Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump inquirer from 8.2.6 to 12.5.2 #865

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump inquirer from 8.2.6 to 12.5.2 #865

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 6, 2025
edited
Loading

Bumps inquirer from 8.2.6 to 12.5.2.

Release notes

Sourced from inquirer's releases.

[email protected]

  • README: Add new sponsor
  • Chore: dependency updates

[email protected]

  • Feat (select): Introduce theme.indexMode to control displaying an index prefix in front of each choice. (defaults to hidden)
  • Fix (select): Improve search when number keys are pressed

[email protected]

  • Fix an issue where inquirer would throw if Node is ran with the new --frozen-intrinsics flag.

[email protected]

  • Mark @types/node as an optional peer dependency across all packages.

[email protected]

  • Added new shortcut config to the checkbox prompt. Allows to customize or disable shortcut keys for select all and invert selection.

[email protected]

[email protected]

  • Checkbox prompt: re-added support for an array of default to be provided listing pre-checked checkboxes. This is a legacy interface brought back given this feature removal was an involuntary breaking change during the v12 release. The preferred interface is to provide the checked property to choices { value: 'bar', checked: true }.

[email protected]

  • @types/node is now only a peerDependencies. This reduces the install size of inquirer dramatically for folks not using Typescript. It's unlikely to break your builds if you used TS already, if it does run npm install --dev @types/node/yarn add --dev @types/node.

[email protected]

  • Now exports base utility Typescript types: import type { Question, DistinctQuestion, Answers } from 'inquirer';

You should use as follow to keep the inference working properly:

const questions = [
    { ... }
] as const satisfies Question[];
// If you're not using inquirer plugins, `Question` could alternatively be replaced by `DistinctQuestion` for stricter checks.

[email protected]

  • Fix #1555: when behaviour changed unexpectedly when returning a falsy value.

[email protected]

No technical breaking changes; but we changed the style of the question prefix once the answer is provided. Once a question is answer, the prefix becomes a tick mark (previously it was the same ? as when the prompt is idle.)

This is theme-able, and so can be overwritten to with theme.prefix.

[email protected]

  • Fix the filter option not working.
  • The signal: AbortSignal didn't work with class based prompts (OSS plugins.) Now it should work consistently with legacy style prompts.

... (truncated)

Commits
  • b06133f Publish
  • 1c8a055 Chore: Add graphite sponsor to inquirer README too
  • d367155 Publish
  • 4e2a6b5 Chore(deps-dev): Bump the linting group with 2 updates (#1712)
  • cc5aa8c Chore(deps-dev): Bump the testing group with 3 updates (#1708)
  • db2b7ea Chore: Graphite started sponsoring Inquirer <3 (#1710)
  • e7de655 Chore: Remove invalid auto-merge directives from dependabot.yml
  • a5bb33c Chore(deps): Bump vite from 6.2.3 to 6.2.4 in the npm_and_yarn group (#1707)
  • 721553f Chore(deps-dev): Bump eslint-plugin-unicorn from 57.0.0 to 58.0.0 (#1705)
  • a118b0d Chore(deps-dev): Bump eslint-plugin-prettier from 5.2.3 to 5.2.5 (#1701)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 6, 2025
@socket-security Socket Security
Copy link

socket-security bot commented Apr 6, 2025
edited
Loading

New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/[email protected]12.5.2 Transitive: environment, filesystem, shell +24 5.64 MB danielchatfield, mischah, ruyadorno, ...1 more

🚮 Removed packages: npm/[email protected]

View full report↗︎

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/inquirer-12.5.2 branch 5 times, most recently from 6375130 to 60d29ba Compare April 7, 2025 00:19
@dependabot
Bump inquirer from 8.2.6 to 12.5.2
bb5559f 
Bumps [inquirer](https://github.com/SBoudrias/Inquirer.js) from 8.2.6 to 12.5.2.
- [Release notes](https://github.com/SBoudrias/Inquirer.js/releases)
- [Commits](https://github.com/SBoudrias/Inquirer.js/compare/[email protected]@12.5.2)

---
updated-dependencies:
- dependency-name: inquirer
  dependency-version: 12.5.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/inquirer-12.5.2 branch from 60d29ba to bb5559f Compare April 7, 2025 10:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants