ${{ secrets.PUBLISH_TOKEN }}
diff --git a/package.json b/package.json
index 3943ff7..4f5aea3 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
},
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.24.3",
+ "@npmcli/template-oss": "4.24.4",
"tap": "^16.0.1"
},
"license": "ISC",
@@ -33,7 +33,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.24.3",
+ "version": "4.24.4",
"publish": "true"
},
"tap": {
From d7ce90102dc6d382f12bf0a252202a88032fb7d8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 9 Jul 2025 08:06:56 -0700
Subject: [PATCH 3/8] chore: bump @npmcli/template-oss from 4.24.4 to 4.25.0
(#286)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.24.4 to 4.25.0.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.25.0
4.25.0
(2025-07-08)
Features
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.25.0
(2025-07-08)
Features
Commits
Most Recent Ignore Conditions Applied to This Pull
Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| @npmcli/template-oss | [< 4.24, > 4.23.3] |
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Michael Smith
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index 4f5aea3..cae858b 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
},
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.24.4",
+ "@npmcli/template-oss": "4.25.0",
"tap": "^16.0.1"
},
"license": "ISC",
@@ -33,7 +33,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.24.4",
+ "version": "4.25.0",
"publish": "true"
},
"tap": {
From fc66a25825c194bd7006c3dbe84445803affbbae Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 19 Sep 2025 08:52:03 -0700
Subject: [PATCH 4/8] chore: bump @npmcli/template-oss from 4.25.0 to 4.25.1
(#287)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.25.0 to 4.25.1.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.25.1
4.25.1
(2025-09-18)
Bug Fixes
Dependencies
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.25.1
(2025-09-18)
Bug Fixes
Dependencies
Commits
Maintainer changes
This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub
Actions), a new releaser for @npmcli/template-oss since
your current version.
Most Recent Ignore Conditions Applied to This Pull
Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| @npmcli/template-oss | [< 4.24, > 4.23.3] |
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Michael Smith
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index cae858b..33975c7 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
},
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.25.0",
+ "@npmcli/template-oss": "4.25.1",
"tap": "^16.0.1"
},
"license": "ISC",
@@ -33,7 +33,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.25.0",
+ "version": "4.25.1",
"publish": "true"
},
"tap": {
From 32369389af4dd98ad2fe265279f942d87e1d64f6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Oct 2025 14:28:24 -0700
Subject: [PATCH 5/8] chore: bump @npmcli/template-oss from 4.25.1 to 4.26.0
(#288)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.25.1 to 4.26.0.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.26.0
4.26.0
(2025-10-16)
Features
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.26.0
(2025-10-16)
Features
Commits
Most Recent Ignore Conditions Applied to This Pull
Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| @npmcli/template-oss | [< 4.24, > 4.23.3] |
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index 33975c7..5455aae 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
},
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.25.1",
+ "@npmcli/template-oss": "4.26.0",
"tap": "^16.0.1"
},
"license": "ISC",
@@ -33,7 +33,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.25.1",
+ "version": "4.26.0",
"publish": "true"
},
"tap": {
From 23a36a9ca194d97486ed367f63d13a2cde1d1ce5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 21 Oct 2025 15:34:37 -0700
Subject: [PATCH 6/8] chore: bump @npmcli/template-oss from 4.26.0 to 4.27.1
(#290)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.26.0 to 4.27.1.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.27.1
4.27.1
(2025-10-20)
Bug Fixes
v4.27.0
4.27.0
(2025-10-20)
Features
v4.26.1
4.26.1
(2025-10-20)
Bug Fixes
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.27.1
(2025-10-20)
Bug Fixes
4.27.0
(2025-10-20)
Features
4.26.1
(2025-10-20)
Bug Fixes
Commits
Most Recent Ignore Conditions Applied to This Pull
Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| @npmcli/template-oss | [< 4.24, > 4.23.3] |
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index 5455aae..585a646 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
},
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.26.0",
+ "@npmcli/template-oss": "4.27.1",
"tap": "^16.0.1"
},
"license": "ISC",
@@ -33,7 +33,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.26.0",
