Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): update pnpm to v8.9.2 #495

Closed
wants to merge 1 commit into from
Closed

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 15, 2023

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
pnpm (source) 8.6.12 -> 8.9.2 age adoption passing confidence

Release Notes

pnpm/pnpm (pnpm)

v8.9.2

Compare Source

Patch Changes

  • Don't use reflink on Windows #​7186.
  • Do not run node-gyp rebuild if preinstall lifecycle script is present #​7206.

Our Gold Sponsors

Our Silver Sponsors

v8.9.1

Compare Source

Patch Changes

  • Optimize selection result output of pnpm update --interactive 7109
  • When shared-workspace-lockfile is set to false, read the pnpm settings from package.json files that are nested. This was broken in pnpm v8.9.0 #​7184.
  • Fix file cloning to node_modules on Windows Dev Drives #​7186. This is a fix to a regression that was shipped with v8.9.0.
  • pnpm dlx should ignore any settings that are in a package.json file found in the current working directory #​7198.

Our Gold Sponsors

Our Silver Sponsors

v8.9.0

Compare Source

Minor Changes

  • 🚀Performance improvement: Use reflinks instead of hard links by default on macOS and Windows Dev Drives #​5001.

  • The list of packages that are allowed to run installation scripts now may be provided in a separate configuration file. The path to the file should be specified via the pnpm.onlyBuiltDependenciesFile field in package.json. For instance:

    {
      "dependencies": {
        "@​my-org/policy": "1.0.0"
      }
      "pnpm": {
        "onlyBuiltDependenciesFile": "node_modules/@​my-org/policy/allow-build.json"
      }
    }

    In the example above, the list is loaded from a dependency. The JSON file with the list should contain an array of package names. For instance:

    ["esbuild", "@​reflink/reflink"]

    With the above list, only esbuild and @reflink/reflink will be allowed to run scripts during installation.

    Related issue: #​7137.

  • Add disallow-workspace-cycles option to error instead of warn about cyclic dependencies

  • Allow env rm to remove multiple node versions at once, and introduce env add for installing node versions without setting as default #​7155.

Patch Changes

  • Fix memory error in pnpm why when the dependencies tree is too big, the command will now prune the tree to just 10 end leafs and now supports --depth argument #​7122.
  • Use neverBuiltDependencies and onlyBuiltDependencies from the root package.json of the workspace, when shared-workspace-lockfile is set to false #​7141.
  • Optimize peers resolution to avoid out-of-memory exceptions in some rare cases, when there are too many circular dependencies and peer dependencies #​7149.
  • Instead of pnpm.overrides replacing resolutions, the two are now merged. This is intended to make it easier to migrate from Yarn by allowing one to keep using resolutions for Yarn, but adding additional changes just for pnpm using pnpm.overrides.

Our Gold Sponsors

Our Silver Sponsors

v8.8.0

Compare Source

Minor Changes

  • Add --reporter-hide-prefix option for run command to hide project name as prefix for lifecycle log outputs of running scripts #​7061.

Patch Changes

  • Pass through the --ignore-scripts command to install, when running pnpm dedupe --ignore-scripts #​7102.
  • Throw meaningful error for config sub commands#​7106.
  • When the node-linker is set to hoisted, the package.json files of the existing dependencies inside node_modules will be checked to verify their actual versions. The data in the node_modules/.modules.yaml and node_modules/.pnpm/lock.yaml may not be fully reliable, as an installation may fail after changes to dependencies were made but before those state files were updated #​7107.
  • Don't update git-hosted dependencies when adding an unrelated dependency #​7008.

Our Gold Sponsors

Our Silver Sponsors

v8.7.6

Compare Source

Patch Changes

  • Don't run the prepublishOnly scripts of git-hosted dependencies #​7026.
  • Fix a bug in which use-node-version or node-version isn't passed down to checkEngine when using pnpm workspace, resulting in an error #​6981.
  • Don't print out each deprecated subdependency separately with its deprecation message. Just print out a summary of all the deprecated subdependencies #​6707.
  • Fixed an ENOENT error that was sometimes happening during install with "hoisted" node_modules #​6756.

Our Gold Sponsors

Our Silver Sponsors

v8.7.5

Compare Source

Patch Changes

  • Improve performance of installation by using a worker for creating the symlinks inside node_modules/.pnpm #​7069.
  • Tarballs that have hard links are now unpacked successfully. This fixes a regression introduced in v8.7.0, which was shipped with our new in-house tarball parser #​7062.

Our Gold Sponsors

Our Silver Sponsors

v8.7.4

Compare Source

Patch Changes

  • Fix a bug causing the pnpm server to hang if a tarball worker was requested while another worker was exiting #​7041.
  • Fixes a regression published with pnpm v8.7.3. Don't hang while reading package.json from the content-addressable store #​7051.
  • Allow create scoped package with preferred version. #​7053
  • Reverting a change shipped in v8.7 that caused issues with the pnpm deploy command and "injected dependencies" #​6943.

Our Gold Sponsors

Our Silver Sponsors

v8.7.3

Compare Source

Patch Changes

  • Fix a bug causing errors to be printed as "Cannot read properties of undefined (reading 'code')" instead of the underlying reason when using the pnpm store server #​7032

Our Gold Sponsors

Our Silver Sponsors

v8.7.2

Compare Source

v8.7.1

Compare Source

Patch Changes

  • Fixed an issue with extracting some old versions of tarballs #​6991.
  • Side-effects cache will now be leveraged when running install in a workspace that uses dedicated lockfiles for each project #​6890.
  • Reduce concurrency in the pnpm -r publish command #​6968.
  • Improved the pnpm update --interactive output by grouping dependencies by type. Additionally, a new column has been added with links to the documentation for outdated packages #​6978.

Our Gold Sponsors

Our Silver Sponsors

v8.7.0

Compare Source

Minor Changes

  • Improve performance of installation by using a worker pool for extracting packages and writing them to the content-addressable store #​6850
  • The default value of the resolution-mode setting is changed to highest. This setting was changed to lowest-direct in v8.0.0 and some users were not happy with the change. A twitter poll concluded that most of the users want the old behaviour (resolution-mode set to highest by default). This is a semi-breaking change but should not affect users that commit their lockfile #​6463.

Patch Changes

  • Warn when linking a package with peerDependencies #​615.
  • Add support for npm lockfile v3 in pnpm import #​6233.
  • Override peerDependencies in pnpm.overrides #​6759.
  • Respect workspace alias syntax in pkg graph #​6922
  • Emit a clear error message when users attempt to specify an undownloadable node version #​6916.
  • pnpm patch should write patch files with a trailing newline #​6905.
  • Dedupe deps with the same alias in direct dependencies 6966
  • Don't prefix install output for the dlx command.
  • Performance optimizations. Package tarballs are now download directly to memory and built to an ArrayBuffer. Hashing and other operations are avoided until the stream has been fully received #​6819.

Our Gold Sponsors

Our Silver Sponsors


Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@vercel
Copy link

vercel bot commented Aug 15, 2023

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Updated (UTC)
lens-sdk-example-web-wagmi ❌ Failed (Inspect) Oct 16, 2023 1:23am

@height
Copy link

height bot commented Aug 15, 2023

Link Height tasks by mentioning a task ID in the pull request title or commit messages, or description and comments with the keyword link (e.g. "Link T-123").

💡Tip: You can also use "Close T-X" to automatically close a task when the pull request is merged.

@changeset-bot
Copy link

changeset-bot bot commented Aug 15, 2023

⚠️ No Changeset found

Latest commit: 41b46d9

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from ccc8668 to 80e5b5d Compare August 15, 2023 11:15
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 80e5b5d to 5745762 Compare August 15, 2023 12:04
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 5745762 to 23c0f91 Compare August 18, 2023 11:51
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 23c0f91 to bdbec55 Compare August 21, 2023 08:50
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from bdbec55 to bf62af2 Compare August 21, 2023 09:34
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from bf62af2 to 9cebebe Compare August 23, 2023 13:54
@renovate renovate bot changed the title chore(deps): update pnpm to v8.6.12 chore(deps): update pnpm to v8.6.12 - autoclosed Aug 24, 2023
@renovate renovate bot closed this Aug 24, 2023
@renovate renovate bot deleted the renovate/pnpm-8.x branch August 24, 2023 13:35
@renovate renovate bot changed the title chore(deps): update pnpm to v8.6.12 - autoclosed chore(deps): update pnpm to v8.6.12 Aug 26, 2023
@renovate renovate bot reopened this Aug 26, 2023
@renovate renovate bot restored the renovate/pnpm-8.x branch August 26, 2023 21:19
@renovate renovate bot changed the title chore(deps): update pnpm to v8.6.12 chore(deps): update pnpm to v8.7.0 Aug 27, 2023
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 9cebebe to f76bba4 Compare August 27, 2023 01:30
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from f76bba4 to 05d61c5 Compare August 29, 2023 06:33
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 05d61c5 to b3df739 Compare August 29, 2023 09:13
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from b3df739 to a7c3e80 Compare August 30, 2023 10:14
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 6facc5f to d2f1a98 Compare September 11, 2023 14:12
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from d2f1a98 to 2d6400c Compare September 15, 2023 14:56
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 2d6400c to 1758e8b Compare September 15, 2023 15:23
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 1758e8b to 297963a Compare September 15, 2023 16:10
@renovate renovate bot changed the title chore(deps): update pnpm to v8.7.5 chore(deps): update pnpm to v8.7.6 Sep 17, 2023
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 297963a to f90a105 Compare September 17, 2023 22:26
@renovate renovate bot changed the title chore(deps): update pnpm to v8.7.6 chore(deps): update pnpm to v8.8.0 Sep 26, 2023
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from f90a105 to 598749c Compare September 26, 2023 13:25
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 598749c to 7a50fc8 Compare October 6, 2023 16:14
@renovate renovate bot changed the base branch from main to lens-v2 October 6, 2023 16:14
@renovate renovate bot changed the title chore(deps): update pnpm to v8.8.0 chore(deps): update pnpm to v8.9.0 Oct 9, 2023
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 7a50fc8 to fbb511d Compare October 9, 2023 12:22
@renovate renovate bot changed the title chore(deps): update pnpm to v8.9.0 chore(deps): update pnpm to v8.9.1 Oct 15, 2023
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from fbb511d to 3aa3aba Compare October 15, 2023 15:28
@renovate renovate bot changed the title chore(deps): update pnpm to v8.9.1 chore(deps): update pnpm to v8.9.2 Oct 16, 2023
@renovate renovate bot force-pushed the renovate/pnpm-8.x branch from 3aa3aba to 41b46d9 Compare October 16, 2023 01:23
@renovate
Copy link
Contributor Author

renovate bot commented Oct 19, 2023

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update (8.9.2). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the ignoreDeps array of your Renovate config.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

@renovate renovate bot deleted the renovate/pnpm-8.x branch October 19, 2023 20:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant