Commit cfdcb05
authored
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?v=4&size=40){kind=avatar}
Bump @microsoft/rush from 5.109.2 to 5.164.0 (#244)
Bumps
[@microsoft/rush](https://github.com/microsoft/rushstack/tree/HEAD/apps/rush)
from 5.109.2 to 5.164.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/microsoft/rushstack/blob/main/apps/rush/CHANGELOG.md"><code>@microsoft/rush</code>'s
changelog</a>.</em></p>
<blockquote>
<h2>5.164.0</h2>
<p>Tue, 16 Dec 2025 21:49:00 GMT</p>
<h3>Minor changes</h3>
<ul>
<li>Hash full shrinkwrap entry to detect sub-dependency resolution
changes</li>
</ul>
<h3>Updates</h3>
<ul>
<li>Fix an issue where ProjectChangeAnalyzer checked the pnpm-lock.yaml
file in the default subspace only, when it should consider all
subspaces.</li>
<li>Log a warning if Git-tracked symbolic links are encountered during
repo state analysis.</li>
<li>Add support for defining pnpm catalog config.</li>
</ul>
<h2>5.163.0</h2>
<p>Tue, 25 Nov 2025 17:04:05 GMT</p>
<h3>Minor changes</h3>
<ul>
<li>Added the ability to select projects via path, e.g. <code>rush build
--to path:./my-project</code> or <code>rush build --only
path:/some/absolute/path</code></li>
<li>Add project-level parameter ignoring to prevent unnecessary cache
invalidation. Projects can now use "parameterNamesToIgnore" in
"rush-project.json" to exclude custom command-line parameters
that don't affect their operations.</li>
</ul>
<h3>Updates</h3>
<ul>
<li>Extract CredentialCache API out into
"<code>@rushstack/credential-cache</code>". Reference
directly in plugins to avoid pulling in all of
"<code>@rushstack/rush-sdk</code>" unless necessary.</li>
<li>Add subspaceName to the output of the <code>rush list</code>
command</li>
</ul>
<h2>5.162.0</h2>
<p>Sat, 18 Oct 2025 00:06:36 GMT</p>
<h3>Updates</h3>
<ul>
<li>Fork npm-check to address npm audit CVE</li>
</ul>
<h2>5.161.0</h2>
<p>Fri, 17 Oct 2025 23:22:50 GMT</p>
<h3>Updates</h3>
<ul>
<li>Add an <code>allowOversubscription</code> option to the command
definitions in <code>common/config/rush/command-line.json</code> to
prevent running tasks from exceeding concurrency.</li>
<li>Add support for PNPM's minimumReleaseAge setting to help mitigate
supply chain attacks</li>
<li>Enable prerelease version matching in bridge-package command</li>
<li>Fix an issue where <code>rush add --make-consistent ...</code> may
drop the <code>implicitlyPreferredVersions</code> and
<code>ensureConsistentVersions</code> properties from
<code>common/config/rush/common-versions.json</code>.</li>
<li>Treat intermittent ignored redis errors as warnings and allow build
to continue.</li>
</ul>
<h2>5.160.1</h2>
<p>Fri, 03 Oct 2025 22:25:25 GMT</p>
<h3>Updates</h3>
<ul>
<li>Fix an issue with validation of the <code>pnpm-lock.yaml</code>
<code>packageExtensionsChecksum</code> field in pnpm v10.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/microsoft/rushstack/commit/b65048ddf033b9a41624a1a8832a2f117a1cedcd"><code>b65048d</code></a>
Bump versions [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/727f45dab9a968991628090f164585bdde4d5462"><code>727f45d</code></a>
Update changelogs [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/3ae648cfdbd1b343190782e8eb329bb2180474da"><code>3ae648c</code></a>
Bump versions [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/aeef9b17c090318fe69f35172de050d4be7fdb34"><code>aeef9b1</code></a>
Update changelogs [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/0fd5a1595446db79ee845ce70a44e3a09873bfc3"><code>0fd5a15</code></a>
Bump versions [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/3ae0848bfafbbb4407c37f92d96402dfebfee65c"><code>3ae0848</code></a>
Update changelogs [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/a963054bddab03dc09c5fe114479e48494a7b182"><code>a963054</code></a>
Bump versions [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/ed45275bc335ec6f323fcc3df4b9782adb269567"><code>ed45275</code></a>
Update changelogs [skip ci]</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/79f243413a2c3e7f7b6d184e78d1a377c1d05685"><code>79f2434</code></a>
Bump ESLint (<a
href="https://github.com/microsoft/rushstack/tree/HEAD/apps/rush/issues/5408">#5408</a>)</li>
<li><a
href="https://github.com/microsoft/rushstack/commit/1f3e785156789ba08d79bb4a32a7ec492a95e5a3"><code>1f3e785</code></a>
Bump versions [skip ci]</li>
<li>Additional commits viewable in <a
href="https://github.com/microsoft/rushstack/commits/@microsoft/rush_v5.164.0/apps/rush">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| @microsoft/rush | [>= 5.113.a, < 5.114] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>1 parent 9a9dec3 commit cfdcb05
2 files changed
Lines changed: 18 additions & 21 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
65 | 65 | | |
66 | 66 | | |
67 | 67 | | |
68 | | - | |
| 68 | + | |
69 | 69 | | |
70 | 70 | | |
71 | 71 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
1 | | - | |
2 | 1 | | |
3 | | - | |
4 | | - | |
5 | | - | |
6 | | - | |
7 | | - | |
8 | | - | |
9 | | - | |
10 | | - | |
11 | | - | |
12 | | - | |
13 | | - | |
14 | | - | |
15 | | - | |
16 | | - | |
17 | | - | |
18 | | - | |
19 | | - | |
20 | | - | |
21 | | - | |
| 2 | + | |
| 3 | + | |
| 4 | + | |
| 5 | + | |
| 6 | + | |
| 7 | + | |
| 8 | + | |
| 9 | + | |
| 10 | + | |
| 11 | + | |
| 12 | + | |
| 13 | + | |
| 14 | + | |
| 15 | + | |
| 16 | + | |
| 17 | + | |
| 18 | + | |
0 commit comments