Update all non-major dependencies #594

renovate · 2025-05-13T23:02:53Z

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
davelosert/vitest-coverage-report-action	action	patch	`v2.8.2` -> `v2.8.3`
pnpm (source)	packageManager	minor	`10.10.0` -> `10.12.3`

Release Notes

davelosert/vitest-coverage-report-action (davelosert/vitest-coverage-report-action)

`v2.8.3`

Compare Source

Bug Fixes

deps-dev: bump vite from 6.3.3 to 6.3.4 to fix moderate vulnerability (#486) (21d80d0)
deps: bump undici from 5.28.5 to 5.29.0 to fix low severity alert (#493) (160a0c7)

pnpm/pnpm (pnpm)

`v10.12.3`

Compare Source

Patch Changes

Restore hoisting of optional peer dependencies when installing with an outdated lockfile.
Regression introduced in v10.12.2 by #9648; resolves #9685.

`v10.12.2`

Compare Source

Patch Changes

Fixed hoisting with enableGlobalVirtualStore set to true #9648.
Fix the --help and -h flags not working as expected for the pnpm create command.
The dependency package path output by the pnpm licenses list --json command is incorrect.
Fix a bug in which pnpm deploy fails due to overridden dependencies having peer dependencies causing ERR_PNPM_OUTDATED_LOCKFILE #9595.

`v10.12.1`

Minor Changes

Experimental. Added support for global virtual stores. When enabled, node_modules contains only symlinks to a central virtual store, rather to node_modules/.pnpm. By default, this central store is located at <store-path>/links (you can find the store path by running pnpm store path).

In the central virtual store, each package is hard linked into a directory whose name is the hash of its dependency graph. This allows multiple projects on the system to symlink shared dependencies from this central location, significantly improving installation speed when a warm cache is available.

This is conceptually similar to how NixOS manages packages, using dependency graph hashes to create isolated and reusable package directories.

To enable the global virtual store, set enableGlobalVirtualStore: true in your root pnpm-workspace.yaml, or globally via:
```
pnpm config -g set enable-global-virtual-store true
```
NOTE: In CI environments, where caches are typically cold, this setting may slow down installation. pnpm automatically disables the global virtual store when running in CI.

Related PR: #8190

The pnpm update command now supports updating catalog: protocol dependencies and writes new specifiers to pnpm-workspace.yaml.
Added two new CLI options (--save-catalog and --save-catalog-name=<name>) to pnpm add to save new dependencies as catalog entries. catalog: or catalog:<name> will be added to package.json and the package specifier will be added to the catalogs or catalog[<name>] object in pnpm-workspace.yaml #9425.
Semi-breaking. The keys used for side-effects caches have changed. If you have a side-effects cache generated by a previous version of pnpm, the new version will not use it and will create a new cache instead #9605.
Added a new setting called ci for explicitly telling pnpm if the current environment is a CI or not.

Patch Changes

Sort versions printed by pnpm patch using semantic versioning rules.
Improve the way the error message displays mismatched specifiers. Show differences instead of 2 whole objects #9598.
Revert #9574 to fix a regression #9596.

`v10.11.1`

Compare Source

Patch Changes

Fix an issue in which pnpm deploy --legacy creates unexpected directories when the root package.json has a workspace package as a peer dependency #9550.
Dependencies specified via a URL that redirects will only be locked to the target if it is immutable, fixing a regression when installing from GitHub releases. (#9531)
Installation should not exit with an error if strictPeerDependencies is true but all issues are ignored by peerDependencyRules #9505.
Use pnpm_config_ env variables instead of npm_config_ #9571.
Fix a regression (in v10.9.0) causing the --lockfile-only flag on pnpm update to produce a different pnpm-lock.yaml than an update without the flag.
Let pnpm deploy work in repos with overrides when inject-workspace-packages=true #9283.
Fixed the problem of path loss caused by parsing URL address. Fixes a regression shipped in pnpm v10.11 via #9502.
pnpm -r --silent run should not print out section #9563.

`v10.11.0`

Compare Source

Minor Changes

A new setting added for pnpm init to create a package.json with type=module, when init-type is module. Works as a flag for the init command too #9463.
Added support for Nushell to pnpm setup #6476.
Added two new flags to the pnpm audit command, --ignore and --ignore-unfixable #8474.

Ignore all vulnerabilities that have no solution:
```
> pnpm audit --ignore-unfixable
```
Provide a list of CVE's to ignore those specifically, even if they have a resolution.
```
> pnpm audit --ignore=CVE-2021-1234 --ignore=CVE-2021-5678
```
Added support for recursively running pack in every project of a workspace #4351.

Now you can run pnpm -r pack to pack all packages in the workspace.

Patch Changes

pnpm version management should work, when dangerouslyAllowAllBuilds is set to true #9472.
pnpm link should work from inside a workspace #9506.
Set the default workspaceConcurrency to Math.min(os.availableParallelism(), 4) #9493.
Installation should not exit with an error if strictPeerDependencies is true but all issues are ignored by peerDependencyRules #9505.
Read updateConfig from pnpm-workspace.yaml #9500.
Add support for recursive pack
Remove url.parse usage to fix warning on Node.js 24 #9492.
pnpm run should be able to run commands from the workspace root, if ignoreScripts is set tot true #4858.

Configuration

📅 Schedule: Branch creation - At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday ( * 0-4,22-23 * * 1-5 ), Only on Sunday and Saturday ( * * * * 0,6 ) in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

github-actions · 2025-05-13T23:04:07Z

Coverage Report

Status	Category	Percentage	Covered / Total
🟢	Lines	94.69% (🎯 90%) 🟰 ±0%	2697 / 2848
🟢	Statements	94.69% (🎯 90%) 🟰 ±0%	2697 / 2848
🟢	Functions	96.36% (🎯 90%) 🟰 ±0%	106 / 110
🟢	Branches	93.02% (🎯 90%) ⬇️ -0.01%	640 / 688

File Coverage

File	Stmts	Branches	Functions	Lines	Uncovered Lines
Unchanged Files
src/doctype-shortcut-registry.ts	100%	100%	100%	100%
src/index.ts	93.18%	100%	71.42%	93.18%	79-81, 84-86
src/logger.ts	77.46%	90.9%	81.81%	77.46%	37-46, 93-94, 153-157
src/printer.ts	94.26%	94.23%	100%	94.26%	337-338, 374-375, 524-526, 538-547, 552-565, 613-649, 665-666, 704-705, 790-794, 1143-1144, 1237-1238, 1265, 1274-1275, 1566-1567, 1613-1614, 1939-1945, 1983-1988
src/options/common.ts	100%	100%	100%	100%
src/options/constants.ts	100%	100%	100%	100%
src/options/converge.ts	100%	60%	100%	100%
src/options/index.ts	100%	100%	100%	100%
src/options/pug-attribute-separator.ts	89.74%	75%	100%	89.74%	52-55
src/options/pug-class-location.ts	100%	100%	100%	100%
src/options/pug-class-notation.ts	100%	100%	100%	100%
src/options/pug-closing-bracket-indent-depth.ts	100%	100%	100%	100%
src/options/pug-comment-preserve-spaces.ts	100%	100%	100%	100%
src/options/pug-explicit-div.ts	100%	100%	100%	100%
src/options/pug-framework.ts	100%	100%	100%	100%
src/options/pug-id-notation.ts	100%	100%	100%	100%
src/options/pug-preserve-attribute-brackets.ts	100%	100%	100%	100%
src/options/pug-preserve-whitespace.ts	100%	100%	100%	100%
src/options/pug-single-file-component-indentation.ts	100%	100%	100%	100%
src/options/pug-wrap-attributes.ts	100%	100%	100%	100%
src/options/types.ts	100%	100%	100%	100%
src/options/attribute-sorting/index.ts	100%	100%	100%	100%
src/options/attribute-sorting/utils.ts	95.69%	94.44%	100%	95.69%	82-83, 94-95
src/options/empty-attributes/index.ts	100%	100%	100%	100%
src/options/empty-attributes/types.ts	100%	100%	100%	100%
src/options/empty-attributes/utils.ts	100%	100%	100%	100%
src/utils/angular.ts	100%	100%	100%	100%
src/utils/common.ts	89.67%	86.11%	100%	89.67%	19-20, 27-28, 56-57, 258-259, 262-263, 269-272, 331-332
src/utils/script-mime-types.ts	87.5%	83.33%	100%	87.5%	42-43, 49-50
src/utils/svelte.ts	100%	100%	100%	100%
src/utils/vue.ts	100%	100%	100%	100%

Generated in workflow #715 for commit 4696010 by the Vitest Coverage Report Action

renovate bot requested a review from Shinigami92 as a code owner May 13, 2025 23:02

renovate bot added the dependencies Pull requests that update a dependency file label May 13, 2025

renovate bot force-pushed the renovate/all-minor-patch branch from cf662f2 to 52965b3 Compare May 19, 2025 09:23

renovate bot changed the title ~~Update pnpm to v10.11.0~~ Update all non-major dependencies May 19, 2025

renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 9aa361b to a094a1c< 8000 /a> Compare June 8, 2025 17:36

renovate bot force-pushed the renovate/all-minor-patch branch from a094a1c to a249bf4 Compare June 23, 2025 03:34

Update all non-major dependencies

4696010

renovate bot force-pushed the renovate/all-minor-patch branch from a249bf4 to 4696010 Compare June 24, 2025 16:46

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Update all non-major dependencies #594

Update all non-major dependencies #594

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Update all non-major dependencies #594

Are you sure you want to change the base?

Update all non-major dependencies #594

Uh oh!

Conversation

Uh oh!

Release Notes

v2.8.3

Bug Fixes

v10.12.3

Patch Changes

v10.12.2

Patch Changes

v10.12.1

Minor Changes

Patch Changes

v10.11.1

Patch Changes

v10.11.0

Minor Changes

Patch Changes

Configuration

Uh oh!

Uh oh!

Coverage Report

Uh oh!

Uh oh!

`v2.8.3`

`v10.12.3`

`v10.12.2`

`v10.12.1`

`v10.11.1`

`v10.11.0`