Bump @types/node from 10.17.60 to 22.10.9 #209
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 10.17.60 to 22.10.9. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@types/node" dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
the
dependencies
|
Superseded by #210. |
|
@adangel thoughts on disabling dependabot? Seems noisy and a probably mostly solved by just running |
|
I would keep it running. The main problem is, that nobody (including me) reacts on these PRs - and the CI build is failing with these. The longer they lay around, the old they get and accumulate more problems. I doubt that a simple "npm audit fix" will always work. IMHO, it's better if we keep the dependencies up to date instead of doing a big bang upgrade while releasing and potentially break something. If the upgrades work without problem, you can see it in the github actions result and merging is a simple click. But all the PRs were failing, so I stopped merging them. I'm currently working through the list of PRs and try to fix them (e.g. webpack couldn' be updated, because we still using typescript 3 (!)...) |
Bumps @types/node from 10.17.60 to 22.10.9.
Commits
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)