Copilot/fix lock file pnpm#73
Merged
Merged
Conversation
Bumps [pnpm/action-setup](https://github.com/pnpm/action-setup) from 5.0.0 to 6.0.0. - [Release notes](https://github.com/pnpm/action-setup/releases) - [Commits](pnpm/action-setup@fc06bc1...08c4be7) --- updated-dependencies: - dependency-name: pnpm/action-setup dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Co-Authored-By: Claude <noreply@anthropic.com> Co-authored-by: anchildress1 <6563688+anchildress1@users.noreply.github.com>
- gsap 3.14.2 → 3.15.0 - pixi.js 8.17.1 → 8.18.1 (updated pin) - @playwright/test 1.58.2 → 1.59.1 - @vitest/coverage-v8 4.1.2 → 4.1.5 - vitest 4.1.2 → 4.1.5 - eslint 10.1.0 → 10.2.1 - globals 17.4.0 → 17.5.0 - happy-dom 20.8.9 → 20.9.0 - lefthook 2.1.4 → 2.1.6 - prettier 3.8.1 → 3.8.3 - vite 8.0.5 → 8.0.9 - brace-expansion override 1.1.13 → 1.1.14 - brace-expansion override 2.0.3 → 2.1.0 Co-Authored-By: Claude <noreply@anthropic.com> Co-authored-by: anchildress1 <6563688+anchildress1@users.noreply.github.com>
… 10.30.3 to 10.33.1 Co-Authored-By: Claude <noreply@anthropic.com> Co-authored-by: anchildress1 <6563688+anchildress1@users.noreply.github.com>
Resolves conflicts from old pnpm v11 lockfile branch. Our v10-based lockfile and updated packages take precedence. All CI checks pass. Co-Authored-By: Claude <noreply@anthropic.com> Co-authored-by: anchildress1 <6563688+anchildress1@users.noreply.github.com>
There was a problem hiding this comment.
Pull request overview
Updates core/runtime and dev tooling dependencies and aligns the lockfile and CI to the updated pnpm/dependency graph, primarily to keep builds secure and reproducible.
Changes:
- Bumped runtime deps (
gsap,pixi.js) and refreshed several dev tooling packages (Playwright, Vitest, Vite, ESLint, Prettier, etc.). - Updated
brace-expansionoverrides (viaminimatch) and regeneratedpnpm-lock.yaml. - Updated CI to use
pnpm/action-setupv6 and pin pnpm10.33.1.
Reviewed changes
Copilot reviewed 2 out of 3 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
pnpm-lock.yaml |
Regenerated lockfile reflecting dependency and override updates. |
package.json |
Updated dependency/devDependency versions and override pins. |
.github/workflows/ci.yml |
Updated pnpm setup action and pinned pnpm version used in CI. |
Files not reviewed (1)
- pnpm-lock.yaml: Language not supported
Signed-off-by: Ashley Childress <6563688+anchildress1@users.noreply.github.com>
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This pull request updates several dependencies to their latest versions to ensure improved stability, security, and compatibility. It also updates the CI workflow to use the latest version of
pnpm.Dependency updates:
gsapto^3.15.0andpixi.jsto8.18.1for new features and bug fixes.@playwright/test,@vitest/coverage-v8,eslint,globals,happy-dom,lefthook,prettier,vite, andvitestto their latest versions for better tooling and testing support.CI/CD workflow improvements:
pnpm/action-setupin.github/workflows/ci.ymlfrom versionv5.0.0tov6.0.3and thepnpmversion from10.30.3to10.33.1to ensure the latest package manager features and fixes are used in CI.Security and compatibility:
brace-expansion(used byminimatch) to patch known vulnerabilities and maintain compatibility.