Bump patch-package from 6.4.7 to 7.0.0

[dependabot]

Bumps patch-package from 6.4.7 to 7.0.0.

Release notes

Sourced from patch-package's releases.

v7.0.0

7.0.0

Breaking changes

• Bump yaml to fix security issue. Required bumping minimum node version from 8 to 14. (contribution from @​mayank99 in #463)

Other changes

• Bump cross-spawn (contribution from @​stianjensen in #457)
• Replace is-ci with ci-info (contribution from @​paescuj in #446)
• Make version number parsing more robust (contribution from @​MHekert in #361)

v6.5.1

Special thanks to @​orta again for putting this release together.

• Improve error message for missing lockfile entry (contribution from @​Andarist and @​farskid in #439)
• Fix creating patches for github dependencies (contribution from @​dijonkitchen in #444)
• Improve yarn 2 support by copying .yarn dir when creating patch (contribution from @​bdwain in #438)
• Upgrade fs-extra (contribution from @​stianjensen in #441)
• Add support for nmp lockfile v2 (contribution from @​anas10 in #434)

ds300/patch-package@v6.5.0...v6.5.1

v6.5.0

• fix runIntegrationTest 120d85d
• update README 6b2ec57
• Merge pull request #345 from mvargeson/mvargeson/issue-314/error-on-warn 86ed9f6
• Merge pull request #422 from Serjobas/patch-1 fe6138b
• Update LICENSE 4afe391
• Update outdated LICENSE year 9e30dc4
• Merge pull request #301 from bill2004158/bill2004158-fix-new-line-for-windows 9ab4e66
• Merge pull request #359 from MHekert/tests/getPackageVersion 745757d
• Merge pull request #331 from orta/no_dt 639b9c8
• Merge pull request #402 from jimmyltsinn/master 1486859
• Merge pull request #390 from milahu/patch-2 63bc500
• Update README.md 6fc78ff
• Merge pull request #395 from tye-singwa/fix/git-diff-prefixes e16546c
• Merge pull request #363 from maman/feature/add-yarn-berry-compatibility bb628da
• Merge pull request #412 from tapanprakasht/master 7c87e05
• Apply suggestions from code review b80d96a
• Merge pull request #389 from stianjensen/bump-chalk 896827d
• Upgrade minimist library to fix security issue in previous version 1fbec42
• dereference symlink on copying .npmrc and .yarnrc 263f37e
• explicitly specify git diff prefixes 7985637
• fix excludePaths: exclude only package.json 6088b95
• Bump Chalk to 4.x 300f471
• FEAT: simplify appLockFile handling b4dad0b
• Add yarn berry compatibility d28b55a

... (truncated)

Changelog

Sourced from patch-package's changelog.

7.0.0

Breaking changes

• Bump yaml to fix security issue. Required bumping minimum node version from 8 to 14. (contribution from @​mayank99 in #463)

Other changes

• Bump cross-spawn (contribution from @​stianjensen in #457)
• Replace is-ci with ci-info (contribution from @​paescuj in #446)
• Make version number parsing more robust (contribution from @​MHekert in #361)

6.5.1

Special thanks to @​orta again for putting this release together.

• Improve error message for missing lockfile entry (contribution from @​Andarist and @​farskid in #439)
• Fix creating patches for github dependencies (contribution from @​dijonkitchen in #444)
• Improve yarn 2 support by copying .yarn dir when creating patch (contribution from @​bdwain in #438)
• Upgrade fs-extra (contribution from @​stianjensen in #441)
• Add support for nmp lockfile v2 (contribution from @​anas10 in #434)

6.5.0

Special thanks to @​orta for stepping in to get this release out.

• Don't show issue creation tips for DefinitelyTyped (contribution from @​orta in #331)
• Add --error-on-warn flag (contribution from @​mvargeson in #345)
• Add excplit git diff path prefixes (contribution from @​tye-singwa in #395)
• Add yarn 2 compatibility (contribution from @​maman in #363)
• Update license (contribution from @​Serjobas in #422)
• Fix patch file parse but (contribution from @​bill2004158 in #301)
• Add unit tests for getPackageVersion (contribution from @​MHekert in #359)
• Deref symlink on copying .npmrc and .yarnrc in makePatch (contribution from @​jimmyltsinn in 402)
• Fix package.json exclusion (contribution from @​milahu in #390)
• Upgrade minimist (contribution from @​tapanprakasht in #412)
• Upgrade chalk (contribution from @​stianjensen in #389)
• Support .yarnrc (contribution from @​NMinhNguyen in #222)

Commits

• 0b9b015 update changelog
• c02d0b0 v7.0.0
• f975f69 fix error-on-fail test
• 67f929b Merge pull request #361 from MHekert/fix/yarn-lock-coercing-semantic-package-...
• 0dd9c7e Merge pull request #446 from paescuj/replace-is-ci-by-ci-info
• d318190 Merge branch 'master' into replace-is-ci-by-ci-info
• c69b2a2 Merge pull request #457 from stianjensen/bump-cross-spawn
• a1a3231 Merge pull request #465 from ds300/david/update-yaml
• ab86bca update node requirement
• 7921c2c update yaml dep
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #2361 (f345ba8) into main (b9aa3db) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             main    #2361   +/-   ##
=======================================
  Coverage   80.55%   80.55%           
=======================================
  Files          69       69           
  Lines        5668     5668           
  Branches     1330     1272   -58     
=======================================
  Hits         4566     4566           
  Misses        719      719           
  Partials      383      383           

Impacted Files	Coverage Δ
packages/core/src/auto.ts	77.92% <ø> (ø)

[adaptly-bot]

⚠️  patch-package

 Breaking changes

1: Bump yaml to fix security issue

The minimum node version required has been increased from 8 to 14 due to a security fix in the yaml package. This change is not backward-compatible and may require you to update your Node.js version.

👤 Who am I? I am a bot that helps developers to update dependencies by informing if changelogs contain breaking changes or not.

👋 See you again? If you want my help with other dependency updates, add me to your repository.

PS. I hope I didn't bother you - my purpose is to help developers and I won't comment anymore without your request. Feel free to shoot me a message about anything support@adaptly.dev. Cheers.

[dependabot]

Superseded by #2408.