[PR #42] [MERGED] Dev #72

New issue

Closed

opened 2026-05-06 16:07:25 +02:00 by BreizhHardware · 0 comments

BreizhHardware commented 2026-05-06 16:07:25 +02:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/BreizhHardware/express-prom-bundle/pull/42
Author: @BreizhHardware
Created: 2/18/2026
Status: ✅ Merged
Merged: 2/18/2026
Merged by: @BreizhHardware

Base: main ← Head: dev

---

📝 Commits (10+)

• 4fe9df6 chore(deps-dev): bump supertest from 7.1.4 to 7.2.2
• a48c02c chore(deps-dev): bump globals from 16.5.0 to 17.3.0
• b1f7ec3 chore(deps-dev): bump koa-connect from 2.1.0 to 2.1.1
• fd90423 chore(deps-dev): bump eslint from 9.39.2 to 10.0.0
• 8c771d4 Merge pull request #32 from BreizhHardware/dependabot/npm_and_yarn/dev/eslint-10.0.0
• 382e6bc Merge pull request #31 from BreizhHardware/dependabot/npm_and_yarn/dev/koa-connect-2.1.1
• 4a4775f Merge pull request #29 from BreizhHardware/dependabot/npm_and_yarn/dev/globals-17.3.0
• 5129d7b Merge pull request #27 from BreizhHardware/dependabot/npm_and_yarn/dev/supertest-7.2.2
• 5d3d77c chore(version): bump version to 8.0.8
• 77b18bb Bump js-yaml in the npm_and_yarn group across 1 directory

📊 Changes

3 files changed (+240 additions, -89 deletions)

View changed files

📝 .github/workflows/release.yml (+4 -2)
📝 package-lock.json (+233 -84)
📝 package.json (+3 -3)

📄 Description

This pull request updates the release workflow and development dependencies, and bumps the package version. The most important changes are grouped below:

Release workflow improvements:

• Added permissions for id-token: write and contents: read to .github/workflows/release.yml, enabling OIDC authentication for publishing.
• Removed the explicit NODE_AUTH_TOKEN environment variable from the npm publish step, likely to use OIDC authentication instead.

Dependency updates:

• Updated eslint from ^9.38.0 to ^10.0.0 and globals from ^16.4.0 to ^17.3.0 in package.json devDependencies.

Version bump:

• Bumped package version from 8.0.7 to 8.0.8 in package.json.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/BreizhHardware/express-prom-bundle/pull/42 **Author:** [@BreizhHardware](https://github.com/BreizhHardware) **Created:** 2/18/2026 **Status:** ✅ Merged **Merged:** 2/18/2026 **Merged by:** [@BreizhHardware](https://github.com/BreizhHardware) **Base:** `main` ← **Head:** `dev` --- ### 📝 Commits (10+) - [`4fe9df6`](https://github.com/BreizhHardware/express-prom-bundle/commit/4fe9df6e6d20c77ab3c6caac9eb1129d5674e29c) chore(deps-dev): bump supertest from 7.1.4 to 7.2.2 - [`a48c02c`](https://github.com/BreizhHardware/express-prom-bundle/commit/a48c02c582ef4e68f75b9dc7f70762334ff11689) chore(deps-dev): bump globals from 16.5.0 to 17.3.0 - [`b1f7ec3`](https://github.com/BreizhHardware/express-prom-bundle/commit/b1f7ec3d8268e825fb4aac642071471df4dd1b4b) chore(deps-dev): bump koa-connect from 2.1.0 to 2.1.1 - [`fd90423`](https://github.com/BreizhHardware/express-prom-bundle/commit/fd904230d281a144af9e3e04cadb4c6b29adfc7a) chore(deps-dev): bump eslint from 9.39.2 to 10.0.0 - [`8c771d4`](https://github.com/BreizhHardware/express-prom-bundle/commit/8c771d49e4408276c6f58af9fc1b905446f37e2c) Merge pull request #32 from BreizhHardware/dependabot/npm_and_yarn/dev/eslint-10.0.0 - [`382e6bc`](https://github.com/BreizhHardware/express-prom-bundle/commit/382e6bc00c6cf1d094975842e01847af10ae5c34) Merge pull request #31 from BreizhHardware/dependabot/npm_and_yarn/dev/koa-connect-2.1.1 - [`4a4775f`](https://github.com/BreizhHardware/express-prom-bundle/commit/4a4775fdd1a71f556b402e7bb304b9ddd86b856f) Merge pull request #29 from BreizhHardware/dependabot/npm_and_yarn/dev/globals-17.3.0 - [`5129d7b`](https://github.com/BreizhHardware/express-prom-bundle/commit/5129d7ba800301ba59a858d0663995f1539d4fc2) Merge pull request #27 from BreizhHardware/dependabot/npm_and_yarn/dev/supertest-7.2.2 - [`5d3d77c`](https://github.com/BreizhHardware/express-prom-bundle/commit/5d3d77c752a26eaf788c1c6c689deaebcbbe73e1) chore(version): bump version to 8.0.8 - [`77b18bb`](https://github.com/BreizhHardware/express-prom-bundle/commit/77b18bb40130a2f885d03c7fbdbb4cfd0869dec1) Bump js-yaml in the npm_and_yarn group across 1 directory ### 📊 Changes **3 files changed** (+240 additions, -89 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/release.yml` (+4 -2) 📝 `package-lock.json` (+233 -84) 📝 `package.json` (+3 -3) </details> ### 📄 Description This pull request updates the release workflow and development dependencies, and bumps the package version. The most important changes are grouped below: **Release workflow improvements:** * Added `permissions` for `id-token: write` and `contents: read` to `.github/workflows/release.yml`, enabling OIDC authentication for publishing. * Removed the explicit `NODE_AUTH_TOKEN` environment variable from the npm publish step, likely to use OIDC authentication instead. **Dependency updates:** * Updated `eslint` from `^9.38.0` to `^10.0.0` and `globals` from `^16.4.0` to `^17.3.0` in `package.json` devDependencies. **Version bump:** * Bumped package version from `8.0.7` to `8.0.8` in `package.json`. --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

BreizhHardware 2026-05-06 16:07:25 +02:00

• closed this issue
• added the
  pull-request
  label

BreizhHardware referenced this issue 2026-05-06 16:07:27 +02:00

[PR #72] [MERGED] chore(deps-dev): bump globals from 17.3.0 to 17.4.0 #81

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dependabot/npm_and_yarn/dev/globals-17.6.0

dependabot/npm_and_yarn/dev/eslint-10.3.0

dependabot/npm_and_yarn/dev/typescript-6.0.3

dependabot/github_actions/dot-github/workflows/dev/actions/github-script-9

dependabot/npm_and_yarn/npm_and_yarn-282a1442c2

dependabot/npm_and_yarn/dev/koa-3.2.0

dev

copilot/sub-pr-9

master

v8.0.11

v8.0.10

v8.0.9

v8.0.7

v8.0.6

v8.0.5

v8.0.4

8.0.0

7.0.2

7.0.1

7.0.0

6.6.0

6.5.0

6.4.1

6.4.0

6.3.6

6.3.5

6.3.4

6.3.3

6.3.2

6.3.1

6.3.0

6.2.0

6.1.0

6.0.0

5.1.5

5.1.4

5.1.3

5.1.2

5.1.1

5.1.0

5.0.2

5.0.1

5.0.0

4.3.0

4.2.1

4.2.0

4.1.0

4.0.0

3.3.0

3.0.0

2.2.0

2.1.0

2.0.0

1.2.3

1.2.1

1.1.8

1.1.7

1.1.5

1.1.6

1.1.4

1.1.3

Labels

Clear labels   

audit

  

audit

  

audit

  

pull-request

Mirrored from GitHub Pull Request

  

security

  

security

  

security

No labels

audit

audit

audit

pull-request

security

security

security

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

BreizhHardware/express-prom-bundle#72

No description provided.