+ "version": "4.27.1",
"publish": "true"
},
"tap": {
From 6d395a4aaf7d7a5e32e250809cb7bd04c6a27b66 Mon Sep 17 00:00:00 2001
From: Michael Smith
Date: Wed, 22 Oct 2025 08:11:26 -0700
Subject: [PATCH 7/8] fix!: align to npm 11 node engine range (#291)
BREAKING CHANGE: `ini` now supports node `^20.17.0 || >=22.9.0`
---
.github/workflows/ci-release.yml | 13 +++++--------
.github/workflows/ci.yml | 13 +++++--------
package.json | 2 +-
3 files changed, 11 insertions(+), 17 deletions(-)
diff --git a/.github/workflows/ci-release.yml b/.github/workflows/ci-release.yml
index d9fcb92..e9ab5ff 100644
--- a/.github/workflows/ci-release.yml
+++ b/.github/workflows/ci-release.yml
@@ -91,20 +91,17 @@ jobs:
os: windows-latest
shell: cmd
node-version:
- - 18.17.0
- - 18.x
- - 20.5.0
+ - 20.17.0
- 20.x
+ - 22.9.0
- 22.x
exclude:
- platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.17.0
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.x
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 20.5.0
+ node-version: 20.17.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 20.x
+ - platform: { name: macOS, os: macos-13, shell: bash }
+ node-version: 22.9.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 22.x
runs-on: ${{ matrix.platform.os }}
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index b991984..92a33b5 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -67,20 +67,17 @@ jobs:
os: windows-latest
shell: cmd
node-version:
- - 18.17.0
- - 18.x
- - 20.5.0
+ - 20.17.0
- 20.x
+ - 22.9.0
- 22.x
exclude:
- platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.17.0
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.x
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 20.5.0
+ node-version: 20.17.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 20.x
+ - platform: { name: macOS, os: macos-13, shell: bash }
+ node-version: 22.9.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 22.x
runs-on: ${{ matrix.platform.os }}
diff --git a/package.json b/package.json
index 585a646..d75bbb9 100644
--- a/package.json
+++ b/package.json
@@ -29,7 +29,7 @@
"lib/"
],
"engines": {
- "node": "^18.17.0 || >=20.5.0"
+ "node": "^20.17.0 || >=22.9.0"
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
From 180a8d5c72d7f13ed70c53619132f3a8ee5ac6ed Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
<41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 22 Oct 2025 08:22:01 -0700
Subject: [PATCH 8/8] chore: release 6.0.0 (#292)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
:robot: I have created a release *beep* *boop*
---
## [6.0.0](https://github.com/npm/ini/compare/v5.0.0...v6.0.0)
(2025-10-22)
### ⚠️ BREAKING CHANGES
* `ini` now supports node `^20.17.0 || >=22.9.0`
### Bug Fixes
*
[`6d395a4`](https://github.com/npm/ini/commit/6d395a4aaf7d7a5e32e250809cb7bd04c6a27b66)
[#291](https://github.com/npm/ini/pull/291) align to npm 11 node engine
range (#291) (@owlstronaut)
### Chores
*
[`23a36a9`](https://github.com/npm/ini/commit/23a36a9ca194d97486ed367f63d13a2cde1d1ce5)
[#290](https://github.com/npm/ini/pull/290) bump @npmcli/template-oss
from 4.26.0 to 4.27.1 (#290) (@dependabot[bot], @npm-cli-bot)
---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
---
.release-please-manifest.json | 2 +-
CHANGELOG.md | 8 ++++++++
package.json | 2 +-
3 files changed, 10 insertions(+), 2 deletions(-)
diff --git a/.release-please-manifest.json b/.release-please-manifest.json
index 32dbe0e..a3a12f4 100644
--- a/.release-please-manifest.json
+++ b/.release-please-manifest.json
@@ -1,3 +1,3 @@
{
- ".": "5.0.0"
+ ".": "6.0.0"
}
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 69a1573..85ed8c0 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,13 @@
# Changelog
+## [6.0.0](https://github.com/npm/ini/compare/v5.0.0...v6.0.0) (2025-10-22)
+### ⚠️ BREAKING CHANGES
+* `ini` now supports node `^20.17.0 || >=22.9.0`
+### Bug Fixes
+* [`6d395a4`](https://github.com/npm/ini/commit/6d395a4aaf7d7a5e32e250809cb7bd04c6a27b66) [#291](https://github.com/npm/ini/pull/291) align to npm 11 node engine range (#291) (@owlstronaut)
+### Chores
+* [`23a36a9`](https://github.com/npm/ini/commit/23a36a9ca194d97486ed367f63d13a2cde1d1ce5) [#290](https://github.com/npm/ini/pull/290) bump @npmcli/template-oss from 4.26.0 to 4.27.1 (#290) (@dependabot[bot], @npm-cli-bot)
+
## [5.0.0](https://github.com/npm/ini/compare/v4.1.3...v5.0.0) (2024-09-03)
### ⚠️ BREAKING CHANGES
* `ini` now supports node `^18.17.0 || >=20.5.0`
diff --git a/package.json b/package.json
index d75bbb9..7bbc057 100644
--- a/package.json
+++ b/package.json
@@ -2,7 +2,7 @@
"author": "GitHub Inc.",
"name": "ini",
"description": "An ini encoder/decoder for node",
- "version": "5.0.0",
+ "version": "6.0.0",
"repository": {
"type": "git",
"url": "git+https://github.com/npm/ini.git"