-
Notifications
You must be signed in to change notification settings - Fork 67
Comparing changes
Open a pull request
base repository: dependabot/fetch-metadata
base: v2.2.0
head repository: dependabot/fetch-metadata
compare: v2.3.0
- 19 commits
- 13 files changed
- 7 contributors
Commits on Jul 7, 2024
-
Bump actions/create-github-app-token from 1.10.2 to 1.10.3
Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 1.10.2 to 1.10.3. - [Release notes](https://github.com/actions/create-github-app-token/releases) - [Commits](actions/create-github-app-token@ad38cff...31c86eb) --- updated-dependencies: - dependency-name: actions/create-github-app-token dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Configuration menu - View commit details
-
Copy full SHA for 910e327 - Browse repository at this point
Copy the full SHA 910e327View commit details
Commits on Jul 15, 2024
-
Merge pull request #537 from dependabot/dependabot/github_actions/act…
…ions/create-github-app-token-1.10.3 Bump actions/create-github-app-token from 1.10.2 to 1.10.3
Configuration menu - View commit details
-
Copy full SHA for ffa2dc8 - Browse repository at this point
Copy the full SHA ffa2dc8View commit details
Commits on Aug 26, 2024
-
Also update all fetch-metadata@v1 references to v2
Configuration menu - View commit details
-
Copy full SHA for e10dfc6 - Browse repository at this point
Copy the full SHA e10dfc6View commit details -
Configuration menu - View commit details
-
Copy full SHA for af75c3e - Browse repository at this point
Copy the full SHA af75c3eView commit details -
Configuration menu - View commit details
-
Copy full SHA for 9e29706 - Browse repository at this point
Copy the full SHA 9e29706View commit details -
Configuration menu - View commit details
-
Copy full SHA for 46e21c9 - Browse repository at this point
Copy the full SHA 46e21c9View commit details -
Merge pull request #548 from dependabot/nishnha/specify-if-conditional
Update readme to include an if conditional
Configuration menu - View commit details
-
Copy full SHA for 67945c0 - Browse repository at this point
Copy the full SHA 67945c0View commit details
Commits on Sep 4, 2024
-
Silence audit and funding messages from
npm
(#550)While reviewing some logs, I noticed the following: ```shell added 1 package, changed 30 packages, and audited 382 packages in 6s 58 packages are looking for funding run `npm fund` for details found 0 vulnerabilities ``` While I'm not against security, nor supporting OSS maintainers (I co-maintain 10+ projects myself!), I am against noisy logs that add no value. So let's silence these: 1. When they appear in CI, they add no value. 1. We've got our own security tools for vulnerable deps, which we rely on instead of `npm audit` results. 1. When I'm skimming logs looking for debug information, these just get in my way. 1. There may be a speed boost if the audit/fix metadata requires an additional API call, and silencing actually skips that rather than merely silencing it. There's multiple ways to silence these: https://benjamincrozat.com/disable-packages-are-looking-for-funding Originally I tackled this by adding `--no-audit --no-fund` flags, but there's a lot of different entrypoints and workflows that call `npm ci` or `npm install`. Even if I do manage to get them all, there's always a risk someone will come along later and add another entrypoint. So that's why I went the `.npmrc` route. After this change, the logs are much better: ```shell added 1 package, changed 30 packages, and audited 382 packages in 6s ```
Configuration menu - View commit details
-
Copy full SHA for efb8718 - Browse repository at this point
Copy the full SHA efb8718View commit details
Commits on Sep 15, 2024
-
Bump actions/create-github-app-token from 1.10.3 to 1.11.0
Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 1.10.3 to 1.11.0. - [Release notes](https://github.com/actions/create-github-app-token/releases) - [Commits](actions/create-github-app-token@31c86eb...5d869da) --- updated-dependencies: - dependency-name: actions/create-github-app-token dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Configuration menu - View commit details
-
Copy full SHA for d664895 - Browse repository at this point
Copy the full SHA d664895View commit details
Commits on Sep 27, 2024
-
Merge pull request #554 from dependabot/dependabot/github_actions/act…
…ions/create-github-app-token-1.11.0 Bump actions/create-github-app-token from 1.10.3 to 1.11.0
Configuration menu - View commit details
-
Copy full SHA for b0d0393 - Browse repository at this point
Copy the full SHA b0d0393View commit details
Commits on Oct 21, 2024
-
Configuration menu - View commit details
-
Copy full SHA for bbfca7e - Browse repository at this point
Copy the full SHA bbfca7eView commit details
Commits on Oct 23, 2024
-
Merge pull request #563 from CloudNStoyan/main
fix readme action example
Configuration menu - View commit details
-
Copy full SHA for 06ea45a - Browse repository at this point
Copy the full SHA 06ea45aView commit details -
Configuration menu - View commit details
-
Copy full SHA for 5a7546a - Browse repository at this point
Copy the full SHA 5a7546aView commit details
Commits on Jan 24, 2025
-
Merge pull request #564 from CatChen/fixed-missing-outputs-in-action-yml
Fixed missing outputs in action.yml
Configuration menu - View commit details
-
Copy full SHA for 0d27069 - Browse repository at this point
Copy the full SHA 0d27069View commit details -
Configuration menu - View commit details
-
Copy full SHA for 59d2b1f - Browse repository at this point
Copy the full SHA 59d2b1fView commit details -
Configuration menu - View commit details
-
Copy full SHA for de52f60 - Browse repository at this point
Copy the full SHA de52f60View commit details -
Merge pull request #565 from CloudNStoyan/main
Handle branch names containing dependency group
Configuration menu - View commit details
-
Copy full SHA for 3da9521 - Browse repository at this point
Copy the full SHA 3da9521View commit details -
Configuration menu - View commit details
-
Copy full SHA for e3dd295 - Browse repository at this point
Copy the full SHA e3dd295View commit details -
Configuration menu - View commit details
-
Copy full SHA for d7267f6 - Browse repository at this point
Copy the full SHA d7267f6View commit details
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff v2.2.0...v2.3.0