Skip to content

⬆️ Bump semver, gitmoji-changelog and @semantic-release/npm#6

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-779d693238
Open

⬆️ Bump semver, gitmoji-changelog and @semantic-release/npm#6
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-779d693238

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 5, 2026

Bumps semver, gitmoji-changelog and @semantic-release/npm. These dependencies needed to be updated together.
Updates semver from 5.7.1 to 5.7.1

Commits

Updates semver from 7.3.2 to 7.7.3

Commits

Updates semver from 6.3.0 to 6.3.1

Commits

Updates gitmoji-changelog from 2.1.0 to 2.3.0

Release notes

Sourced from gitmoji-changelog's releases.

v2.3.0

Added

Changed

  • ⬆️ Bump ssri from 6.0.1 to 6.0.2 (#215) [ed4a033]
  • ⬆️ Bump normalize-url from 4.5.0 to 4.5.1 (#219) [9cb9e41]
  • ⬆️ Bump y18n from 3.2.1 to 3.2.2 (#220) [0668d86]
  • ⬆️ Upgrade dependencies using yarn upgrade (#232) [14f55bc]
  • ⬆️ Upgrade vulnerable packages (#230) [27c53bd]

Miscellaneous

  • 👥 Add horaklukas as a contributor for code (#234) [1f94e98]
  • 👥 Add juwit as a contributor for code (#233) [b643004]

v2.2.1

Changed

Fixed

  • 🐛 Fix unsupported key using read-pkg-up (#206) [7a2eb08]

Miscellaneous

v2.2.0

Added

Changed

Fixed

  • 🐛 Fix init command (#204) [a9b1bfe]
  • 🐛 Fix a bug occuring when version is missing in configuration but passed as argument (#190) [20cf369]

Miscellaneous

  • 📝 Add the documentation site (#194) [5e0a971]
  • 🥅 Handle functional errors [9a15406]
  • 📝 Improve documentation about presets (#189) [4e22239]

... (truncated)

Changelog

Sourced from gitmoji-changelog's changelog.

2.3.0 (2022-01-04)

Added

Changed

  • ⬆️ Bump ssri from 6.0.1 to 6.0.2 (#215) [ed4a033]
  • ⬆️ Bump normalize-url from 4.5.0 to 4.5.1 (#219) [9cb9e41]
  • ⬆️ Bump y18n from 3.2.1 to 3.2.2 (#220) [0668d86]
  • ⬆️ Upgrade dependencies using yarn upgrade (#232) [14f55bc]
  • ⬆️ Upgrade vulnerable packages (#230) [27c53bd]

Miscellaneous

  • 👥 Add horaklukas as a contributor for code (#234) [1f94e98]
  • 👥 Add juwit as a contributor for code (#233) [b643004]

2.2.1 (2021-01-21)

Changed

Fixed

  • 🐛 Fix unsupported key using read-pkg-up (#206) [7a2eb08]

Miscellaneous

2.2.0 (2020-12-16)

Added

Changed

Fixed

... (truncated)

Commits

Updates @semantic-release/npm from 7.0.5 to 7.1.3

Release notes

Sourced from @​semantic-release/npm's releases.

v7.1.3

7.1.3 (2021-05-04)

Bug Fixes

  • use NPM_CONFIG_USERCONFIG in get-registry to match auth (#362) (13200ca)

v7.1.2

7.1.2 (2021-05-04)

Bug Fixes

  • deps: update dependency fs-extra to v10 (80fde1e)

v7.1.1

7.1.1 (2021-04-08)

Bug Fixes

  • deps: update dependency normalize-url to v6 (97ca719)

v7.1.0

7.1.0 (2021-03-30)

Features

v7.0.10

7.0.10 (2021-01-17)

Bug Fixes

  • improve error message text for npm tokens (#323) (88e5862)

v7.0.9

7.0.9 (2020-12-03)

Bug Fixes

v7.0.8

7.0.8 (2020-11-17)

... (truncated)

Commits
  • 13200ca fix: use NPM_CONFIG_USERCONFIG in get-registry to match auth (#362)
  • a8b1026 chore(deps): lock file maintenance (#358)
  • 80fde1e fix(deps): update dependency fs-extra to v10
  • 97ca719 fix(deps): update dependency normalize-url to v6
  • adc5c49 chore(deps): lock file maintenance (#352)
  • 60de512 chore(deps): lock file maintenance (#350)
  • a15c017 feat: use npm v7 (#304)
  • 7338fc2 chore(deps): lock file maintenance (#348)
  • cc771b8 docs(readme): fix postpublish script suggestion (#346)
  • 1800e75 chore(deps): update dependency p-retry to v4.4.0 (#345)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
⬆️ Bump semver, gitmoji-changelog and @semantic-release/npm
ab68cbc 
Bumps [semver](https://github.com/npm/node-semver), [gitmoji-changelog](https://github.com/frinyvonnick/gitmoji-changelog) and [@semantic-release/npm](https://github.com/semantic-release/npm). These dependencies needed to be updated together.

Updates `semver` from 5.7.1 to 5.7.1
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.1)

Updates `semver` from 7.3.2 to 7.7.3
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.1)

Updates `semver` from 6.3.0 to 6.3.1
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.1)

Updates `gitmoji-changelog` from 2.1.0 to 2.3.0
- [Release notes](https://github.com/frinyvonnick/gitmoji-changelog/releases)
- [Changelog](https://github.com/frinyvonnick/gitmoji-changelog/blob/master/CHANGELOG.md)
- [Commits](frinyvonnick/gitmoji-changelog@v2.1.0...v2.3.0)

Updates `@semantic-release/npm` from 7.0.5 to 7.1.3
- [Release notes](https://github.com/semantic-release/npm/releases)
- [Commits](semantic-release/npm@v7.0.5...v7.1.3)

---
updated-dependencies:
- dependency-name: semver
  dependency-version: 5.7.1
  dependency-type: indirect
- dependency-name: semver
  dependency-version: 7.7.3
  dependency-type: indirect
- dependency-name: semver
  dependency-version: 6.3.1
  dependency-type: indirect
- dependency-name: gitmoji-changelog
  dependency-version: 2.3.0
  dependency-type: indirect
- dependency-name: "@semantic-release/npm"
  dependency-version: 7.1.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 5, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants