You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
#17400109e8d Thanks @iiroj! - Make sure Git's warning about CRLF line-endings doesn't interfere with creating initial backup stash.
v16.3.2
Patch Changes
#17352adaf6c Thanks @iiroj! - Hide the extra cmd window on Windows by spawning tasks without the detached option.
v16.3.1
Patch Changes
#1729cd5d762 Thanks @iiroj! - Remove nano-spawn as a dependency from package.json as it was replaced with tinyexec and is no longer used.
v16.3.0
Minor Changes
#1698feda37a Thanks @iiroj! - Run external processes with tinyexec instead of nano-spawn. nano-spawn replaced execa in lint-staged version 16 to limit the amount of npm dependencies required, but caused some unknown issues related to spawning tasks. Let's hope tinyexec improves the situation.
#16991346d16 Thanks @iiroj! - Remove pidtree as a dependency. When a task fails, its sub-processes are killed more efficiently via the process group on Unix systems, and the taskkill command on Windows.
Patch Changes
#172687467aa Thanks @iiroj! - Incorrect brace expansions like *.{js} (nothing to expand) are detected exhaustively, instead of just a single pass.
v16.2.7
Patch Changes
#1711ef74c8d Thanks @iiroj! - Do not display a "failed to spawn" error message when a task fails normally. This message is reserved for when the task didn't run because spawning it failed.
v16.2.6
Patch Changes
#169333d4502 Thanks @Adrian-Baran-GY! - Fix problems with --continue-on-error option, where tasks might have still been killed (SIGINT) when one of them failed.
v16.2.5
Patch Changes
#16879e02d9d Thanks @iiroj! - Fix unhandled promise rejection when spawning tasks (instead of the tasks themselves failing). Previously when a task failed to spawn, lint-staged also failed and the backup stash might not have been automatically restored.
#17400109e8d Thanks @iiroj! - Make sure Git's warning about CRLF line-endings doesn't interfere with creating initial backup stash.
16.3.2
Patch Changes
#17352adaf6c Thanks @iiroj! - Hide the extra cmd window on Windows by spawning tasks without the detached option.
16.3.1
Patch Changes
#1729cd5d762 Thanks @iiroj! - Remove nano-spawn as a dependency from package.json as it was replaced with tinyexec and is no longer used.
16.3.0
Minor Changes
#1698feda37a Thanks @iiroj! - Run external processes with tinyexec instead of nano-spawn. nano-spawn replaced execa in lint-staged version 16 to limit the amount of npm dependencies required, but caused some unknown issues related to spawning tasks. Let's hope tinyexec improves the situation.
#16991346d16 Thanks @iiroj! - Remove pidtree as a dependency. When a task fails, its sub-processes are killed more efficiently via the process group on Unix systems, and the taskkill command on Windows.
Patch Changes
#172687467aa Thanks @iiroj! - Incorrect brace expansions like *.{js} (nothing to expand) are detected exhaustively, instead of just a single pass.
16.2.7
Patch Changes
#1711ef74c8d Thanks @iiroj! - Do not display a "failed to spawn" error message when a task fails normally. This message is reserved for when the task didn't run because spawning it failed.
This version was pushed to npm by GitHub Actions, a new releaser for lint-staged since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
The reason will be displayed to describe this comment to others. Learn more.
Pull Request Overview
The update to lint-staged v16.4.0 introduces improved process execution via tinyexec and globbing via picomatch. While Codacy indicates the PR is up to standards, there is a critical discrepancy in environment requirements. The new version of lint-staged requires Node.js >=20.17.0, but the project's package.json currently specifies >=20.0.0. This mismatch is the primary issue to address, as it will cause installation or execution failures in environments using older Node 20 LTS releases. The change is technically sound otherwise, but the engine configuration must be aligned to ensure stability.
About this PR
The dependency bump to lint-staged 16.4.0 introduces a requirement for Node.js >= 20.17.0. The project's current engines field (>= 20.0.0) is no longer sufficient and may lead to installation or runtime failures on older Node 20 versions.
Test suggestions
Verify that pre-commit hooks correctly trigger lint-staged and process files using picomatch logic.
Verify that tasks are executed successfully via tinyexec across different operating systems (specifically Windows as per release notes).
Prompt proposal for missing tests
Consider implementing these tests if applicable:
1. Verify that pre-commit hooks correctly trigger lint-staged and process files using picomatch logic.
2. Verify that tasks are executed successfully via tinyexec across different operating systems (specifically Windows as per release notes).
The reason will be displayed to describe this comment to others. Learn more.
🟡 MEDIUM RISK
The updated version of lint-staged requires Node.js >=20.17.0 (as evidenced in package-lock.json), but the project's engines.node field is currently set to >=20.0.0. This discrepancy can cause installation errors or execution failures on earlier Node 20 releases.
Update the engines.node field in package.json to >=20.17.0 to align with the dependency's requirements.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dependenciesPull requests that update a dependency filejavascriptPull requests that update javascript code
0 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
dependabot
Bot
added
dependencies
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
![codacy-production[bot]](https://avatars.githubusercontent.com/in/56611?s=60&v=4){kind=small}
Bumps lint-staged from 15.2.0 to 16.4.0.
Release notes
Sourced from lint-staged's releases.
... (truncated)
Changelog
Sourced from lint-staged's changelog.
... (truncated)
Commits
445f9ddchore(changeset): released91be60docs: update readme to use picomatchb392a9frefactor: extractmatchFilesand add unit tests687fc90refactor: replace micromatch with picomatch26dadf9chore(changeset): release9d6e827build(deps): update dependencies8aea986chore(changeset): release0109e8dfix: strip Git CRLF warning from outputdfd6a7achore(changeset): release2adaf6cfix(Windows): do not spawn tasks as detached since it opens a cmd window on ...Maintainer changes
This version was pushed to npm by GitHub Actions, a new releaser for lint-staged since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)