[Snyk] Upgrade npm-packlist from 1.4.8 to 7.0.4

[InfiniteLove2020]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade npm-packlist from 1.4.8 to 7.0.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 33 versions ahead of your current version.
• The recommended version was released 4 months ago, on 2022-12-07.

Release notes

Package name: npm-packlist

• 7.0.4 - 2022-12-07
  

  7.0.4 (2022-12-07)

  Bug Fixes

  • e5256de #149 skip missing optional deps when bundling, closes npm/cli#5924 (#149) (@ nlf)
• 7.0.3 - 2022-12-07
  

  7.0.3 (2022-12-07)

  Bug Fixes

  • c6f2b69 #147 treat glob the same as globstar (#147) (@ lukekarrys)
• 7.0.2 - 2022-10-26
  

  7.0.2 (2022-10-26)

  Bug Fixes

  • d5b653c #140 account for directories and files prefixed with ./ (#140) (@ wraithgar)
• 7.0.1 - 2022-10-17
  

  7.0.1 (2022-10-17)

  Dependencies

  • 250d589 #136 bump ignore-walk from 5.0.1 to 6.0.0
• 7.0.0 - 2022-10-05
  

  7.0.0 (2022-10-04)

  Features

  • b83e0aa #133 set as release (@ fritzy)
• 7.0.0-pre.1 - 2022-10-04
  

  7.0.0-pre.1 (2022-10-03)

  ⚠️ BREAKING CHANGES

  • if npm-shrinkwrap.json is included in your .npmignore, the shrinkwrap will now be excluded from your packlist.

  Features

  • 5e80968 #131 npm-shrinkwrap.json files can now be ignored (#131) (@ fritzy)
• 7.0.0-pre.0 - 2022-09-26
  

  7.0.0-pre.0 (2022-09-26)

  ⚠️ BREAKING CHANGES

  • tree is now the first parameter
  • the arborist tree must now be provided in the options and will not be generated for you. the npm-packlist bin has also been removed.

  Features

  • 87c778e make the required tree the first parameter (@ lukekarrys)
  • 123875a remove dependency on arborist, require tree to be passed in (@ nlf)
• 6.0.1 - 2022-09-23
  

  6.0.1 (2022-09-23)

  Dependencies

  • f823be6 #125 arborist@5||6||6.pre
• 6.0.0 - 2022-09-21
  

  6.0.0 (2022-09-21)

  ⚠️ BREAKING CHANGES

  • this module now follows a strict order of operations when applying ignore rules. if a files array is present in the package.json, then rules in .gitignore and .npmignore files from the root will be ignored.
  • npm-packlist is now compatible with the following semver range for node: ^14.17.0 || ^16.13.0 || >=18.0.0

  Features

  • c37371b #88 change interactions between files array and ignore files to be more consistent (#88) (@ nlf)
  • a2c96ef #123 postinstall for dependabot template-oss PR (@ lukekarrys)
• 5.1.3 - 2022-08-25
  

  5.1.3 (2022-08-25)

  Dependencies

  • bump npm-bundled from 1.1.2 to 2.0.0 (#113) (de5e96b)
• 5.1.2 - 2022-08-23
• 5.1.1 - 2022-06-29
• 5.1.0 - 2022-05-25
• 5.0.4 - 2022-05-19
• 5.0.3 - 2022-05-04
• 5.0.2 - 2022-04-21
• 5.0.1 - 2022-04-20
• 5.0.0 - 2022-04-06
• 4.0.0 - 2022-03-03
• 3.0.0 - 2021-08-23
• 2.2.2 - 2021-05-07
• 2.2.1 - 2021-05-06
• 2.2.0 - 2021-05-05
• 2.1.5 - 2021-03-25
• 2.1.4 - 2020-10-21
• 2.1.3 - 2020-10-21
• 2.1.2 - 2020-05-07
• 2.1.1 - 2020-03-12
• 2.1.0 - 2020-02-10
• 2.0.3 - 2019-12-17
• 2.0.2 - 2019-12-09
• 2.0.1 - 2019-11-16
• 2.0.0 - 2019-11-05
• 1.4.8 - 2020-01-23

from npm-packlist GitHub release notes

Commit messages

Package name: npm-packlist

• d2748ea chore: release 7.0.4 (build: fix dtrace-enabled build on os x nodejs/node#150)
• e5256de fix: skip missing optional deps when bundling, closes [BUG] npm pack not working with chokidar in bundledDependencies npm/cli#5924 (Inbound data lost when TLS connection resets. nodejs/node#149)
• 7406f7f chore: release 7.0.3 (doc: added node-forward TC meeting 2014-10-15 nodejs/node#148)
• c6f2b69 fix: treat glob the same as globstar (Support io.js Dockerfile or Docker Repo nodejs/node#147)
• 29d52f2 chore: postinstall for dependabot template-oss PR
• b154a7b chore: bump @ npmcli/template-oss from 4.8.0 to 4.10.0
• dbce13d chore: postinstall for dependabot template-oss PR
• f95cad3 chore: bump @ npmcli/template-oss from 4.7.1 to 4.8.0
• ef63396 chore: release 7.0.2 (domain: add soft deprecation notice nodejs/node#141)
• b33030a chore: post @ npmcli/template-oss changes (doc: cherry-pick tc-minutes from master nodejs/node#143)
• 1f60d1d chore: bump @ npmcli/template-oss from 4.6.1 to 4.7.1 (docs: Supplement docs for Writable and Transform streams nodejs/node#142)
• d5b653c fix: account for directories and files prefixed with `./` (install,windows: symlink iojs -> node? nodejs/node#140)
• 2ec75c0 chore: postinstall for dependabot template-oss PR
• 5a40ffd chore: bump @ npmcli/template-oss from 4.5.1 to 4.6.1
• 235372b chore: release 7.0.1 (Better documentation/Documentation Independence nodejs/node#137)
• 250d589 deps: bump ignore-walk from 5.0.1 to 6.0.0
• 5fa398e chore: bump @ npmcli/eslint-config from 3.1.0 to 4.0.0
• 9115459 chore: postinstall for dependabot template-oss PR
• b1b3013 chore: bump @ npmcli/template-oss from 4.4.2 to 4.5.1
• 1ccaca9 chore: release 7.0.0
• b83e0aa feat: set as release
• cbda48b chore: release 7.0.0-pre.1
• 5e80968 feat: npm-shrinkwrap.json files can now be ignored (lib: reintroduce v8 module nodejs/node#131)
• 4baf411 chore: release 7.0.0-pre.0

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs