Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[deps]: Lock file maintenance #12978

Merged
merged 2 commits into from
Jan 30, 2025
Merged

[deps]: Lock file maintenance #12978

merged 2 commits into from
Jan 30, 2025

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jan 20, 2025
edited
Loading

This PR contains the following updates:

Update Change
lockFileMaintenance All locks refreshed

🔧 This Pull Request updates lock files to use the latest dependency versions.

Configuration

📅 Schedule: Branch creation - "every 2nd week starting on the 2 week of the year before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate Renovate
Copy link
Contributor Author

renovate bot commented Jan 20, 2025
edited
Loading

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json
npm error code ERESOLVE
npm error ERESOLVE unable to resolve dependency tree
npm error
npm error While resolving: @bitwarden/[email protected]
npm error Found: [email protected]
npm error node_modules/react
npm error   peerOptional react@"^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0-beta" from @storybook/[email protected]
npm error   node_modules/@storybook/blocks
npm error     peerOptional @storybook/blocks@"^8.0.0 || ^8.1.0-0 || ^8.2.0-0 || ^8.3.0-0 || ^8.4.0-0 || ^8.5.0-0 || ^8.6.0-0" from @storybook/[email protected]
npm error     node_modules/@storybook/addon-designs
npm error       dev @storybook/addon-designs@"8.0.4" from the root project
npm error   peer react@"^19.0.0" from [email protected]
npm error   node_modules/react-dom
npm error     peerOptional react-dom@"^16.8.0 || ^17.0.0 || ^18.0.0 || ^19.0.0-beta" from @storybook/[email protected]
npm error     node_modules/@storybook/blocks
npm error       peerOptional @storybook/blocks@"^8.0.0 || ^8.1.0-0 || ^8.2.0-0 || ^8.3.0-0 || ^8.4.0-0 || ^8.5.0-0 || ^8.6.0-0" from @storybook/[email protected]
npm error       node_modules/@storybook/addon-designs
npm error         dev @storybook/addon-designs@"8.0.4" from the root project
npm error
npm error Could not resolve dependency:
npm error peerOptional react@"^16.8.0 || ^17.0.0 || ^18.0.0" from @storybook/[email protected]
npm error node_modules/@storybook/addon-designs
npm error   dev @storybook/addon-designs@"8.0.4" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /tmp/renovate/cache/others/npm/_logs/2025-01-30T08_56_16_304Z-eresolve-report.txt
npm error A complete log of this run can be found in: /tmp/renovate/cache/others/npm/_logs/2025-01-30T08_56_16_304Z-debug-0.log

@renovate renovate bot requested a review from a team as a code owner January 20, 2025 02:51
@renovate renovate bot requested a review from coroiu January 20, 2025 02:51
@bitwarden-bot bitwarden-bot changed the title [deps]: Lock file maintenance [PM-17320] [deps]: Lock file maintenance Jan 20, 2025
@bitwarden-bot
Copy link

Internal tracking:

@codecov Codecov
Copy link

codecov bot commented Jan 20, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 35.37%. Comparing base (4b45029) to head (360aef4).
Report is 2 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main   #12978      +/-   ##
==========================================
- Coverage   35.38%   35.37%   -0.01%     
==========================================
  Files        3010     3010              
  Lines       91152    91152              
  Branches    16985    16985              
==========================================
- Hits        32254    32247       -7     
- Misses      56396    56403       +7     
  Partials     2502     2502

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@renovate renovate bot changed the title [PM-17320] [deps]: Lock file maintenance [deps]: Lock file maintenance Jan 20, 2025
@renovate renovate bot force-pushed the renovate/lock-file-maintenance branch from d7bbec9 to 8772515 Compare January 27, 2025 13:46
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jan 28, 2025
edited
Loading

Logo
Checkmarx One – Scan Summary & Details715f5e61-85ee-4772-b258-4c1e552e2ffa

Fixed Issues (9)

Great job! The following issues were fixed in this Pull Request

Severity Issue Source File / Package
HIGH CVE-2024-21538 Npm-cross-spawn-7.0.3
MEDIUM Angular_Improper_Type_Pipe_Usage /apps/browser/src/autofill/popup/fido2/fido2-use-browser-link.component.html: 1
MEDIUM CVE-2024-55565 Npm-nanoid-3.3.7
MEDIUM Client_Privacy_Violation /libs/vault/src/components/totp-countdown/totp-countdown.component.ts: 17
MEDIUM Client_Privacy_Violation /libs/vault/src/components/totp-countdown/totp-countdown.component.ts: 16
LOW Client_DOM_Open_Redirect /apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts: 155
LOW Client_DOM_Open_Redirect /apps/web/src/app/billing/organizations/payment-method/organization-payment-method.component.ts: 187
LOW Client_DOM_Open_Redirect /apps/web/src/app/billing/shared/payment-method.component.ts: 155
LOW Client_DOM_Open_Redirect /apps/web/src/app/billing/shared/payment-method.component.ts: 183

@renovate renovate bot force-pushed the renovate/lock-file-maintenance branch from f791b7f to 3d8c9a0 Compare January 30, 2025 08:56
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Jan 30, 2025

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@coroiu coroiu merged commit fef6b39 into main Jan 30, 2025
84 of 85 checks passed
@coroiu coroiu deleted the renovate/lock-file-maintenance branch January 30, 2025 10:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@coroiu coroiu coroiu approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@bitwarden-bot @coroiu