Skip to content

Build(deps): bump globby from 14.1.0 to 16.1.0 #419

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
dependabot merged 1 commit into from
Jan 2, 2026
Merged

Build(deps): bump globby from 14.1.0 to 16.1.0 #419

dependabot merged 1 commit into from
Jan 2, 2026

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 1, 2026
edited
Loading

Bumps globby from 14.1.0 to 16.1.0.

Release notes

Sourced from globby's releases.

v16.1.0

sindresorhus/globby@v16.0.0...v16.1.0

v16.0.0

Breaking

  • Respect parent .gitignore files when gitignore option is enabled b9a9a84
    • When {gitignore: true}, Globby now searches for .gitignore files up to the Git repo root (if detected). This matches Git's actual behavior where parent .gitignore patterns apply to subdirectories. Previously, only .gitignore files within the glob search path were considered. This change could break existing code that relied on the previous, more limited behavior.

Improvements

  • Support negation-only patterns 1273541
  • Respect custom fs implementation from options c2eb272
  • Add some more options to isGitIgnored functions e794ff9
  • Improve error message for invalid cwd option 7535e6d

Fixes

  • Fix {gitignore: true} performance issue fcb07c3
  • Fix bundler compatibility e6c72c9
  • Fix parent directory patterns with gitignore option 11dd2df
  • Fix ignore patterns with parent directory references a58d117
  • Fix types for stats option c10f600

sindresorhus/globby@v15.0.0...v16.0.0

v15.0.0

Breaking

  • Require Node.js 20 4ae42c8

Fixes

  • Fix expandDirectories not working with globstar patterns 98d691a
  • Fix relative paths with gitignore option b4d78d8
  • Fix gitignore patterns in subdirectories not applying recursively 2cb6088
  • Fix TypeScript types for globbyStream to correctly yield strings 1c7f3ed

sindresorhus/globby@v14.1.0...v15.0.0

Commits
  • 70c011b 16.1.0
  • eb78791 Add expandNegationOnlyPatterns option
  • 59e269f Fix: Normalize leading-slash negation patterns before task generation
  • cdbb6a2 16.0.0
  • e6c72c9 Fix bundler compatibility
  • b9a9a84 Respect parent .gitignore files when gitignore option is enabled
  • db9cb72 Add test for suppressErrors option with file patterns
  • 69e0ee7 Add test for ignore option with trailing slashes
  • 11dd2df Fix parent directory patterns with gitignore option
  • e4d0918 Add tests for special characters in directory names
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @gesslar.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 1, 2026
@gesslar
Copy link
Owner

gesslar commented Jan 2, 2026

@dependabot rebase
@dependabot merge

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 2, 2026

Beginning January 27, 2026, Dependabot will no longer support the @dependabot merge command. Please use GitHub's native pull request controls instead. Please see the changelog announcement for additional details.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/globby-16.1.0 branch from 50738b0 to 767f1ca Compare January 2, 2026 00:08
@dependabot
Build(deps): bump globby from 14.1.0 to 16.1.0
5591f71 
Bumps [globby](https://github.com/sindresorhus/globby) from 14.1.0 to 16.1.0.
- [Release notes](https://github.com/sindresorhus/globby/releases)
- [Commits](sindresorhus/globby@v14.1.0...v16.1.0)

---
updated-dependencies:
- dependency-name: globby
  dependency-version: 16.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/globby-16.1.0 branch from 767f1ca to 5591f71 Compare January 2, 2026 00:11
@dependabot dependabot bot merged commit f72f545 into main Jan 2, 2026
4 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/globby-16.1.0 branch January 2, 2026 00:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@gesslar