chore(deps): bump dotenv from 16.4.4 to 16.4.5 #119

Merged

dependabot[bot] merged 1 commit from dependabot/npm_and_yarn/dotenv-16.4.5 into main

2024-02-27 14:06:35 +08:00

dependabot[bot] commented

2024-02-26 20:50:15 +08:00

(Migrated from github.com)

Bumps dotenv from 16.4.4 to 16.4.5.

Changelog

Sourced from dotenv's changelog.

16.4.5 (2024-02-19)

Changed

🐞 fix recent regression when using path option. return to historical behavior: do not attempt to auto find .env if path set. (regression was introduced in 16.4.3) #814

Commits

9f3e833 16.4.5
6924177 Merge pull request #814 from motdotla/dont-check-existance
3533420 changelog 🪵
249e5a6 adjust logic to support tests
87fd887 do not check if exists
1146910 rename .env-multiline to .env.multiline
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.4.4 to 16.4.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/motdotla/dotenv/compare/v16.4.4...v16.4.5">16.4.5</a> (2024-02-19)</h2> <h3>Changed</h3> <ul> <li>🐞 fix recent regression when using <code>path</code> option. return to historical behavior: do not attempt to auto find <code>.env</code> if <code>path</code> set. (regression was introduced in <code>16.4.3</code>) <a href="https://redirect.github.com/motdotla/dotenv/pull/814">#814</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/motdotla/dotenv/commit/9f3e83352ec6ba912161748a2fd15b07829430e2"><code>9f3e833</code></a> 16.4.5</li> <li><a href="https://github.com/motdotla/dotenv/commit/69241772b6f37af8e388f61916334d84ec0deeb7"><code>6924177</code></a> Merge pull request <a href="https://redirect.github.com/motdotla/dotenv/issues/814">#814</a> from motdotla/dont-check-existance</li> <li><a href="https://github.com/motdotla/dotenv/commit/353342048cae3621f8abb3a23e00af880ab2c69f"><code>3533420</code></a> changelog 🪵</li> <li><a href="https://github.com/motdotla/dotenv/commit/249e5a64f612d59aaac74f594f951024490d9765"><code>249e5a6</code></a> adjust logic to support tests</li> <li><a href="https://github.com/motdotla/dotenv/commit/87fd887e31b913d334ef820f27737d80b28389ee"><code>87fd887</code></a> do not check if exists</li> <li><a href="https://github.com/motdotla/dotenv/commit/1146910932ed1dd19c2c6506f7fc6373047c1321"><code>1146910</code></a> rename .env-multiline to .env.multiline</li> <li>See full diff in <a href="https://github.com/motdotla/dotenv/compare/v16.4.4...v16.4.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dotenv&package-manager=npm_and_yarn&previous-version=16.4.4&new-version=16.4.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

Commenting is not possible because the repository is archived.

No reviewers