Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps-dev): bump eslint from 9.17.0 to 9.18.0 #74

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps-dev): bump eslint from 9.17.0 to 9.18.0 #74

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 13, 2025
edited
Loading

PR-74 Powered by Pull Request Badge

Bumps eslint from 9.17.0 to 9.18.0.

Release notes

Sourced from eslint's releases.

v9.18.0

Features

  • e84e6e2 feat: Report allowed methods for no-console rule (#19306) (Anna Bocharova)
  • 8efc2d0 feat: unflag TypeScript config files (#19266) (Francesco Trotta)
  • 87a9352 feat: check imports and class names in no-shadow-restricted-names (#19272) (Milos Djermanovic)

Bug Fixes

  • da768d4 fix: correct overrideConfigFile type (#19289) (Francesco Trotta)

Documentation

  • d9c23c5 docs: replace var with const in rule examples (#19325) (Tanuj Kanti)
  • 8e1a898 docs: add tabs to cli code blocks (#18784) (Jay)
  • f3aeefb docs: rewrite using let and const in rule examples (#19320) (PoloSpark)
  • 0b680b3 docs: Update README (GitHub Actions Bot)
  • 98c86a9 docs: Edit this page button link to different branches (#19228) (Tanuj Kanti)
  • 6947901 docs: remove hardcoded edit link (#19323) (Milos Djermanovic)
  • 03f2f44 docs: rewrite var with const in rules examples (#19317) (Thiago)
  • 26c3003 docs: Clarify dangers of eslint:all (#19318) (Nicholas C. Zakas)
  • c038257 docs: add eqeqeq in related rules to no-eq-null (#19310) (루밀LuMir)
  • 89c8fc5 docs: rewrite examples with var using let and const (#19315) (Amaresh S M)
  • db574c4 docs: add missing backticks to no-void (#19313) (루밀LuMir)
  • 8d943c3 docs: add missing backticks to default-case-last (#19311) (루밀LuMir)
  • 36ef8bb docs: rewrite examples with var using let and const (#19298) (Amaresh S M)
  • 1610c9e docs: add missing backticks to no-else-return (#19309) (루밀LuMir)
  • df409d8 docs: Update README (GitHub Actions Bot)
  • 2e84213 docs: Fix Horizontal Scroll Overflow in Rule Description on Mobile View (#19304) (Amaresh S M)
  • 6e7361b docs: replace var with let and const in rule example (#19302) (Tanuj Kanti)
  • 069af5e docs: rewrite var using const in rule examples (#19303) (Kim GyeonWon)
  • 064e35d docs: remove 'I hope to' comments from scope-manager-interface (#19300) (Josh Goldberg ✨)
  • 8e00305 docs: replace var with const in rule examples (#19299) (Tanuj Kanti)
  • a559009 docs: Add warning about extending core rules (#19295) (Nicholas C. Zakas)
  • 0bfdf6c docs: Update README (GitHub Actions Bot)
  • ce0b9ff docs: add navigation link for code explorer (#19285) (Tanuj Kanti)
  • e255cc9 docs: add bluesky icon to footer (#19290) (Tanuj Kanti)
  • 5d64851 docs: remove outdated info about environments (#19296) (Francesco Trotta)
  • eec01f0 docs: switch rule examples config format to languageOptions (#19277) (Milos Djermanovic)
  • b36ca0a docs: Fixing Focus Order by Rearranging Element Sequence (#19241) (Amaresh S M)
  • d122c8a docs: add missing backticks to sort-imports (#19282) (루밀LuMir)
  • 0367a70 docs: update custom parser docs (#19288) (Francesco Trotta)
  • 8c07ebb docs: add border-radius to hX:target selector styles (#19270) (루밀LuMir)
  • eff7c57 docs: add limitation section in no-loop-func (#19287) (Tanuj Kanti)
  • 5db226f docs: add missing backticks in various parts of the documentation (#19269) (루밀LuMir)
  • 789edbb docs: Update README (GitHub Actions Bot)
  • 613c06a docs: mark rules that are frozen with ❄️ (#19231) (Amaresh S M)
  • 43172ec docs: Update README (GitHub Actions Bot)
  • ac8b3c4 docs: fix description of overrideConfigFile option (#19262) (Milos Djermanovic)
  • bbb9b46 docs: Update README (GitHub Actions Bot)
  • 995b492 docs: fix inconsistent divider in rule categories box (#19249) (Tanuj Kanti)
  • f76d05d docs: Refactor search result handling with better event listener cleanup (#19252) (Amaresh S M)
  • c5f3d7d docs: Update README (GitHub Actions Bot)

... (truncated)

Changelog

Sourced from eslint's changelog.

v9.18.0 - January 10, 2025

  • c52be85 chore: upgrade to @eslint/[email protected] (#19330) (Francesco Trotta)
  • 362099c chore: package.json update for @​eslint/js release (Jenkins)
  • 9486141 deps: upgrade @eslint/core and @eslint/plugin-kit (#19329) (Francesco Trotta)
  • d9c23c5 docs: replace var with const in rule examples (#19325) (Tanuj Kanti)
  • 8e1a898 docs: add tabs to cli code blocks (#18784) (Jay)
  • f3aeefb docs: rewrite using let and const in rule examples (#19320) (PoloSpark)
  • 0b680b3 docs: Update README (GitHub Actions Bot)
  • 98c86a9 docs: Edit this page button link to different branches (#19228) (Tanuj Kanti)
  • 6947901 docs: remove hardcoded edit link (#19323) (Milos Djermanovic)
  • 03f2f44 docs: rewrite var with const in rules examples (#19317) (Thiago)
  • 26c3003 docs: Clarify dangers of eslint:all (#19318) (Nicholas C. Zakas)
  • c038257 docs: add eqeqeq in related rules to no-eq-null (#19310) (루밀LuMir)
  • 89c8fc5 docs: rewrite examples with var using let and const (#19315) (Amaresh S M)
  • 495aa49 chore: extract package name from package.json for public interface (#19314) (루밀LuMir)
  • db574c4 docs: add missing backticks to no-void (#19313) (루밀LuMir)
  • 8d943c3 docs: add missing backticks to default-case-last (#19311) (루밀LuMir)
  • 36ef8bb docs: rewrite examples with var using let and const (#19298) (Amaresh S M)
  • 1610c9e docs: add missing backticks to no-else-return (#19309) (루밀LuMir)
  • df409d8 docs: Update README (GitHub Actions Bot)
  • e84e6e2 feat: Report allowed methods for no-console rule (#19306) (Anna Bocharova)
  • 2e84213 docs: Fix Horizontal Scroll Overflow in Rule Description on Mobile View (#19304) (Amaresh S M)
  • 6e7361b docs: replace var with let and const in rule example (#19302) (Tanuj Kanti)
  • 069af5e docs: rewrite var using const in rule examples (#19303) (Kim GyeonWon)
  • 064e35d docs: remove 'I hope to' comments from scope-manager-interface (#19300) (Josh Goldberg ✨)
  • 8e00305 docs: replace var with const in rule examples (#19299) (Tanuj Kanti)
  • a559009 docs: Add warning about extending core rules (#19295) (Nicholas C. Zakas)
  • 0bfdf6c docs: Update README (GitHub Actions Bot)
  • ce0b9ff docs: add navigation link for code explorer (#19285) (Tanuj Kanti)
  • e255cc9 docs: add bluesky icon to footer (#19290) (Tanuj Kanti)
  • 5d64851 docs: remove outdated info about environments (#19296) (Francesco Trotta)
  • eec01f0 docs: switch rule examples config format to languageOptions (#19277) (Milos Djermanovic)
  • b36ca0a docs: Fixing Focus Order by Rearranging Element Sequence (#19241) (Amaresh S M)
  • d122c8a docs: add missing backticks to sort-imports (#19282) (루밀LuMir)
  • 0367a70 docs: update custom parser docs (#19288) (Francesco Trotta)
  • da768d4 fix: correct overrideConfigFile type (#19289) (Francesco Trotta)
  • 8c07ebb docs: add border-radius to hX:target selector styles (#19270) (루밀LuMir)
  • eff7c57 docs: add limitation section in no-loop-func (#19287) (Tanuj Kanti)
  • 8efc2d0 feat: unflag TypeScript config files (#19266) (Francesco Trotta)
  • 87a9352 feat: check imports and class names in no-shadow-restricted-names (#19272) (Milos Djermanovic)
  • 5db226f docs: add missing backticks in various parts of the documentation (#19269) (루밀LuMir)
  • 789edbb docs: Update README (GitHub Actions Bot)
  • 613c06a docs: mark rules that are frozen with ❄️ (#19231) (Amaresh S M)
  • 43172ec docs: Update README (GitHub Actions Bot)
  • ac8b3c4 docs: fix description of overrideConfigFile option (#19262) (Milos Djermanovic)
  • 6fe0e72 chore: update dependency @​eslint/json to ^0.9.0 (#19263) (renovate[bot])
  • bbb9b46 docs: Update README (GitHub Actions Bot)
  • 995b492 docs: fix inconsistent divider in rule categories box (#19249) (Tanuj Kanti)
  • f76d05d docs: Refactor search result handling with better event listener cleanup (#19252) (Amaresh S M)

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by Sourcery

将 ESLint 从 9.17.0 升级到 9.18.0。

构建:

  • 更新 package.jsonpackage-lock.json 以反映 ESLint 版本升级。

日常维护:

  • 将 ESLint 依赖从 9.17.0 升级到 9.18.0。
Original summary in English

Summary by Sourcery

Upgrade ESLint from 9.17.0 to 9.18.0.

Build:

  • Update package.json and package-lock.json to reflect ESLint version bump.

Chores:

  • Bump ESLint dependency from 9.17.0 to 9.18.0.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 13, 2025
@cloudflare-workers-and-pages Cloudflare Workers and Pages
Copy link

cloudflare-workers-and-pages bot commented Jan 13, 2025
edited
Loading

Deploying qinwuyuan with  Cloudflare Pages  Cloudflare Pages

Latest commit: e2c8df0
Status: ✅  Deploy successful!
Preview URL: https://850183e7.qinwuyuan.pages.dev
Branch Preview URL: https://dependabot-npm-and-yarn-esli-lcuf.qinwuyuan.pages.dev

View logs

@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Jan 13, 2025
edited
Loading

⚠️ No Changeset found

Latest commit: e2c8df0

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@pr-code-reviewer PR Code Reviewer
Copy link

pr-code-reviewer bot commented Jan 13, 2025
edited
Loading

👋 Hi there!

Everything looks good!


Automatically generated with the help of gpt-3.5-turbo.
Feedback? Please don't hesitate to drop me an email at [email protected].

@labels-and-badges labels-and-badges bot added NO JIRA This PR does not have a Jira Ticket PR:size/M Denotes a Pull Request that changes 30-99 lines. release This PR is a release labels Jan 13, 2025
@instapr InstaPR
Copy link

instapr bot commented Jan 13, 2025

Feedback on PR:

Overall, looks good!🚀

@github-actions github-actions bot requested a review from ChinaGodMan January 13, 2025 18:19
@github-actions GitHub Actions
Copy link
Contributor

@dependabot[bot] 你好,人民的勤务员将尽快审查合并此次请求!🚀 [自动回复,请勿跟帖]

@sourcery-ai Sourcery AI
Copy link

sourcery-ai bot commented Jan 13, 2025
edited
Loading

Here's the translation to Chinese:

审阅者指南 by Sourcery

此 PR 将 eslint 包从版本 9.17.0 升级到 9.18.0。此更改升级了 @eslint/js 到 9.18.0,升级了 @eslint/core 和 @eslint/plugin-kit,并包含了几个文档更新和错误修复。

由于更改看起来简单,未生成任何图表。

文件级别变更

变更 详情 文件
升级 eslint 包
  • 将 eslint 版本更新到 9.18.0
  • 更新 package-lock.json 以反映变更
 package.json
package-lock.json
提示和命令

与 Sourcery 交互

  • 触发新审阅: 在拉取请求中评论 @sourcery-ai review
  • 继续讨论: 直接回复 Sourcery 的审阅评论。
  • 从审阅评论生成 GitHub 问题: 通过回复评论,要求 Sourcery 创建一个问题。
  • 生成拉取请求标题: 在拉取请求标题的任何位置写 @sourcery-ai 以随时生成标题。
  • 生成拉取请求摘要: 在拉取请求正文的任何位置写 @sourcery-ai summary 以随时生成 PR 摘要。您还可以使用此命令指定摘要应插入的位置。

自定义您的体验

访问您的仪表板以:

  • 启用或禁用审阅功能,如 Sourcery 生成的拉取请求摘要、审阅者指南等。
  • 更改审阅语言。
  • 添加、删除或编辑自定义审阅说明。
  • 调整其他审阅设置。

获取帮助

Original review guide in English

Reviewer's Guide by Sourcery

This PR bumps the eslint package from version 9.17.0 to 9.18.0. This change upgrades @eslint/js to 9.18.0, upgrades @eslint/core and @eslint/plugin-kit, and includes several documentation updates and bug fixes.

No diagrams generated as the changes look simple and do not need a visual representation.

File-Level Changes

Change Details Files
Upgrade eslint package
  • Update eslint version to 9.18.0
  • Update package-lock.json to reflect changes
 package.json
package-lock.json
Tips and commands

Interacting with Sourcery

  • Trigger a new review: Comment @sourcery-ai review on the pull request.
  • Continue discussions: Reply directly to Sourcery's review comments.
  • Generate a GitHub issue from a review comment: Ask Sourcery to create an
    issue from a review comment by replying to it.
  • Generate a pull request title: Write @sourcery-ai anywhere in the pull
    request title to generate a title at any time.
  • Generate a pull request summary: Write @sourcery-ai summary anywhere in
    the pull request body to generate a PR summary at any time. You can also use
    this command to specify where the summary should be inserted.

Customizing Your Experience

Access your dashboard to:

  • Enable or disable review features such as the Sourcery-generated pull request
    summary, the reviewer's guide, and others.
  • Change the review language.
  • Add, remove or edit custom review instructions.
  • Adjust other review settings.

Getting Help

sourcery-ai[bot]
sourcery-ai bot reviewed Jan 13, 2025
View reviewed changes
Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

我们跳过了对这个拉取请求的审查。看起来这是由机器人创建的(嘿,dependabot[bot]!)。我们假设它知道自己在做什么!

Original comment in English

We have skipped reviewing this pull request. It seems to have been created by a bot (hey, dependabot[bot]!). We assume it knows what it's doing!

@codethreat-sast-cloud CodeThreat SAST Cloud
Copy link

🚀 CodeThreat Security Scan Completed for UserScripts

Hello Team,

Great news! We've just completed a thorough security scan for UserScripts, and here's what we found:

Quick Overview

  • Duration: 00:00:44
  • Risk Score: F (This reflects the overall security posture based on the identified issues.)
  • Issues Fixed: 0 (The number of vulnerabilities resolved during this scan.)

🛠 Detailed Vulnerability Analysis

We've identified vulnerabilities across the codebase. Here's a detailed look:

Weakness Name Severity Count
Insecure Random Number Generator High 2
Detect Potential Xss In Template Literals Medium 39
Dynamic Code Execution Alert Critical 10
Redirection Input Validation Medium 1
Missing Timeout In Http Request Calls Low 3

🔗 Software Composition Analysis (SCA) Insights

package-lock.json

Severity Summary: Critical: 0 High: 0 Medium: 0 Low: 0

📈 Next Steps & Full Report

To dive deeper, click here to view the full report. It's essential to review these findings and plan the necessary fixes. If any of the critical/high issues need more discussion, let's set up a quick meeting to strategize our next steps.

🔒 Security isn't just a feature; it's a responsibility. Let's keep our codebase rock solid!

llamapreview[bot]
llamapreview bot reviewed Jan 13, 2025
View reviewed changes
Copy link

@llamapreview llamapreview bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Auto Pull Request Review from LlamaPReview

Review Status: Automated Review Skipped

Dear contributor,

Thank you for your Pull Request. LlamaPReview has analyzed your changes and determined that this PR does not require an automated code review.

Analysis Result:

PR contains only dependency version updates and generated files, requiring no automated code review

We're continuously improving our PR analysis capabilities. Have thoughts on when and how LlamaPReview should perform automated reviews? Share your insights in our GitHub Discussions.

Best regards,
LlamaPReview Team

@labels-and-badges labels-and-badges bot added the PR:CONFLICT This PR has a conflict label Jan 13, 2025
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/eslint-9.18.0 branch from 3bffa1c to 728a538 Compare January 13, 2025 23:03
@codethreat-sast-cloud CodeThreat SAST Cloud
Copy link

🚀 CodeThreat Security Scan Completed for UserScripts

Hello Team,

Great news! We've just completed a thorough security scan for UserScripts, and here's what we found:

Quick Overview

  • Duration: 00:00:44
  • Risk Score: F (This reflects the overall security posture based on the identified issues.)
  • Issues Fixed: 0 (The number of vulnerabilities resolved during this scan.)

🛠 Detailed Vulnerability Analysis

We've identified vulnerabilities across the codebase. Here's a detailed look:

Weakness Name Severity Count
Insecure Random Number Generator High 2
Detect Potential Xss In Template Literals Medium 39
Dynamic Code Execution Alert Critical 10
Redirection Input Validation Medium 1
Missing Timeout In Http Request Calls Low 3

🔗 Software Composition Analysis (SCA) Insights

package-lock.json

Severity Summary: Critical: 0 High: 0 Medium: 0 Low: 0

📈 Next Steps & Full Report

To dive deeper, click here to view the full report. It's essential to review these findings and plan the necessary fixes. If any of the critical/high issues need more discussion, let's set up a quick meeting to strategize our next steps.

🔒 Security isn't just a feature; it's a responsibility. Let's keep our codebase rock solid!

@labels-and-badges labels-and-badges bot removed the PR:CONFLICT This PR has a conflict label Jan 14, 2025
@dependabot
chore(deps-dev): bump eslint from 9.17.0 to 9.18.0
e2c8df0 
Bumps [eslint](https://github.com/eslint/eslint) from 9.17.0 to 9.18.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](eslint/eslint@v9.17.0...v9.18.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/eslint-9.18.0 branch from 728a538 to e2c8df0 Compare January 14, 2025 23:50
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@codethreat-sast-cloud CodeThreat SAST Cloud
Copy link

🚀 CodeThreat Security Scan Completed for UserScripts

Hello Team,

Great news! We've just completed a thorough security scan for UserScripts, and here's what we found:

Quick Overview

  • Duration: 00:00:49
  • Risk Score: F (This reflects the overall security posture based on the identified issues.)
  • Issues Fixed: 0 (The number of vulnerabilities resolved during this scan.)

🛠 Detailed Vulnerability Analysis

We've identified vulnerabilities across the codebase. Here's a detailed look:

Weakness Name Severity Count
Insecure Random Number Generator High 2
Detect Potential Xss In Template Literals Medium 39
Dynamic Code Execution Alert Critical 10
Redirection Input Validation Medium 1
Missing Timeout In Http Request Calls Low 3

🔗 Software Composition Analysis (SCA) Insights

package-lock.json

Severity Summary: Critical: 0 High: 0 Medium: 0 Low: 0

📈 Next Steps & Full Report

To dive deeper, click here to view the full report. It's essential to review these findings and plan the necessary fixes. If any of the critical/high issues need more discussion, let's set up a quick meeting to strategize our next steps.

🔒 Security isn't just a feature; it's a responsibility. Let's keep our codebase rock solid!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@llamapreview llamapreview[bot] llamapreview[bot] left review comments

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

@ChinaGodMan ChinaGodMan Awaiting requested review from ChinaGodMan

Assignees

@ChinaGodMan ChinaGodMan

Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code NO JIRA This PR does not have a Jira Ticket PR:size/M Denotes a Pull Request that changes 30-99 lines. release This PR is a release size/XS
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ChinaGodMan