Skip to content

Comments

Bump tmp and @maizzle/framework in /maizzle#1934

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/maizzle/multi-6c0a8330db
Open

Bump tmp and @maizzle/framework in /maizzle#1934
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/maizzle/multi-6c0a8330db

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 6, 2025

Removes tmp. It's no longer used after updating ancestor dependency @maizzle/framework. These dependencies need to be updated together.

Removes tmp

Updates @maizzle/framework from 4.8.9 to 5.2.2

Release notes

Sourced from @​maizzle/framework's releases.

v5.2.2

  • fix: ensure content paths are unique to each build environment 46c292b
  • build(deps): bump posthtml-component from 2.1.1 to 2.2.0 b405859
  • build(deps): bump posthtml-content from 2.1.1 to 2.1.2 102bb05
  • build(deps): bump posthtml-widows from 1.0.1 to 1.0.2 9f0385c
  • build(deps): bump posthtml-component from 2.1.0 to 2.1.1 9e6fca3
  • build(deps): bump posthtml-safe-class-names from 4.1.1 to 4.1.2 2f33092
  • build(deps): bump posthtml-mso from 3.1.1 to 3.1.2 c880744

maizzle/framework@v5.2.1...v5.2.2

v5.2.1

This is just a maintenance release to update some dependencies.

  • build(deps): bump posthtml-base-url from 3.1.7 to 3.1.8 9144f5d
  • fix: specify correct posthtml-base-url minimum version f2f8434
  • build(deps): bump posthtml-url-parameters from 3.1.2 to 3.1.3 03a33ea
  • build(deps): bump posthtml-markdownit from 3.1.1 to 3.1.2 142002c
  • build(deps): bump posthtml-fetch from 4.0.2 to 4.0.3 ebbdfd7
  • build(deps): bump posthtml-extra-attributes from 3.1.3 to 3.1.4 fc578ec
  • build(deps): bump posthtml-postcss-merge-longhand from 3.1.3 to 3.1.4 3b10c6f

maizzle/framework@v5.2.0...v5.2.1

v5.2.0

This release adds support for configuring multiple static asset folders, allowing you to specify multiple directories from which static assets will be copied to the build output (docs, thanks to @​escral).

  • test: it works with multiple static file sources 66ff13a
  • refactor: make expandLinkTag async 11ae5aa
  • chore: ignore some linter warnings bf6b6a5
  • fix: ignoring production folders as static files sources for server a3e4044
  • refactor: linting configuration dfbf927
  • build(deps-dev): bump @​biomejs/biome from 1.9.2 to 2.0.5 cef605d
  • feature: support an array of objects with source and destination 13d4379
  • build(deps-dev): bump @​vitest/coverage-v8 from 3.2.3 to 3.2.4 4b9ceac
  • build(deps): bump postcss-import from 16.1.0 to 16.1.1 8025675
  • build(deps): bump posthtml-url-parameters from 3.1.1 to 3.1.2 f7f9db7
  • build(deps): bump postcss from 8.5.5 to 8.5.6 2ce0611
  • feat: add deploy docs action 8f38e6c

maizzle/framework@v5.1.0...v5.2.0

v5.1.0

  • feat: use commas instead of slash for css color opacity modifiers f26774b

... (truncated)

Changelog

Sourced from @​maizzle/framework's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[5.2.1] - 2025-06-25

This is just a maintenance release to update dependencies.

  • build(deps): bump posthtml-base-url from 3.1.7 to 3.1.8 9144f5d
  • fix: specify correct posthtml-base-url minimum version f2f8434
  • build(deps): bump posthtml-url-parameters from 3.1.2 to 3.1.3 03a33ea
  • build(deps): bump posthtml-markdownit from 3.1.1 to 3.1.2 142002c
  • build(deps): bump posthtml-fetch from 4.0.2 to 4.0.3 ebbdfd7
  • build(deps): bump posthtml-extra-attributes from 3.1.3 to 3.1.4 fc578ec
  • build(deps): bump posthtml-postcss-merge-longhand from 3.1.3 to 3.1.4 3b10c6f

[5.2.0] - 2025-06-24

This release adds support for configuring multiple static asset folders, allowing you to specify multiple directories from which static assets will be copied to the build output.

Added

  • feature: support an array of objects with source and destination 13d4379

Fixed

  • fix: ignoring production folders as static files sources for server a3e4044

[5.1.0] - 2025-06-13

This release adds support for using Tailwind CSS color opacity modifiers in Gmail by automatically converting modern rgb/a syntax to the legacy, comma-separated syntax.

  • feat: use commas instead of slash for css color opacity modifiers f26774b

[5.0.9] - 2025-06-12

This release fixes an issue where builds failed because preferUnitlessValues (which is on by default) was throwing an error when encountering invalid inline CSS.

  • fix: skip parsing invalid css in preferUnitlessValues e891c14

[5.0.8] - 2025-04-15

This release fixes an issue that prevented the use of posthtml.plugins.before and posthtml.plugins.after simultaneously.

Fixed

  • fix: posthtml.plugins.before 4374706
  • build(deps): bump vite from 6.2.5 to 6.2.6 cafa1f6

... (truncated)

Commits
  • eec1869 5.2.2
  • 46c292b fix: ensure content paths are unique to each build environment
  • c179ca4 Merge pull request #1542 from maizzle/dependabot/npm_and_yarn/master/posthtml...
  • b405859 build(deps): bump posthtml-component from 2.1.1 to 2.2.0
  • 0e42473 Merge pull request #1539 from maizzle/dependabot/npm_and_yarn/master/supertes...
  • e999598 Merge pull request #1540 from maizzle/dependabot/npm_and_yarn/master/biomejs/...
  • 38c47ad build(deps-dev): bump @​biomejs/biome from 2.0.6 to 2.1.1
  • 4f1d3d4 build(deps-dev): bump supertest from 7.1.1 to 7.1.3
  • c3cad8a Merge pull request #1538 from maizzle/dependabot/npm_and_yarn/master/ws-8.18.3
  • 75fc0f0 build(deps): bump ws from 8.18.2 to 8.18.3
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump tmp and @maizzle/framework in /maizzle
94e1f66 
Removes [tmp](https://github.com/raszi/node-tmp). It's no longer used after updating ancestor dependency [@maizzle/framework](https://github.com/maizzle/framework). These dependencies need to be updated together.


Removes `tmp`

Updates `@maizzle/framework` from 4.8.9 to 5.2.2
- [Release notes](https://github.com/maizzle/framework/releases)
- [Changelog](https://github.com/maizzle/framework/blob/master/CHANGELOG.md)
- [Commits](maizzle/framework@v4.8.9...v5.2.2)

---
updated-dependencies:
- dependency-name: tmp
  dependency-version: 
  dependency-type: indirect
- dependency-name: "@maizzle/framework"
  dependency-version: 5.2.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Aug 6, 2025
@Br3nda
Copy link
Contributor

Br3nda commented Nov 27, 2025

@dependabot rebase

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 27, 2025

The dependabot.yml entry that created this PR has been deleted so this PR can't be rebased. Please close the PR so Dependabot can create a new one with the current dependabot.yml.

@Br3nda Br3nda requested review from a team as code owners December 5, 2025 02:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Br3nda