From ccc297e1f6d6c5d6d54f134d8fc97b88a9ea2a81 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Jan 2025 12:43:18 -0800
Subject: [PATCH 1/9] chore: bump @npmcli/template-oss from 4.23.4 to 4.23.6
(#132)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.23.4 to 4.23.6.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.23.6
4.23.6
(2024-12-11)
Bug Fixes
v4.23.5
4.23.5
(2024-11-25)
Bug Fixes
Dependencies
Chores
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.23.6
(2024-12-11)
Bug Fixes
4.23.5
(2024-11-25)
Bug Fixes
Dependencies
Chores
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
package.json | 4 ++--
release-please-config.json | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package.json b/package.json
index 35b5629..4c8a28e 100644
--- a/package.json
+++ b/package.json
@@ -32,7 +32,7 @@
"license": "ISC",
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.23.4",
+ "@npmcli/template-oss": "4.23.6",
"tap": "^16.0.1"
},
"dependencies": {
@@ -43,7 +43,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.23.4",
+ "version": "4.23.6",
"allowedPackages": [
"eslint",
"eslint-plugin-node",
diff --git a/release-please-config.json b/release-please-config.json
index a1676b9..c56fd1d 100644
--- a/release-please-config.json
+++ b/release-please-config.json
@@ -33,5 +33,5 @@
"package-name": ""
}
},
- "prerelease-type": "pre"
+ "prerelease-type": "pre.0"
}
From 17468c9113c42f3b47528bf9410972c1351dc041 Mon Sep 17 00:00:00 2001
From: Michael Smith
Date: Mon, 28 Apr 2025 11:51:34 -0700
Subject: [PATCH 2/9] chore: bump @npmcli/template-oss from 4.23.6 to 4.24.3
(#134)
- **chore: bump @npmcli/template-oss from 4.23.6 to 4.24.3**
- **chore: postinstall workflow updates**
---
.github/workflows/audit.yml | 3 +++
.github/workflows/ci-release.yml | 4 ++++
.github/workflows/ci.yml | 3 +++
.github/workflows/codeql-analysis.yml | 3 +++
.github/workflows/pull-request.yml | 3 +++
.github/workflows/release-integration.yml | 4 ++++
.github/workflows/release.yml | 1 +
.gitignore | 1 +
package.json | 4 ++--
9 files changed, 24 insertions(+), 2 deletions(-)
diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
index a3ae725..85282bd 100644
--- a/.github/workflows/audit.yml
+++ b/.github/workflows/audit.yml
@@ -8,6 +8,9 @@ on:
# "At 08:00 UTC (01:00 PT) on Monday" https://crontab.guru/#0_8_*_*_1
- cron: "0 8 * * 1"
+permissions:
+ contents: read
+
jobs:
audit:
name: Audit Dependencies
diff --git a/.github/workflows/ci-release.yml b/.github/workflows/ci-release.yml
index 673f9ca..d9fcb92 100644
--- a/.github/workflows/ci-release.yml
+++ b/.github/workflows/ci-release.yml
@@ -18,6 +18,10 @@ on:
required: true
type: string
+permissions:
+ contents: read
+ checks: write
+
jobs:
lint-all:
name: Lint All
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index a44b227..b991984 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -12,6 +12,9 @@ on:
# "At 09:00 UTC (02:00 PT) on Monday" https://crontab.guru/#0_9_*_*_1
- cron: "0 9 * * 1"
+permissions:
+ contents: read
+
jobs:
lint:
name: Lint
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 15c8efe..af848e1 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -13,6 +13,9 @@ on:
# "At 10:00 UTC (03:00 PT) on Monday" https://crontab.guru/#0_10_*_*_1
- cron: "0 10 * * 1"
+permissions:
+ contents: read
+
jobs:
analyze:
name: Analyze
diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml
index 7dbdfd4..c69932d 100644
--- a/.github/workflows/pull-request.yml
+++ b/.github/workflows/pull-request.yml
@@ -10,6 +10,9 @@ on:
- edited
- synchronize
+permissions:
+ contents: read
+
jobs:
commitlint:
name: Lint Commits
diff --git a/.github/workflows/release-integration.yml b/.github/workflows/release-integration.yml
index 130578e..9ca9a2b 100644
--- a/.github/workflows/release-integration.yml
+++ b/.github/workflows/release-integration.yml
@@ -19,6 +19,10 @@ on:
PUBLISH_TOKEN:
required: true
+permissions:
+ contents: read
+ id-token: write
+
jobs:
publish:
name: Publish
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 75acebb..53ff3c2 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -244,6 +244,7 @@ jobs:
if: needs.release.outputs.releases
uses: ./.github/workflows/release-integration.yml
permissions:
+ contents: read
id-token: write
secrets:
PUBLISH_TOKEN: ${{ secrets.PUBLISH_TOKEN }}
diff --git a/.gitignore b/.gitignore
index 2bab6d1..dedbc77 100644
--- a/.gitignore
+++ b/.gitignore
@@ -5,6 +5,7 @@
!**/.gitignore
!/.commitlintrc.js
+!/.eslint.config.js
!/.eslintrc.js
!/.eslintrc.local.*
!/.git-blame-ignore-revs
diff --git a/package.json b/package.json
index 4c8a28e..987f93f 100644
--- a/package.json
+++ b/package.json
@@ -32,7 +32,7 @@
"license": "ISC",
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.23.6",
+ "@npmcli/template-oss": "4.24.3",
"tap": "^16.0.1"
},
"dependencies": {
@@ -43,7 +43,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.23.6",
+ "version": "4.24.3",
"allowedPackages": [
"eslint",
"eslint-plugin-node",
From d7194c3643a7c604fd1150bd2600cb0e8efe7cd5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 9 Jul 2025 11:46:32 -0700
Subject: [PATCH 3/9] chore: bump @npmcli/template-oss from 4.24.3 to 4.25.0
(#135)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.24.3 to 4.25.0.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.25.0
4.25.0
(2025-07-08)
Features
v4.24.4
4.24.4
(2025-06-25)
Bug Fixes
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.25.0
(2025-07-08)
Features
4.24.4
(2025-06-25)
Bug Fixes
Commits
Most Recent Ignore Conditions Applied to This Pull
Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| @npmcli/template-oss | [>= 4.24.a, < 4.25] |
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
**Note:** Dependabot was ignoring updates to this dependency, but since
you've updated it yourself we've started tracking it for you again. 🤖
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index 987f93f..2724c6e 100644
--- a/package.json
+++ b/package.json
@@ -32,7 +32,7 @@
"license": "ISC",
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.24.3",
+ "@npmcli/template-oss": "4.25.0",
"tap": "^16.0.1"
},
"dependencies": {
@@ -43,7 +43,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.24.3",
+ "version": "4.25.0",
"allowedPackages": [
"eslint",
"eslint-plugin-node",
From ef09a4f7883cb052bb2a73847b7b7336c7cbe5ec Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Sep 2025 08:16:26 -0700
Subject: [PATCH 4/9] chore: bump @npmcli/template-oss from 4.25.0 to 4.25.1
(#136)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.25.0 to 4.25.1.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.25.1
4.25.1
(2025-09-18)
Bug Fixes
Dependencies
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.25.1
(2025-09-18)
Bug Fixes
Dependencies
Commits
Maintainer changes
This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub
Actions), a new releaser for @npmcli/template-oss since
your current version.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index 2724c6e..e709830 100644
--- a/package.json
+++ b/package.json
@@ -32,7 +32,7 @@
"license": "ISC",
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.25.0",
+ "@npmcli/template-oss": "4.25.1",
"tap": "^16.0.1"
},
"dependencies": {
@@ -43,7 +43,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.25.0",
+ "version": "4.25.1",
"allowedPackages": [
"eslint",
"eslint-plugin-node",
From 5d4818c9c6318ce13d197089454ce2d4f11694ac Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Oct 2025 14:24:13 -0700
Subject: [PATCH 5/9] chore: bump @npmcli/template-oss from 4.25.1 to 4.26.0
(#137)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.25.1 to 4.26.0.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.26.0
4.26.0
(2025-10-16)
Features
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.26.0
(2025-10-16)
Features
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index e709830..78992f2 100644
--- a/package.json
+++ b/package.json
@@ -32,7 +32,7 @@
"license": "ISC",
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.25.1",
+ "@npmcli/template-oss": "4.26.0",
"tap": "^16.0.1"
},
"dependencies": {
@@ -43,7 +43,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.25.1",
+ "version": "4.26.0",
"allowedPackages": [
"eslint",
"eslint-plugin-node",
From c2ff34d908589fca3c571e51b071f17cbb11089b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 21 Oct 2025 15:31:19 -0700
Subject: [PATCH 6/9] chore: bump @npmcli/template-oss from 4.26.0 to 4.27.1
(#139)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [@npmcli/template-oss](https://github.com/npm/template-oss) from
4.26.0 to 4.27.1.
Release notes
Sourced from @npmcli/template-oss's
releases.
v4.27.1
4.27.1
(2025-10-20)
Bug Fixes
v4.27.0
4.27.0
(2025-10-20)
Features
v4.26.1
4.26.1
(2025-10-20)
Bug Fixes
Changelog
Sourced from @npmcli/template-oss's
changelog.
4.27.1
(2025-10-20)
Bug Fixes
4.27.0
(2025-10-20)
Features
4.26.1
(2025-10-20)
Bug Fixes
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: npm CLI robot
---
package.json | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/package.json b/package.json
index 78992f2..dfaaaf4 100644
--- a/package.json
+++ b/package.json
@@ -32,7 +32,7 @@
"license": "ISC",
"devDependencies": {
"@npmcli/eslint-config": "^5.0.0",
- "@npmcli/template-oss": "4.26.0",
+ "@npmcli/template-oss": "4.27.1",
"tap": "^16.0.1"
},
"dependencies": {
@@ -43,7 +43,7 @@
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
- "version": "4.26.0",
+ "version": "4.27.1",
"allowedPackages": [
"eslint",
"eslint-plugin-node",
From 9e5befa9e9764bb931292c1a6c2a5ea8ad271031 Mon Sep 17 00:00:00 2001
From: Michael Smith
Date: Wed, 22 Oct 2025 14:22:21 -0700
Subject: [PATCH 7/9] fix!: align to npm 11 node engine range
BREAKING CHANGE: `@npmcli/eslint-config` now supports node `^20.17.0 || >=22.9.0`
---
package.json | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/package.json b/package.json
index dfaaaf4..ffbc819 100644
--- a/package.json
+++ b/package.json
@@ -39,7 +39,7 @@
"which": "^5.0.0"
},
"engines": {
- "node": "^18.17.0 || >=20.5.0"
+ "node": "^20.17.0 || >=22.9.0"
},
"templateOSS": {
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
From 185658dc7fca59428644996e0aaff3c2c81a4790 Mon Sep 17 00:00:00 2001
From: Michael Smith
Date: Wed, 22 Oct 2025 14:22:25 -0700
Subject: [PATCH 8/9] chore: template-oss-apply
---
.github/workflows/ci-release.yml | 13 +++++--------
.github/workflows/ci.yml | 13 +++++--------
.github/workflows/post-dependabot.yml | 2 +-
3 files changed, 11 insertions(+), 17 deletions(-)
diff --git a/.github/workflows/ci-release.yml b/.github/workflows/ci-release.yml
index d9fcb92..e9ab5ff 100644
--- a/.github/workflows/ci-release.yml
+++ b/.github/workflows/ci-release.yml
@@ -91,20 +91,17 @@ jobs:
os: windows-latest
shell: cmd
node-version:
- - 18.17.0
- - 18.x
- - 20.5.0
+ - 20.17.0
- 20.x
+ - 22.9.0
- 22.x
exclude:
- platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.17.0
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.x
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 20.5.0
+ node-version: 20.17.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 20.x
+ - platform: { name: macOS, os: macos-13, shell: bash }
+ node-version: 22.9.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 22.x
runs-on: ${{ matrix.platform.os }}
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index b991984..92a33b5 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -67,20 +67,17 @@ jobs:
os: windows-latest
shell: cmd
node-version:
- - 18.17.0
- - 18.x
- - 20.5.0
+ - 20.17.0
- 20.x
+ - 22.9.0
- 22.x
exclude:
- platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.17.0
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 18.x
- - platform: { name: macOS, os: macos-13, shell: bash }
- node-version: 20.5.0
+ node-version: 20.17.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 20.x
+ - platform: { name: macOS, os: macos-13, shell: bash }
+ node-version: 22.9.0
- platform: { name: macOS, os: macos-13, shell: bash }
node-version: 22.x
runs-on: ${{ matrix.platform.os }}
diff --git a/.github/workflows/post-dependabot.yml b/.github/workflows/post-dependabot.yml
index 1ea8693..3a91911 100644
--- a/.github/workflows/post-dependabot.yml
+++ b/.github/workflows/post-dependabot.yml
@@ -54,7 +54,7 @@ jobs:
else
# strip leading slash from directory so it works as a
# a path to the workspace flag
- echo "workspace=-w ${dependabot_dir#/}" >> $GITHUB_OUTPUT
+ echo "workspace=--workspace ${dependabot_dir#/}" >> $GITHUB_OUTPUT
fi
- name: Apply Changes
From f00e40e0b94f5998e9cac625eb4d284c7fe9e97e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
<41898282+github-actions[bot]@users.noreply.github.com>
Date: Thu, 23 Oct 2025 10:22:40 -0700
Subject: [PATCH 9/9] chore: release 6.0.0 (#141)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
:robot: I have created a release *beep* *boop*
---
## [6.0.0](https://github.com/npm/eslint-config/compare/v5.1.0...v6.0.0)
(2025-10-23)
### ⚠️ BREAKING CHANGES
* `@npmcli/eslint-config` now supports node `^20.17.0 || >=22.9.0`
### Bug Fixes
*
[`9e5befa`](https://github.com/npm/eslint-config/commit/9e5befa9e9764bb931292c1a6c2a5ea8ad271031)
[#140](https://github.com/npm/eslint-config/pull/140) align to npm 11
node engine range (@owlstronaut)
### Chores
*
[`185658d`](https://github.com/npm/eslint-config/commit/185658dc7fca59428644996e0aaff3c2c81a4790)
[#140](https://github.com/npm/eslint-config/pull/140) template-oss-apply
(@owlstronaut)
*
[`c2ff34d`](https://github.com/npm/eslint-config/commit/c2ff34d908589fca3c571e51b071f17cbb11089b)
[#139](https://github.com/npm/eslint-config/pull/139) bump
@npmcli/template-oss from 4.26.0 to 4.27.1 (#139) (@dependabot[bot],
@npm-cli-bot)
---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
---
.release-please-manifest.json | 2 +-
CHANGELOG.md | 9 +++++++++
package.json | 2 +-
3 files changed, 11 insertions(+), 2 deletions(-)
diff --git a/.release-please-manifest.json b/.release-please-manifest.json
index affd1ab..a3a12f4 100644
--- a/.release-please-manifest.json
+++ b/.release-please-manifest.json
@@ -1,3 +1,3 @@
{
- ".": "5.1.0"
+ ".": "6.0.0"
}
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 90e5837..d78a67b 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,14 @@
# Changelog
+## [6.0.0](https://github.com/npm/eslint-config/compare/v5.1.0...v6.0.0) (2025-10-23)
+### ⚠️ BREAKING CHANGES
+* `@npmcli/eslint-config` now supports node `^20.17.0 || >=22.9.0`
+### Bug Fixes
+* [`9e5befa`](https://github.com/npm/eslint-config/commit/9e5befa9e9764bb931292c1a6c2a5ea8ad271031) [#140](https://github.com/npm/eslint-config/pull/140) align to npm 11 node engine range (@owlstronaut)
+### Chores
+* [`185658d`](https://github.com/npm/eslint-config/commit/185658dc7fca59428644996e0aaff3c2c81a4790) [#140](https://github.com/npm/eslint-config/pull/140) template-oss-apply (@owlstronaut)
+* [`c2ff34d`](https://github.com/npm/eslint-config/commit/c2ff34d908589fca3c571e51b071f17cbb11089b) [#139](https://github.com/npm/eslint-config/pull/139) bump @npmcli/template-oss from 4.26.0 to 4.27.1 (#139) (@dependabot[bot], @npm-cli-bot)
+
## [5.1.0](https://github.com/npm/eslint-config/compare/v5.0.1...v5.1.0) (2025-01-14)
### Features
* [`2280969`](https://github.com/npm/eslint-config/commit/228096947957416d52918223ea7af4e9c8f22380) [#130](https://github.com/npm/eslint-config/pull/130) max-len: broaden ignore list (#130) (@wraithgar)
diff --git a/package.json b/package.json
index ffbc819..6d510e3 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
{
"name": "@npmcli/eslint-config",
- "version": "5.1.0",
+ "version": "6.0.0",
"description": "eslint config used by the npm cli team",
"main": "lib/index.js",
"bin": {