From 73a9531b2648fb5f5e5daa63343c1a0702936bb4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 22 Aug 2023 10:29:05 -0700
Subject: [PATCH] build(deps-dev): bump dotenv from 16.0.3 to 16.3.1 (#18)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.0.3 to
16.3.1.
Changelog
Sourced from dotenv's
changelog.
16.3.1
(2023-06-17)
Added
- Add missing type definitions for
processEnv and
DOTENV_KEY options. #756
16.3.0
(2023-06-16)
Added
- Optionally pass
DOTENV_KEY to options rather than
relying on process.env.DOTENV_KEY. Defaults to
process.env.DOTENV_KEY #754
16.2.0
(2023-06-15)
Added
- Optionally write to your own target object rather than
process.env. Defaults to process.env. #753
- Add import type URL to types file #751
16.1.4
(2023-06-04)
Added
- Added
.github/ to .npmignore #747
16.1.3
(2023-05-31)
Removed
- Removed
browser keys for path,
os, and crypto in package.json. These were set
to false incorrectly as of 16.1. Instead, if using dotenv on the
front-end make sure to include polyfills for path,
os, and crypto. node-polyfill-webpack-plugin
provides these.
16.1.2
(2023-05-31)
Changed
- Exposed private function
_configDotenv as
configDotenv. #744
16.1.1
(2023-05-30)
Added
- Added type definition for
decrypt function
Changed
- Fixed
{crypto: false} in
packageJson.browser
16.1.0
(2023-05-30)
Added
... (truncated)
Commits
b13ca7b
16.3.19bcc2e7
Merge pull request #756
from motdotla/type-fix80fff4b
Add type definition for DOTENV_KEY50163a1
update type file5c7d7f5
Add example demonstrating setting DOTENV_KEY76d3682
16.3.080219ae
Merge pull request #754
from motdotla/dotenv-key-optiondacd450
Add DOTENV_KEY to cli config and environment config optionsf20e646
Add options.DOTENV_KEY5861f6a
Add failing test demonstrating need for DOTENV_KEY option- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
package-lock.json | 11 +++++++----
package.json | 2 +-
2 files changed, 8 insertions(+), 5 deletions(-)
diff --git a/package-lock.json b/package-lock.json
index f7a3183..37e8e60 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -14,7 +14,7 @@
"@octokit/request": "^6.2.5"
},
"devDependencies": {
- "dotenv": "^16.0.3",
+ "dotenv": "^16.3.1",
"esbuild": "^0.19.2"
}
},
@@ -565,12 +565,15 @@
"integrity": "sha512-xmHIy4F3scKVwMsQ4WnVaS8bHOx0DmVwRywosKhaILI0ywMDWPtBSku2HNxRvF7jtwDRsoEwYQSfbxj8b7RlJQ=="
},
"node_modules/dotenv": {
- "version": "16.0.3",
- "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.0.3.tgz",
- "integrity": "sha512-7GO6HghkA5fYG9TYnNxi14/7K9f5occMlp3zXAuSxn7CKCxt9xbNWG7yF8hTCSUchlfWSe3uLmlPfigevRItzQ==",
+ "version": "16.3.1",
+ "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.3.1.tgz",
+ "integrity": "sha512-IPzF4w4/Rd94bA9imS68tZBaYyBWSCE47V1RGuMrB94iyTOIEwRmVL2x/4An+6mETpLrKJ5hQkB8W4kFAadeIQ==",
"dev": true,
"engines": {
"node": ">=12"
+ },
+ "funding": {
+ "url": "https://github.com/motdotla/dotenv?sponsor=1"
}
},
"node_modules/ecdsa-sig-formatter": {
diff --git a/package.json b/package.json
index ed6b2a9..14f9501 100644
--- a/package.json
+++ b/package.json
@@ -15,7 +15,7 @@
"@octokit/request": "^6.2.5"
},
"devDependencies": {
- "dotenv": "^16.0.3",
+ "dotenv": "^16.3.1",
"esbuild": "^0.19.2"
},
"release": {