Skip to content

Build(deps): Bump the npm_and_yarn group across 1 directory with 2 updates #13

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Build(deps): Bump the npm_and_yarn group across 1 directory with 2 updates #13

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 14, 2025
edited
Loading

Bumps the npm_and_yarn group with 2 updates in the / directory: tmp and inquirer.

Removes tmp

Updates inquirer from 7.3.3 to 12.9.2

Release notes

Sourced from inquirer's releases.

[email protected]

  • Make @types/node an optional peer dependency.

[email protected]

  • Replace external-editor dependency with new @inquirer/external-editor. This remove the vulnerable tmp transitive dependency from the dependency tree.

[email protected]

  • Search prompt: New instructions config to allow localizing the help tips.

[email protected]

  • Fix #1786 select prompt with indexMode: number theme option didn't properly calculate the items indexes if separators where present in between choices.

[email protected]

  • Fixes: a transitive dependency (run-aysnc) loaded devDependencies unexpectedly. This is now fixed upstream. Rel #1791

[email protected]

  • Select prompt: When pressing a number key, we'll ignore separators in counting the index of the item to jump to.
  • Checkbox prompt: When pressing a number key, we'll ignore separators in counting the index of the item to select.

[email protected]

-input prompt: New prefill option to control if the default value is editable inline or only after pressing tab.

[email protected]

  • Fix #1743: pagination logic of the select, checkbox and search prompts was fully rewritten to handle edge cases around rendering multi-line choices and pointer positioning.

[email protected]

  • Chore: dependencies bump

[email protected]

  • Fix #1741: Issue with SIGINT in some scenarios leaving promises unsettled on exit.
  • Fix: Remove monorepo related dependencies from all artifacts published to npm. This removes non-standard version specifiers like workspace:* from the public npm packages.

[email protected]

  • Feat(@​inquirer/select): Added an instructions option allowing to customize the messages in the help tips.
  • Feat(@​inquirer/rawlist): Arrow keys will now cycle through the option, just like the @inquirer/select prompt. Also added a loop option to control the list loop behaviour when reaching the boundaries.

[email protected]

  • README: Add new sponsor
  • Chore: dependency updates

[email protected]

  • Feat (select): Introduce theme.indexMode to control displaying an index prefix in front of each choice. (defaults to hidden)
  • Fix (select): Improve search when number keys are pressed

[email protected]

  • Fix an issue where inquirer would throw if Node is ran with the new --frozen-intrinsics flag.

[email protected]

  • Mark @types/node as an optional peer dependency across all packages.

... (truncated)

Commits
  • daf4d6f Publish
  • b4992d3 fix: lockfile regenerated
  • 7ddf02b chore (@​inquirer/external-editor): Add keyword to help search
  • 82df7a2 fix (@​inquirer/external-editor): Make @​types/node an optional peer dependency
  • 28c2f20 chore (@​inquirer/external-editor): Add note to README about being a replacement
  • 6d8ae68 Chore(deps): Bump @​sindresorhus/tsconfig from 7.0.0 to 8.0.1 (#1807)
  • 4fd165a Chore(deps-dev): Bump the linting group with 6 updates (#1808)
  • 1a8d667 Chore(deps): Bump run-async from 4.0.5 to 4.0.6 (#1806)
  • 9d4a5b1 chore: Add sponsor block
  • 15b1e9c Publish
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
Build(deps): Bump the npm_and_yarn group across 1 directory with 2 up…
d4271c7 
…dates

Bumps the npm_and_yarn group with 2 updates in the / directory: [tmp](https://github.com/raszi/node-tmp) and [inquirer](https://github.com/SBoudrias/Inquirer.js).


Removes `tmp`

Updates `inquirer` from 7.3.3 to 12.9.2
- [Release notes](https://github.com/SBoudrias/Inquirer.js/releases)
- [Commits](https://github.com/SBoudrias/Inquirer.js/compare/[email protected]@12.9.2)

---
updated-dependencies:
- dependency-name: tmp
  dependency-version: 
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: inquirer
  dependency-version: 12.9.2
  dependency-type: direct:production
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Aug 14, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant