Skip to content

chore(deps): bump the npm-major group across 1 directory with 2 updates#43

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/npm-major-7480f6826e
Open

chore(deps): bump the npm-major group across 1 directory with 2 updates#43
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/npm-major-7480f6826e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown

Bumps the npm-major group with 2 updates in the / directory: bin-links and tar.

Updates bin-links from 6.0.2 to 7.0.0

Release notes

Sourced from bin-links's releases.

v7.0.0

7.0.0 (2026-05-15)

⚠️ BREAKING CHANGES

  • bin-links now supports node ^22.22.2 || ^24.15.0 || >=26.0.0
  • template-oss-apply
  • man pages listed in a package's man field are no longer linked into the system man path on global install. man <pkg> will no longer work for newly installed global packages. Use the package's own help facilities (e.g. npm help <cmd>) instead.

Features

Bug Fixes

Dependencies

Chores

Changelog

Sourced from bin-links's changelog.

7.0.0 (2026-05-15)

⚠️ BREAKING CHANGES

  • bin-links now supports node ^22.22.2 || ^24.15.0 || >=26.0.0
  • template-oss-apply
  • man pages listed in a package's man field are no longer linked into the system man path on global install. man <pkg> will no longer work for newly installed global packages. Use the package's own help facilities (e.g. npm help <cmd>) instead.

Features

Bug Fixes

Dependencies

Chores

6.0.0 (2025-10-23)

⚠️ BREAKING CHANGES

  • bin-links now supports node ^20.17.0 || >=22.9.0

Bug Fixes

Dependencies

Chores

5.0.0 (2024-09-25)

⚠️ BREAKING CHANGES

  • bin-links now supports node ^18.17.0 || >=20.5.0

Features

Bug Fixes

Dependencies

... (truncated)

Commits
  • eaf7b19 chore: release 7.0.0 (#164)
  • af7684c deps: write-file-atomic@8.0.0
  • a09e74a deps: read-cmd-shim@7.0.0
  • 93ec1ba deps: proc-log@7.0.0
  • 5961e1f deps: npm-normalize-package-bin@6.0.0
  • 47c5a72 deps: cmd-shim@9.0.0
  • 0919da0 chore: template-oss-apply
  • 0d66567 feat!: bump to new node engine range
  • c0aaffc feat!: template-oss-apply
  • 897720a chore: bumping @​npmcli/template-oss from 4.30.0 to 5.1.0
  • Additional commits viewable in compare view

Updates tar from 7.5.13 to 7.5.16

Commits
  • cf21338 7.5.16
  • 21a8220 do not apply PAX header fields to meta entries
  • 52632cf update project deps
  • 302f51f fix inconsequential typo in PENDINGLINKS symbol name
  • 55dbb99 remove some uses of mutate-fs
  • 87cc309 7.5.15
  • 7aef486 fix: regression in pending links detection
  • 6244eb3 7.5.14
  • 9704d8c stricter protection against hardlinks preempting their targets
  • 700734f update workflows and deps
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the npm-major group with 2 updates in the / directory: [bin-links](https://github.com/npm/bin-links) and [tar](https://github.com/isaacs/node-tar).


Updates `bin-links` from 6.0.2 to 7.0.0
- [Release notes](https://github.com/npm/bin-links/releases)
- [Changelog](https://github.com/npm/bin-links/blob/main/CHANGELOG.md)
- [Commits](npm/bin-links@v6.0.2...v7.0.0)

Updates `tar` from 7.5.13 to 7.5.16
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-tar@v7.5.13...v7.5.16)

---
updated-dependencies:
- dependency-name: bin-links
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: npm-major
- dependency-name: tar
  dependency-version: 7.5.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 17, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 27, 2026

Copy link
Copy Markdown
Author

Dependabot can't access a private package registry without explicit configuration. Because of this, Dependabot cannot update this pull request.

1 similar comment
@dependabot @github

dependabot Bot commented on behalf of github Jun 28, 2026

Copy link
Copy Markdown
Author

Dependabot can't access a private package registry without explicit configuration. Because of this, Dependabot cannot update this pull request.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants