Bump the metalsmith group with 2 updates #2966
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
dependencies
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/metalsmith-cf5bdcf2d3
branch
2 times, most recently
from
b5d5e67
to
6489583
Compare
✅ You can preview this change here:
To edit notification comments on pull requests, go to your Netlify site configuration. |
|
@domoscargin Mind if I ask you to review this? Remember we renamed The plugin It means we can:
|
Bumps the metalsmith group with 2 updates: [@metalsmith/in-place](https://github.com/metalsmith/in-place) and [jstransformer-nunjucks](https://github.com/jstransformers/jstransformer-nunjucks). Updates `@metalsmith/in-place` from 4.6.0 to 5.0.0 - [Release notes](https://github.com/metalsmith/in-place/releases) - [Changelog](https://github.com/metalsmith/in-place/blob/main/CHANGELOG.md) - [Commits](metalsmith/in-place@v4.6.0...v5.0.0) Updates `jstransformer-nunjucks` from 1.1.0 to 1.2.0 - [Release notes](https://github.com/jstransformers/jstransformer-nunjucks/releases) - [Changelog](https://github.com/jstransformers/jstransformer-nunjucks/blob/master/CHANGELOG.md) - [Commits](jstransformers/jstransformer-nunjucks@1.1.0...1.2.0) --- updated-dependencies: - dependency-name: "@metalsmith/in-place" dependency-type: direct:development update-type: version-update:semver-major dependency-group: metalsmith - dependency-name: jstransformer-nunjucks dependency-type: direct:development update-type: version-update:semver-minor dependency-group: metalsmith ... Signed-off-by: dependabot[bot] <[email protected]>
colinrotherham
force-pushed
the
dependabot/npm_and_yarn/metalsmith-cf5bdcf2d3
branch
from
8222db1
to
11f4bad
Compare
|
Rebased, still no build output changes 👍 |
| renderer: new DesignSystemRenderer() // Markdown renderer | ||
|
|
||
| // Custom markdown renderer | ||
| renderer: new DesignSystemRenderer() |
There was a problem hiding this comment.
Our custom renderer uses a separate marked install - we had some issues in the past around keeping that in sync with jstransformer-marked. Right now, that's using v4.3.0 of marked, whereas the custom renderer is using v5.0.2.
Though I guess metalsmith-markdown also uses an internal version of marked (v4.3.0 at the mo), so it's probably not a problem since the dependencies are the same. The explicit transform option in inPlace is really helpful in explaining what's using what here, so hopefully any issues would be easier to debug in the future.
There was a problem hiding this comment.
@domoscargin Good point. Shall I drop that last commit, one for another day?
There was a problem hiding this comment.
Nah, keep it - it's the same issue but we drop a dependency, so an improvement in that sense!
There was a problem hiding this comment.
Brill, will do
For reference, the dependencies are still the same (which helps)
Before
├─┬ @metalsmith/[email protected]
│ └── [email protected]
└── [email protected]After
├─┬ [email protected]
│ └── [email protected]
└── [email protected]| const permalinks = require('@metalsmith/permalinks') // apply a permalink pattern to files | ||
| const postcss = require('@metalsmith/postcss') | ||
| const sass = require('@metalsmith/sass') // convert Sass files to CSS using Dart Sass | ||
| const { glob } = require('glob') // Match files using glob patterns | ||
| const Metalsmith = require('metalsmith') // static site generator | ||
| const canonical = require('metalsmith-canonical') // add a canonical url property to pages | ||
| const renamer = require('metalsmith-renamer') // rename files |
Bumps the metalsmith group with 2 updates: @metalsmith/in-place and jstransformer-nunjucks.
Updates
@metalsmith/in-placefrom 4.6.0 to 5.0.0Release notes
Sourced from
@metalsmith/in-place's releases.Changelog
Sourced from
@metalsmith/in-place's changelog.Commits
0e456e2Release 5.0.053d8036chore: update devDependenciesa87f265Renames default export to inPlace for better intellisense287dda6refactor: moves utils to own file & makes them privatee99cdc5ci: fix tests on Windows22cff02Updates README (aligned with other core plugins)8788f47Closes #179: adds extname option & reworks multiple transform-per-file feature7400b27Adds Typescript typesa9f7ac2chore: correct & fix transform option test13f7fffUpdates README.md & documents transform optionUpdates
jstransformer-nunjucksfrom 1.1.0 to 1.2.0Release notes
Sourced from jstransformer-nunjucks's releases.
Changelog
Sourced from jstransformer-nunjucks's changelog.
Commits
5d612f4chore: prepare CHANGELOG.md, package.json for release 1.2.0ed75c52Refactors filter, extension & globals resolution & addresses lint issues3ff0075test: add a simple test for nunjucks globals3a14b98Fixes security vulnerabilities, upgrades xo 0.47 -> 0.5577bf0d1Replaces legacy extend-shallow with Object.assign90f7fb2Updates Nunjucks from 3.2.3 -> 3.2.4bee26b2ci: upgrade GH actions & Node versions8585074Fix typo in readme CI badgef0e83dachore: rename xo posttest to lint, fails on old Node versions27e5858chore: try fixing CI Node version failureDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually