dependabot[bot] opened a new pull request, #13431: URL: https://github.com/apache/cloudstack/pull/13431
Bumps [tar](https://github.com/isaacs/node-tar) to 7.5.16 and updates ancestor dependencies [tar](https://github.com/isaacs/node-tar), [npm-check-updates](https://github.com/raineorshine/npm-check-updates) and [node-gyp](https://github.com/nodejs/node-gyp). These dependencies need to be updated together. Updates `tar` from 6.1.11 to 7.5.16 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/isaacs/node-tar/releases";>tar's releases</a>.</em></p> <blockquote> <h2>v6.1.13</h2> <h2><a href="https://github.com/npm/node-tar/compare/v6.1.12...v6.1.13";>6.1.13</a> (2022-12-07)</h2> <h3>Dependencies</h3> <ul> <li><a href="https://github.com/npm/node-tar/commit/cc4e0ddfe523a0bce383846a67442c637a65d486";><code>cc4e0dd</code></a> <a href="https://redirect.github.com/npm/node-tar/pull/343";>#343</a> bump minipass from 3.3.6 to 4.0.0</li> </ul> <h2>v6.1.12</h2> <h2><a href="https://github.com/npm/node-tar/compare/v6.1.11...v6.1.12";>6.1.12</a> (2022-10-31)</h2> <h3>Bug Fixes</h3> <ul> <li><a href="https://github.com/npm/node-tar/commit/57493ee66ece50d62114e02914282fc37be3a91a";><code>57493ee</code></a> <a href="https://redirect.github.com/npm/node-tar/pull/332";>#332</a> ensuring close event is emited after stream has ended (<a href="https://github.com/webark";><code>@webark</code></a>)</li> <li><a href="https://github.com/npm/node-tar/commit/b003c64f624332e24e19b30dc011069bb6708680";><code>b003c64</code></a> <a href="https://redirect.github.com/npm/node-tar/pull/314";>#314</a> replace deprecated String.prototype.substr() (<a href="https://redirect.github.com/isaacs/node-tar/issues/314";>#314</a>) (<a href="https://github.com/CommanderRoot";><code>@CommanderRoot</code></a>, <a href="https://github.com/lukekarrys";><code>@lukekarrys</code></a>)</li> </ul> <h3>Documentation</h3> <ul> <li><a href="https://github.com/npm/node-tar/commit/f12992932f171ea248b27fad95e7d489a56d31ed";><code>f129929</code></a> <a href="https://redirect.github.com/npm/node-tar/pull/313";>#313</a> remove dead link to benchmarks (<a href="https://redirect.github.com/isaacs/node-tar/issues/313";>#313</a>) (<a href="https://github.com/yetzt";><code>@yetzt</code></a>)</li> <li><a href="https://github.com/npm/node-tar/commit/c1faa9f44001dfb0bc7638b2850eb6058bd56a4a";><code>c1faa9f</code></a> add examples/explanation of using tar.t (<a href="https://github.com/isaacs";><code>@isaacs</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md";>tar's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>7.5</h2> <ul> <li>Added <code>zstd</code> compression support.</li> <li>Consistent TOCTOU behavior in sync t.list</li> <li>Only read from ustar block if not specified in Pax</li> <li>Fix sync tar.list when file size reduces while reading</li> <li>Sanitize absolute linkpaths properly</li> <li>Prevent writing hardlink entries to the archive ahead of their file target</li> </ul> <h2>7.4</h2> <ul> <li>Deprecate <code>onentry</code> in favor of <code>onReadEntry</code> for clarity.</li> </ul> <h2>7.3</h2> <ul> <li>Add <code>onWriteEntry</code> option</li> </ul> <h2>7.2</h2> <ul> <li>DRY the command definitions into a single <code>makeCommand</code> method, and update the type signatures to more appropriately infer the return type from the options and arguments provided.</li> </ul> <h2>7.1</h2> <ul> <li>Update minipass to v7.1.0</li> <li>Update the type definitions of <code>write()</code> and <code>end()</code> methods on <code>Unpack</code> and <code>Parser</code> classes to be compatible with the NodeJS.WritableStream type in the latest versions of <code>@types/node</code>.</li> </ul> <h2>7.0</h2> <ul> <li>Drop support for node <18</li> <li>Rewrite in TypeScript, provide ESM and CommonJS hybrid interface</li> <li>Add tree-shake friendly exports, like <code>import('tar/create')</code> and <code>import('tar/read-entry')</code> to get individual functions or classes.</li> <li>Add <code>chmod</code> option that defaults to false, and deprecate <code>noChmod</code>. That is, reverse the default option regarding explicitly setting file system modes to match tar entry settings.</li> <li>Add <code>processUmask</code> option to avoid having to call <code>process.umask()</code> when <code>chmod: true</code> (or <code>noChmod: false</code>) is set.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/isaacs/node-tar/commit/cf213384ac558b539c07c830ed7cca5ffc9e8550";><code>cf21338</code></a> 7.5.16</li> <li><a href="https://github.com/isaacs/node-tar/commit/21a822027658c8063542be330530bbecdf0dbbfe";><code>21a8220</code></a> do not apply PAX header fields to meta entries</li> <li><a href="https://github.com/isaacs/node-tar/commit/52632cf38fdbdbbc7ab86184d68a85b11fdb0970";><code>52632cf</code></a> update project deps</li> <li><a href="https://github.com/isaacs/node-tar/commit/302f51ff3f8eefeccc06be4caf7d0de9b7c321d7";><code>302f51f</code></a> fix inconsequential typo in PENDINGLINKS symbol name</li> <li><a href="https://github.com/isaacs/node-tar/commit/55dbb99b27640bb12b2ac059b26883c23523b3e3";><code>55dbb99</code></a> remove some uses of mutate-fs</li> <li><a href="https://github.com/isaacs/node-tar/commit/87cc309f13c21d598b0b833235d387a252455058";><code>87cc309</code></a> 7.5.15</li> <li><a href="https://github.com/isaacs/node-tar/commit/7aef486f0d21c10fd7790b16b1b28f04648cf334";><code>7aef486</code></a> fix: regression in pending links detection</li> <li><a href="https://github.com/isaacs/node-tar/commit/6244eb33846bbd407443f5d0e339bd8c91663cd6";><code>6244eb3</code></a> 7.5.14</li> <li><a href="https://github.com/isaacs/node-tar/commit/9704d8c6f639573775133cbbd541aba83cb46c9c";><code>9704d8c</code></a> stricter protection against hardlinks preempting their targets</li> <li><a href="https://github.com/isaacs/node-tar/commit/700734f9aeb113bcc5f1400d81b8be7d499e54a2";><code>700734f</code></a> update workflows and deps</li> <li>Additional commits viewable in <a href="https://github.com/isaacs/node-tar/compare/v6.1.11...v7.5.16";>compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~isaacs";>isaacs</a>, a new releaser for tar since your current version.</p> </details> <details> <summary>Install script changes</summary> <p>This version adds <code>prepare</code> script that runs during installation. Review the package contents before updating.</p> </details> <br /> Updates `npm-check-updates` from 6.0.1 to 22.2.3 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/raineorshine/npm-check-updates/releases";>npm-check-updates's releases</a>.</em></p> <blockquote> <h2>v22.2.3</h2> <h2>What's Changed</h2> <ul> <li>build(deps-dev): bump semver from 7.8.0 to 7.8.1 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1760";>raineorshine/npm-check-updates#1760</a></li> <li>build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1781";>raineorshine/npm-check-updates#1781</a></li> <li>build(deps-dev): bump unplugin-dts from 1.0.1 to 1.0.2 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1780";>raineorshine/npm-check-updates#1780</a></li> <li>build(deps-dev): bump eslint-import-resolver-typescript by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1779";>raineorshine/npm-check-updates#1779</a></li> <li>build(deps-dev): bump tsx from 4.22.3 to 4.22.4 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1778";>raineorshine/npm-check-updates#1778</a></li> <li>fix: handle registries missing 'time' metadata during version resolution by <a href="https://github.com/onemen";><code>@onemen</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1763";>raineorshine/npm-check-updates#1763</a></li> <li>Fall back to pnpm global config for minimumReleaseAge cooldown by <a href="https://github.com/Copilot";><code>@Copilot</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1777";>raineorshine/npm-check-updates#1777</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/raineorshine/npm-check-updates/compare/v22.2.2...v22.2.3";>https://github.com/raineorshine/npm-check-updates/compare/v22.2.2...v22.2.3</a></p> <h2>v22.2.2</h2> <h2>What's Changed</h2> <ul> <li>test: use node util to strip ansi in deep test by <a href="https://github.com/terminalchai";><code>@terminalchai</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1769";>raineorshine/npm-check-updates#1769</a></li> <li>build(deps-dev): bump vite from 8.0.13 to 8.0.16 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1774";>raineorshine/npm-check-updates#1774</a></li> <li>Switch from vite-plugin-dts to unplugin-dts by <a href="https://github.com/Copilot";><code>@Copilot</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1749";>raineorshine/npm-check-updates#1749</a></li> <li>test: remove unused temp directory creation by <a href="https://github.com/terminalchai";><code>@terminalchai</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1770";>raineorshine/npm-check-updates#1770</a></li> <li>test: cover Windows spawn command fallback by <a href="https://github.com/terminalchai";><code>@terminalchai</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1771";>raineorshine/npm-check-updates#1771</a></li> <li>build(deps-dev): bump sinon from 21.1.2 to 22.0.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1751";>raineorshine/npm-check-updates#1751</a></li> <li>fix: parse Yarn duration string format for npmMinimalAgeGate by <a href="https://github.com/Copilot";><code>@Copilot</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1768";>raineorshine/npm-check-updates#1768</a></li> <li>build(deps-dev): bump <code>@types/bun</code> from 1.3.13 to 1.3.14 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1754";>raineorshine/npm-check-updates#1754</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 8.59.4 to 8.60.1 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1773";>raineorshine/npm-check-updates#1773</a></li> <li>build(deps-dev): bump mocha from 11.7.5 to 11.7.6 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1753";>raineorshine/npm-check-updates#1753</a></li> <li>build(deps-dev): bump verdaccio from 6.6.0 to 6.7.2 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1759";>raineorshine/npm-check-updates#1759</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/raineorshine/npm-check-updates/compare/v22.2.1...v22.2.2";>https://github.com/raineorshine/npm-check-updates/compare/v22.2.1...v22.2.2</a></p> <h2>v22.2.1</h2> <h2>What's Changed</h2> <ul> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1727";>raineorshine/npm-check-updates#1727</a></li> <li>build(deps-dev): bump verdaccio from 6.5.2 to 6.6.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1728";>raineorshine/npm-check-updates#1728</a></li> <li>build(deps-dev): bump yaml from 2.8.4 to 2.9.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1729";>raineorshine/npm-check-updates#1729</a></li> <li>fix: normalize blank-line spacing between packages in --deep mode by <a href="https://github.com/terminalchai";><code>@terminalchai</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1738";>raineorshine/npm-check-updates#1738</a></li> <li>Fix TypeError when running ncu from a subdirectory without a package.json by <a href="https://github.com/Copilot";><code>@Copilot</code></a> in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1737";>raineorshine/npm-check-updates#1737</a></li> <li>build(deps-dev): bump semver from 7.7.4 to 7.8.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1731";>raineorshine/npm-check-updates#1731</a></li> <li>build(deps-dev): bump ini from 6.0.0 to 7.0.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1726";>raineorshine/npm-check-updates#1726</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 8.59.3 to 8.59.4 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1739";>raineorshine/npm-check-updates#1739</a></li> <li>build(deps-dev): bump vite from 8.0.9 to 8.0.13 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1740";>raineorshine/npm-check-updates#1740</a></li> <li>build(deps-dev): bump tsx from 4.21.0 to 4.22.3 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1741";>raineorshine/npm-check-updates#1741</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 8.59.3 to 8.59.4 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1743";>raineorshine/npm-check-updates#1743</a></li> <li>build(deps-dev): bump <code>@types/node</code> from 25.6.0 to 25.9.1 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1744";>raineorshine/npm-check-updates#1744</a></li> <li>build(deps-dev): bump vite-plugin-dts from 4.5.4 to 5.0.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1713";>raineorshine/npm-check-updates#1713</a></li> <li>build(deps-dev): bump <code>@eslint/compat</code> from 2.0.5 to 2.1.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/raineorshine/npm-check-updates/pull/1732";>raineorshine/npm-check-updates#1732</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/raineorshine/npm-check-updates/compare/v22.2.0...v22.2.1";>https://github.com/raineorshine/npm-check-updates/compare/v22.2.0...v22.2.1</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/raineorshine/npm-check-updates/blob/main/CHANGELOG.md";>npm-check-updates's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>This file only documents <strong>major version</strong> releases. For smaller releases, you're stuck reading the <a href="https://github.com/raineorshine/npm-check-updates/commits/main";>commit history</a>.</p> <h2>[22.0.0] - 2026-04-25</h2> <h2>Breaking Changes</h2> <p><code>--cooldown</code> now falls back to the greatest non-prerelease version rather than skipping the upgrade entirely when the latest version falls within the cooldown window.</p> <ul> <li>This <em>only</em> affects <code>--cooldown</code> (or inferred cooldown from <code>min-release-age</code>/<code>minimumReleaseAge</code>/<code>npmMinimalAgeGate</code>).</li> <li>This <em>only</em> affects <code>--target latest</code> (which is the default).</li> </ul> <h3>⚠️ WARNING</h3> <p>In rare circumstances, it is now possible for <code>ncu --cooldown 10</code> to install a version <strong>that was never published to latest</strong>. This is because the npm registry does not store a history of versions published to the <code>latest</code> dist-tag. It is <em>impossible</em> to fall back to an earlier <code>latest</code> version, because there is no record of it. However, we do have a list of all published versions, and it's <em>likely</em> that a boring version like <code>1.0.1</code> was published to <code>latest</code> at some point. Versions like <code>1.0.1-pre.0</code>, <code>1.0.1-beta</code>, <code>1.0.1-build.58157394</code>, etc will be ignored, as you would expect.</p> <p>While npm-check-updates typically takes a conservative approach to version upgrades, following semver exactly and only upgrading to the <code>latest</code> version, falling back to the highest version outside the cooldown window is clearly the more intuitive behavior, and this outweighs the few cases where the results would be undesirable. The discussion in <a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1556";>#1556</a> and the large amount of confusion since the initial release of <code>--cooldown</code> attest to this.</p> <h3>How to opt out of the new behavior</h3> <p>You can opt out of the new behavior by using <code>--target "@latest"</code>. This forces a strict upgrade (or downgrade) to the <code>latest</code> tag only, without any fallback behavior.</p> <p>For granular control, use a custom ncurc function to set the <a href="https://github.com/raineorshine/npm-check-updates#target";>target</a> or disable <a href="https://github.com/raineorshine/npm-check-updates#cooldown";>cooldown</a> for a single package.</p> <p><strong>Full Changelog</strong>: <a href="https://github.com/raineorshine/npm-check-updates/compare/v21.0.3...v22.0.0";>https://github.com/raineorshine/npm-check-updates/compare/v21.0.3...v22.0.0</a></p> <h2>[21.0.0] - 2026-04-14</h2> <h3>⚠️ Breaking Changes</h3> <p>This is a <strong>major breaking change</strong> with significant architectural updates.</p> <h4>ESM Migration & Module System</h4> <ul> <li><strong>Pure ESM:</strong> Converted to pure ESM with dual-build support (ESM/CJS) via Vite 8.</li> <li><strong>Import Syntax:</strong> Programmatic usage now requires named imports or namespace imports. <ul> <li><strong>Old:</strong> <code>import ncu from 'npm-check-updates'</code></li> <li><strong>New:</strong> <code>import * as ncu from 'npm-check-updates'</code> or <code>import { run } from 'npm-check-updates'</code></li> </ul> </li> <li><strong>Node.js Requirements:</strong> Now requires <code>^20.19.0 || ^22.12.0 || >=24.0.0</code>. This is required for native <code>require(esm)</code> support and the Rolldown engine.</li> <li><strong>npm Requirements:</strong> Minimum version increased to <code>>=10.0.0</code>.</li> </ul> <h4>Configuration Files (<code>.ncurc.js</code>)</h4> <ul> <li>Files named <code>.ncurc.js</code> that use <code>module.exports</code> will now fail in projects that are <code>"type": "module"</code>.</li> <li><strong>Fix:</strong> Rename these files to <code>.ncurc.cjs</code> or convert them to use <code>export default</code>.</li> </ul> <h4>Dependency Updates (Pure ESM versions)</h4> <p>| Package | Old Version | New Version |</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/5814d252169b5c5db4feea196895df85ca65abfd";><code>5814d25</code></a> 22.2.3</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/9f711555b27aea67e7d99ec4fc9215c420245f93";><code>9f71155</code></a> docs(cooldown): document package manager cooldown configs</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/f076b61e160c827c9627a2a205d9c9967e381b67";><code>f076b61</code></a> Fall back to pnpm global config for minimumReleaseAge cooldown (<a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1777";>#1777</a>)</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/a0c4e64fa30635278715b4b5839e1cb96f4ca365";><code>a0c4e64</code></a> fix: handle registries missing 'time' metadata during version resolution (<a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1763";>#1763</a>)</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/4a83d682cbab1cd728a5f44558fe470af7be6822";><code>4a83d68</code></a> build(deps-dev): bump tsx from 4.22.3 to 4.22.4 (<a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1778";>#1778</a>)</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/b7458002b7c1ae0990c70614dfb5b6cdaca91bd1";><code>b745800</code></a> build(deps-dev): bump eslint-import-resolver-typescript (<a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1779";>#1779</a>)</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/e1f401a6d4302e6462a0885c39945118120dbe81";><code>e1f401a</code></a> build(deps-dev): bump unplugin-dts from 1.0.1 to 1.0.2 (<a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1780";>#1780</a>)</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/298c6f95c9ca443325167d30843afdbc9c49d6e9";><code>298c6f9</code></a> build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 (<a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1781";>#1781</a>)</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/51c1870bbb8769f429dc9f91fc596e8e54b6aaed";><code>51c1870</code></a> build(deps-dev): bump semver from 7.8.0 to 7.8.1 (<a href="https://redirect.github.com/raineorshine/npm-check-updates/issues/1760";>#1760</a>)</li> <li><a href="https://github.com/raineorshine/npm-check-updates/commit/290d62b933eb7401e6c7664086adc99cbe40ce5e";><code>290d62b</code></a> 22.2.2</li> <li>Additional commits viewable in <a href="https://github.com/raineorshine/npm-check-updates/compare/v6.0.1...v22.2.3";>compare view</a></li> </ul> </details> <details> <summary>Install script changes</summary> <p>This version adds <code>prepare</code> script that runs during installation. Review the package contents before updating.</p> </details> <br /> Updates `node-gyp` from 7.1.2 to 13.0.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nodejs/node-gyp/releases";>node-gyp's releases</a>.</em></p> <blockquote> <h2>v13.0.0</h2> <h2><a href="https://github.com/nodejs/node-gyp/compare/v12.4.0...v13.0.0";>13.0.0</a> (2026-06-10)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li><code>node-gyp</code> now supports node <code>^22.22.2 || ^24.15.0 || >=26.0.0</code></li> </ul> <h3>Features</h3> <ul> <li>bump to new node engine range (<a href="https://github.com/nodejs/node-gyp/commit/b792b8e321e6e56d46c32f4b9adb15e4085c3797";>b792b8e</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li><strong>ci:</strong> update ruff-action version to v4.0.0 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3324";>#3324</a>) (<a href="https://github.com/nodejs/node-gyp/commit/f089669a4c95a3c8b7f435556b226fa66dcd94b7";>f089669</a>)</li> <li>disable LTO for addon builds on Windows (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3331";>#3331</a>) (<a href="https://github.com/nodejs/node-gyp/commit/d30bb6e6fdaf46374de9b9bfe1bf54f49337b052";>d30bb6e</a>)</li> </ul> <h3>Core</h3> <ul> <li><strong>deps:</strong> bump actions/github-script from 8 to 9 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3297";>#3297</a>) (<a href="https://github.com/nodejs/node-gyp/commit/f6a5e458e819f05ddfbba5cbd5589a7a1c80128e";>f6a5e45</a>)</li> <li><strong>deps:</strong> bump googleapis/release-please-action from 4 to 5 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3307";>#3307</a>) (<a href="https://github.com/nodejs/node-gyp/commit/b2cde802487f3b9efd726a1a1cb43650731f9958";>b2cde80</a>)</li> <li>[email protected] (<a href="https://github.com/nodejs/node-gyp/commit/327424ad630dd7007771b19f7b77691b2156a556";>327424a</a>)</li> <li>[email protected] (<a href="https://github.com/nodejs/node-gyp/commit/f6c296b2952e23b7e690b7148c9dc32b25a26ee2";>f6c296b</a>)</li> <li>[email protected] (<a href="https://github.com/nodejs/node-gyp/commit/11a8b109f805f13129302508c219607167a8e9ea";>11a8b10</a>)</li> </ul> <h3>Miscellaneous</h3> <ul> <li>add commit-lint (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3325";>#3325</a>) (<a href="https://github.com/nodejs/node-gyp/commit/6fb6c11eae1258eddd478956a20f0cb154dd4553";>6fb6c11</a>)</li> </ul> <h2>v12.4.0</h2> <h2><a href="https://github.com/nodejs/node-gyp/compare/v12.3.0...v12.4.0";>12.4.0</a> (2026-05-15)</h2> <h3>Features</h3> <ul> <li>update gyp-next to v0.22.2 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3316";>#3316</a>) (<a href="https://github.com/nodejs/node-gyp/commit/8ea71e5a0d5577f8f780df7597fa1f94089e1be4";>8ea71e5</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>retry downloads on retryable errors (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3308";>#3308</a>) (<a href="https://github.com/nodejs/node-gyp/commit/0793489b961c2cbf6c6b2182d968d0c262c3b573";>0793489</a>)</li> <li>stop testing end-of-life Node.js v20 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3315";>#3315</a>) (<a href="https://github.com/nodejs/node-gyp/commit/5c0ec47797a18d3e65f0c4c83e5812289191cfe1";>5c0ec47</a>)</li> <li>test on Node.js v26 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3314";>#3314</a>) (<a href="https://github.com/nodejs/node-gyp/commit/0e65639baa8b64b5fecec3820a4f07dc7c4a42ad";>0e65639</a>)</li> </ul> <h3>Miscellaneous</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/nodejs/node-gyp/blob/main/CHANGELOG.md";>node-gyp's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/nodejs/node-gyp/compare/v12.4.0...v13.0.0";>13.0.0</a> (2026-06-10)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li><code>node-gyp</code> now supports node <code>^22.22.2 || ^24.15.0 || >=26.0.0</code></li> </ul> <h3>Features</h3> <ul> <li>bump to new node engine range (<a href="https://github.com/nodejs/node-gyp/commit/b792b8e321e6e56d46c32f4b9adb15e4085c3797";>b792b8e</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li><strong>ci:</strong> update ruff-action version to v4.0.0 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3324";>#3324</a>) (<a href="https://github.com/nodejs/node-gyp/commit/f089669a4c95a3c8b7f435556b226fa66dcd94b7";>f089669</a>)</li> <li>disable LTO for addon builds on Windows (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3331";>#3331</a>) (<a href="https://github.com/nodejs/node-gyp/commit/d30bb6e6fdaf46374de9b9bfe1bf54f49337b052";>d30bb6e</a>)</li> </ul> <h3>Core</h3> <ul> <li><strong>deps:</strong> bump actions/github-script from 8 to 9 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3297";>#3297</a>) (<a href="https://github.com/nodejs/node-gyp/commit/f6a5e458e819f05ddfbba5cbd5589a7a1c80128e";>f6a5e45</a>)</li> <li><strong>deps:</strong> bump googleapis/release-please-action from 4 to 5 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3307";>#3307</a>) (<a href="https://github.com/nodejs/node-gyp/commit/b2cde802487f3b9efd726a1a1cb43650731f9958";>b2cde80</a>)</li> <li>[email protected] (<a href="https://github.com/nodejs/node-gyp/commit/327424ad630dd7007771b19f7b77691b2156a556";>327424a</a>)</li> <li>[email protected] (<a href="https://github.com/nodejs/node-gyp/commit/f6c296b2952e23b7e690b7148c9dc32b25a26ee2";>f6c296b</a>)</li> <li>[email protected] (<a href="https://github.com/nodejs/node-gyp/commit/11a8b109f805f13129302508c219607167a8e9ea";>11a8b10</a>)</li> </ul> <h3>Miscellaneous</h3> <ul> <li>add commit-lint (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3325";>#3325</a>) (<a href="https://github.com/nodejs/node-gyp/commit/6fb6c11eae1258eddd478956a20f0cb154dd4553";>6fb6c11</a>)</li> </ul> <h2><a href="https://github.com/nodejs/node-gyp/compare/v12.3.0...v12.4.0";>12.4.0</a> (2026-05-15)</h2> <h3>Features</h3> <ul> <li>update gyp-next to v0.22.2 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3316";>#3316</a>) (<a href="https://github.com/nodejs/node-gyp/commit/8ea71e5a0d5577f8f780df7597fa1f94089e1be4";>8ea71e5</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>retry downloads on retryable errors (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3308";>#3308</a>) (<a href="https://github.com/nodejs/node-gyp/commit/0793489b961c2cbf6c6b2182d968d0c262c3b573";>0793489</a>)</li> <li>stop testing end-of-life Node.js v20 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3315";>#3315</a>) (<a href="https://github.com/nodejs/node-gyp/commit/5c0ec47797a18d3e65f0c4c83e5812289191cfe1";>5c0ec47</a>)</li> <li>test on Node.js v26 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3314";>#3314</a>) (<a href="https://github.com/nodejs/node-gyp/commit/0e65639baa8b64b5fecec3820a4f07dc7c4a42ad";>0e65639</a>)</li> </ul> <h3>Miscellaneous</h3> <ul> <li>add workflow_dispatch trigger to tests workflow (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3299";>#3299</a>) (<a href="https://github.com/nodejs/node-gyp/commit/b2fcdcdd6aebdf0ab6d7d296fcabccf188883e01";>b2fcdcd</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nodejs/node-gyp/commit/866daafcca3a41ef1f2c2e414671db6abe29e3e1";><code>866daaf</code></a> chore(main): release 13.0.0 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3323";>#3323</a>)</li> <li><a href="https://github.com/nodejs/node-gyp/commit/f089669a4c95a3c8b7f435556b226fa66dcd94b7";><code>f089669</code></a> fix(ci): update ruff-action version to v4.0.0 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3324";>#3324</a>)</li> <li><a href="https://github.com/nodejs/node-gyp/commit/6fb6c11eae1258eddd478956a20f0cb154dd4553";><code>6fb6c11</code></a> chore: add commit-lint (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3325";>#3325</a>)</li> <li><a href="https://github.com/nodejs/node-gyp/commit/d30bb6e6fdaf46374de9b9bfe1bf54f49337b052";><code>d30bb6e</code></a> fix: disable LTO for addon builds on Windows (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3331";>#3331</a>)</li> <li><a href="https://github.com/nodejs/node-gyp/commit/11a8b109f805f13129302508c219607167a8e9ea";><code>11a8b10</code></a> deps: [email protected]</li> <li><a href="https://github.com/nodejs/node-gyp/commit/f6c296b2952e23b7e690b7148c9dc32b25a26ee2";><code>f6c296b</code></a> deps: [email protected]</li> <li><a href="https://github.com/nodejs/node-gyp/commit/327424ad630dd7007771b19f7b77691b2156a556";><code>327424a</code></a> deps: [email protected]</li> <li><a href="https://github.com/nodejs/node-gyp/commit/b792b8e321e6e56d46c32f4b9adb15e4085c3797";><code>b792b8e</code></a> feat!: bump to new node engine range</li> <li><a href="https://github.com/nodejs/node-gyp/commit/b2cde802487f3b9efd726a1a1cb43650731f9958";><code>b2cde80</code></a> build(deps): bump googleapis/release-please-action from 4 to 5 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3307";>#3307</a>)</li> <li><a href="https://github.com/nodejs/node-gyp/commit/f6a5e458e819f05ddfbba5cbd5589a7a1c80128e";><code>f6a5e45</code></a> build(deps): bump actions/github-script from 8 to 9 (<a href="https://redirect.github.com/nodejs/node-gyp/issues/3297";>#3297</a>)</li> <li>Additional commits viewable in <a href="https://github.com/nodejs/node-gyp/compare/v7.1.2...v13.0.0";>compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~GitHub%20Actions";>GitHub Actions</a>, a new releaser for node-gyp since your current version.</p> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/cloudstack/network/alerts). </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
