Skip to content

chore(deps): bump danger/danger-js from 9.1.8 to 13.0.4 #440

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

chore(deps): bump danger/danger-js from 9.1.8 to 13.0.4 #440

wants to merge 2 commits into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 1, 2025
edited
Loading

Bumps danger/danger-js from 9.1.8 to 13.0.4.

Release notes

Sourced from danger/danger-js's releases.

Release 13.0.4

Fun sidenote, it's been exactly a year and we had to update the node version etc

Screenshot 2025-04-16 at 08 14 22

Release 12.3.4

No release notes provided.

Release 12.3.3

No release notes provided.

Release 12.3.2

No release notes provided.

Release 12.3.1

No release notes provided.

Release 12.3.0

No release notes provided.

Release 12.2.1

No release notes provided.

Release 12.2.0

No release notes provided.

Release 12.1.0

It's been 7 years since I looked at danger init and err, the world of CI has changed quite a bit since then. So, Danger JS's init command now knows that GitHub Actions exists and will correctly offer some advice on how to set up a Dangerfile for it. - [@​orta]

12.0.1

Bumping to 12.x because we've raised the minimum to node version from 14 to 18. This is due to some of our dependencies requiring a newer version of node. This is a breaking change for some folk! Also, 14 has been out of support for quite a while now and Node 18 gives us a full year. - [@​orta]

  • Remove the user checks in GitHub comment/inline comment lookups, to allow using app tokens #1433 - [@​orta]
  • Upgrade node engine from >=14.13.1 to >=18 [@​heltoft]
  • Upgrade @types/node from ^10.11.3 to 18.19.18 [@​heltoft]
  • GitLab: #1386 Move from @gitbeaker/node to @gitbeaker/rest [@​heltoft]
  • GitLab: #1412 Danger fails to create inline comments on Gitlab [@​heltoft]
  • GitLab: #1405 Can't post multiple inline comments [@​heltoft]
  • GitLab: Do not delete system resolved danger inline comments [@​heltoft]
  • Fix for ESM imports in Dangerfiles [@​mgol]

Release 12.0.1

... (truncated)

Changelog

Sourced from danger/danger-js's changelog.

Main

13.0.3

  • Lots of deploy faff, as we are forced to update node in all the build processing [@​orta]

13.0.0

  • Breaking Update @octokit/rest from 18 to 20 to prevent transitive CVEs - Fixes #1479 [@​fbartho]
  • Clean up dead discussion link - Fixes #1467 [@​fbartho]
  • Adds infra for pythons pre-commit hooks
  • Replace parse-git-config with ini + fs as it has a CVE out - #1486
  • Disabled Windows CI as it was failing for successful builds

12.3.4

  • Ensure that babel ignores do not cause the transpiler to fall over, by supporting the null return from loadOptions which occurs when a file is ignored.
  • Allow absolute paths for a Dangerfile

12.3.3

  • #1180 Set module properly when tsconfig does not contain compilerOptions.module [@​matthewh]

12.3.2

  • #1180 Adds support for ESM Dangerfiles (by using dangerfile.mts/dangerfile.mjs) [@​matthewh]

12.3.1

  • Fixes for created, modified and deleted files in GitHub - [@​szweier]

... (truncated)

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
chore(deps): bump danger/danger-js from 9.1.8 to 13.0.4
3216dbc 
Bumps [danger/danger-js](https://github.com/danger/danger-js) from 9.1.8 to 13.0.4.
- [Release notes](https://github.com/danger/danger-js/releases)
- [Changelog](https://github.com/danger/danger-js/blob/main/CHANGELOG.md)
- [Commits](danger/danger-js@9.1.8...13.0.4)

---
updated-dependencies:
- dependency-name: danger/danger-js
  dependency-version: 13.0.4
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 1, 2025
@changeset-bot
Copy link

changeset-bot bot commented May 1, 2025
edited
Loading

⚠️ No Changeset found

Latest commit: 795f7bd

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

💥 An error occurred when fetching the changed packages and changesets in this PR 
Some errors occurred when validating the changesets config:
The package or glob expression "@boostxyz/test" is specified in the `ignore` option but it is not found in the project. You may have misspelled the package name or provided an invalid glob expression. Note that glob expressions must be defined according to https://www.npmjs.com/package/micromatch.

@sammccord
Copy link
Contributor

sammccord commented May 7, 2025

Warnings
⚠️

Are you sure you want to be submitting a change without including a changeset? If you're just changing docs or tests, you probably don't need to. See the publishing section of the README for more info.

Generated by 🚫 dangerJS against 795f7bd

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 1, 2025

A newer version of danger/danger-js exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@sammccord @mmackz