Skip to content

dependency: bump dependabot-omnibus from 0.148.2 to 0.148.3

George Koltsov requested to merge dependabot-bundler-dependabot-omnibus-0.148.3 into master

Bumps dependabot-omnibus from 0.148.2 to 0.148.3.

Changelog

Sourced from dependabot-omnibus's changelog.

v0.148.3, 19 May 2021

  • fix(common): skip validation on non-git sources
  • fix(npm/yarn): prefer private registries over public ones
Commits
  • 564cfac Merge pull request #3755 from dependabot/v0.148.3-release-notes
  • c84afd8 v0.148.3
  • ecfabf6 Merge pull request #3718 from xlgmokha/updates-1373
  • 665b970 test: stub request to npm registry
  • baa0c4e Update npm_and_yarn/spec/dependabot/npm_and_yarn/update_checker_spec.rb
  • 1439a8c Update npm_and_yarn/lib/dependabot/npm_and_yarn/metadata_finder.rb
  • 8a6ec9b refactor: move .central_registry? method to registry finder
  • 89b8e23 fix: favour private registries and remove raise
  • c178a47 fix: prefer private registries over public ones
  • 3524c6c Merge pull request #3753 from dependabot/v0.148.2-release-notes
  • See full diff in compare view

Dependabot commands
You can trigger Dependabot actions by commenting on this MR
  • @dependabot-bot rebase will rebase this MR
  • @dependabot-bot recreate will recreate this MR rewriting all the manual changes and resolving conflicts

📝 Latest allure report

Edited by George Koltsov

Merge request reports