Skip to content

Chore(deps-dev): Bump syncpack from 13.0.0 to 15.3.1#2400

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/syncpack-15.3.1
Open

Chore(deps-dev): Bump syncpack from 13.0.0 to 15.3.1#2400
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/syncpack-15.3.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 25, 2026

Copy link
Copy Markdown
Contributor

Bumps syncpack from 13.0.0 to 15.3.1.

Release notes

Sourced from syncpack's releases.

15.3.1

15.3.1 (2026-05-19)

Bug Fixes

  • types: update typescript types for 5.3.0 (82a435b)

15.3.0

15.3.0 (2026-05-18)

Adds a new Range Only Version Group to close the gap left behind by lint-semver-ranges and set-semver-ranges prior to the Rust rewrite in syncpack v14.

This version group loosens syncpack to only enforce that every dependency uses the semver range prefix required by its semver group, ^, ~, exact, etc. and ignores the version number. This is useful when you want to standardise how packages pin their dependencies, but are otherwise not ready or don't want to enforce a specific version they all should use.

Features

  • groups: add range only version group (a9d511a)
  • update: only list selected updates in summary (63d17e5)

15.2.0

15.2.0 (2026-05-17)

The main changes are 2 new config properties:

  • An optional severity property on Version Groups, to override the default behaviour of each status code to fix, error, or warn (requested by #325 and #216).
  • An optional sourceMode config lets you extend the package.json files discovered via your package manager, instead of the default of replace.

Features

  • config: allow autofix to be optionally disabled (d589d3e), closes #325 #216
  • config: allow other .json files when explicitly set (5c83a60), closes #333
  • config: allow sources to append rather than replace (99cc046), closes #205

Bug Fixes

  • cargo: update dependencies (8aea6d1)
  • glob: match globs and gitignore correctly (df700d8), closes #334

15.1.2

15.1.2 (2026-05-10)

This release adds a new syncpack update --interactive option, a 30 minute TTL cache which can be skipped with a new syncpack update --no-cache option, and Update Groups to set policies for if and how various dependencies should be updated.

Features

  • config: add updateGroups to set registry update policies (bd7573e), closes #244
  • update: add --interactive prompt (8b1334a)
  • update: cache registry responses for 30mins (08bd28c)

Bug Fixes

... (truncated)

Changelog

Sourced from syncpack's changelog.

15.3.1 (2026-05-19)

Bug Fixes

  • types: update typescript types for 5.3.0 (82a435b)

15.3.0 (2026-05-18)

Features

  • groups: add range only version group (a9d511a)
  • update: only list selected updates in summary (63d17e5)

15.2.0 (2026-05-17)

Features

  • config: allow autofix to be optionally disabled (d589d3e), closes #325 #216
  • config: allow other .json files when explicitly set (5c83a60), closes #333
  • config: allow sources to append rather than replace (99cc046), closes #205

Bug Fixes

  • cargo: update dependencies (8aea6d1)
  • glob: match globs and gitignore correctly (df700d8), closes #334

15.1.2 (2026-05-10)

Bug Fixes

  • npm: forward stdio correctly to binary (87be440)

15.1.1 (2026-05-10)

Features

  • config: add updateGroups to set registry update policies (bd7573e), closes #244
  • update: add --interactive prompt (8b1334a)
  • update: cache registry responses for 30mins (08bd28c)

Bug Fixes

  • cargo: update dependencies (f99d54f)
  • github: fix release pipeline (9a38e9e)

15.0.0 (2026-05-04)

⚠ BREAKING CHANGES

... (truncated)

Commits
  • 078dc6c chore(release): 15.3.1
  • 82a435b fix(types): update typescript types for 5.3.0
  • fc47d81 docs(site): add a what's new guide
  • 553582a chore(release): 15.3.0
  • 63d17e5 feat(update): only list selected updates in summary
  • 8d63fbe style(site): format config
  • 1bde497 chore(site): add missing link aliases
  • f3a0957 chore(site): ensure links have trailing slash
  • a9d511a feat(groups): add range only version group
  • d0d083f chore(core): remove unused dependencies
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for syncpack since your current version.


@dependabot dependabot Bot added dependencies javascript Pull requests that update Javascript code labels May 25, 2026
@dependabot dependabot Bot requested a review from a team as a code owner May 25, 2026 13:10
@dependabot dependabot Bot added dependencies javascript Pull requests that update Javascript code labels May 25, 2026
@changeset-bot

changeset-bot Bot commented May 25, 2026

Copy link
Copy Markdown

⚠️ No Changeset found

Latest commit: eff7190

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@github-actions

Copy link
Copy Markdown
Contributor

Tip

Once this PR is ready to go, add the run_chromatic label to run the Chromatic tests.

This saves us a lot of money by not running the tests before we need them.

Bumps [syncpack](https://github.com/JamieMason/syncpack) from 13.0.0 to 15.3.1.
- [Release notes](https://github.com/JamieMason/syncpack/releases)
- [Changelog](https://github.com/JamieMason/syncpack/blob/main/CHANGELOG.md)
- [Commits](JamieMason/syncpack@13.0.0...15.3.1)

---
updated-dependencies:
- dependency-name: syncpack
  dependency-version: 15.3.1
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/syncpack-15.3.1 branch from 2843952 to eff7190 Compare June 10, 2026 08:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants