Skip to content

deps(NODE-6900): FY26Q2 dependency update #241

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Apr 28, 2025
Merged

deps(NODE-6900): FY26Q2 dependency update #241

merged 6 commits into from
Apr 28, 2025

Conversation

baileympearson
Copy link
Contributor

@baileympearson baileympearson commented Apr 28, 2025
edited
Loading

Description

What is changing?

Updates dependencies missed by dependabot because it has been nearly a month since dependabot ran.

Also, update the package file because dependabot doesn't always update it.

Is there new documentation needed for these changes?

What is the motivation for this change?

Release Highlight

Fill in title or leave empty for no highlight

Double check the following

  • Ran npm run check:lint script
  • Self-review completed using the steps outlined here
  • PR title follows the correct format: type(NODE-xxxx)[!]: description
    • Example: feat(NODE-1234)!: rewriting everything in coffeescript
  • Changes are covered by tests
  • New TODOs have a related JIRA ticket

dependabot bot and others added 4 commits April 28, 2025 11:54
@dependabot @baileympearson
chore(deps-dev): bump the development-dependencies group across 1 dir…
24d4ac8 
…ectory with 6 updates

Bumps the development-dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `22.13.0` | `22.13.16` |
| [chai-string](https://github.com/onechiporenko/chai-string) | `1.5.0` | `1.6.0` |
| [eslint](https://github.com/eslint/eslint) | `9.19.0` | `9.23.0` |
| [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier) | `5.2.3` | `5.2.5` |
| [mongodb](https://github.com/mongodb/node-mongodb-native) | `6.13.0` | `6.15.0` |
| [prettier](https://github.com/prettier/prettier) | `3.4.2` | `3.5.3` |

Updates `@types/node` from 22.13.0 to 22.13.16
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `chai-string` from 1.5.0 to 1.6.0
- [Release notes](https://github.com/onechiporenko/chai-string/releases)
- [Commits](onechiporenko/chai-string@v1.5.0...v1.6.0)

Updates `eslint` from 9.19.0 to 9.23.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](eslint/eslint@v9.19.0...v9.23.0)

Updates `eslint-plugin-prettier` from 5.2.3 to 5.2.5
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases)
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/eslint-plugin-prettier@v5.2.3...v5.2.5)

Updates `mongodb` from 6.13.0 to 6.15.0
- [Release notes](https://github.com/mongodb/node-mongodb-native/releases)
- [Changelog](https://github.com/mongodb/node-mongodb-native/blob/main/HISTORY.md)
- [Commits](mongodb/node-mongodb-native@v6.13.0...v6.15.0)

Updates `prettier` from 3.4.2 to 3.5.3
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.4.2...3.5.3)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: chai-string
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: eslint-plugin-prettier
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: mongodb
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: prettier
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@baileympearson
some more deps
58ad917
@baileympearson
node-gyp
84cb48f
@baileympearson
Revert "node-gyp"
8422066 
This reverts commit 1b0aeb6.
@baileympearson baileympearson changed the title Dependency updates deps(NODE-6900): FY26Q2 dependency update Apr 28, 2025
@baileympearson baileympearson marked this pull request as ready for review April 28, 2025 18:03
@baileympearson baileympearson requested a review from a team as a code owner April 28, 2025 18:03
@nbbeeken nbbeeken self-assigned this Apr 28, 2025
@nbbeeken nbbeeken added the Primary Review In Review with primary reviewer, not yet ready for team's eyes label Apr 28, 2025
@nbbeeken
Copy link
Contributor 

Dev Major:
 chai                     ^4.4.1  →   ^5.2.0
 chalk                    ^4.1.2  →   ^5.4.1
 node-gyp                ^10.1.0  →  ^11.2.0
 
Dev Not Major:
 chai-string              ^1.5.0  →   ^1.6.0
 eslint-config-prettier  ^10.0.2  →  ^10.1.2
 jsdoc-to-markdown        ^9.0.5  →   ^9.1.1 
 prebuild                ^13.0.0  →  ^13.0.1 
 prettier                 ^3.3.3  →   ^3.5.3

Prod:
 node-addon-api           ^6.1.0  →   ^8.3.1
 prebuild-install         ^7.1.2  →   ^7.1.3

Still seems to be some more, and I see you reverted the node-gyp update, I assume it's because incompatible?

nbbeeken
nbbeeken requested changes Apr 28, 2025
View reviewed changes
Copy link
Contributor

@nbbeeken nbbeeken left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

(for viz, oops)

@baileympearson
Copy link
Contributor Author

@nbbeeken That's not what I see:

bailey.pearson:kerberos (dependency-updates) % npm outdated
Package         Current  Wanted  Latest  Location                     Depended by
chai              4.5.0   4.5.0   5.2.0  node_modules/chai            kerberos
chalk             4.1.2   4.1.2   5.4.1  node_modules/chalk           kerberos
node-addon-api    6.1.0   6.1.0   8.3.1  node_modules/node-addon-api  kerberos
node-gyp         10.1.0  10.3.1  11.2.0  node_modules/node-gyp        kerberos

How did you produce that list?

And yes, node-gyp failed CI.

@baileympearson baileympearson requested a review from nbbeeken April 28, 2025 18:55
@nbbeeken
Copy link
Contributor

Not sure why npm is omitting some portion of the deps, I get the same list as you if I run npm outdated 🤔

I use ncu: https://www.npmjs.com/package/npm-check-updates

@nbbeeken
Copy link
Contributor

nbbeeken commented Apr 28, 2025
edited
Loading

Oh I see, the lock file is already updated, but the package.json is left as is. It would be cosmetic but might as well update the package.json too for easy reference. I wonder if there's an npm command that will sync them?

Edit: I guess that command would be npm install DEP@latest, might be easier to just use ncu

nbbeeken
nbbeeken requested changes Apr 28, 2025
View reviewed changes
Copy link
Contributor

@nbbeeken nbbeeken left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

viz

@baileympearson baileympearson requested a review from nbbeeken April 28, 2025 19:35
@nbbeeken nbbeeken merged commit 9216743 into main Apr 28, 2025
18 checks passed
@nbbeeken nbbeeken deleted the dependency-updates branch April 28, 2025 19:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nbbeeken nbbeeken nbbeeken approved these changes

Assignees

@nbbeeken nbbeeken

Labels
Primary Review In Review with primary reviewer, not yet ready for team's eyes
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@baileympearson @nbbeeken