chore(deps-dev): bump np from 9.2.0 to 10.0.7

[dependabot]

Bumps np from 9.2.0 to 10.0.7.

Release notes

Sourced from np's releases.

v10.0.7

• Allow publishConfig.registry to be npm default registry when using Yarn berry (#750) 6c5eee3

sindresorhus/np@v10.0.6...v10.0.7

v10.0.6

• Fix usage with pnpm and --any-branch or --branch (#745) d0c1493

sindresorhus/np@v10.0.5...v10.0.6

v10.0.5

• Fix npm 10 compatibility for real (#744) 34409be

sindresorhus/np@v10.0.4...v10.0.5

v10.0.4

• Fix compatibility with npm 10 (#743) 4caa295

sindresorhus/np@v10.0.3...v10.0.4

v10.0.3

• Fix publish OTP for Yarn Berry (#741) 02f60c7

sindresorhus/np@v10.0.2...v10.0.3

v10.0.2

• Use npm for tagging versions when pnpm is the chosen package manager (#739) 770418f

sindresorhus/np@v10.0.1...v10.0.2

v10.0.1

• Fix compatibility with npm 10 (#737) 9fdebd5

sindresorhus/np@v10.0.0...v10.0.1

v10.0.0

Breaking

• Remove the --yarn flag (#730) 4b3b599
  • The functionality is replaced by --package-manager. See below.

Improvements

• Add --package-manager flag (#730) 4b3b599
  • This acts like the packageManager field in package.json. np will default to reading package.json, and look for lockfiles to determine the best package manager as a last resort.
• Add pnpm support (#730) 4b3b599

sindresorhus/np@v9.2.0...v10.0.0

Commits

• 1965a6b 10.0.7
• 6c5eee3 Allow publishConfig.registry to be npm default registry when using Yarn ber...
• a9e8fc7 10.0.6
• d0c1493 Fix usage with pnpm and --any-branch or --branch (#745)
• d2c66a8 10.0.5
• 34409be Fix npm 10 compatibility for real (#744)
• 5a83ad9 10.0.4
• 4caa295 Fix compatibility with npm 10 (#743)
• ad1a980 10.0.3
• 02f60c7 Fix publish OTP for Yarn Berry (#741)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by CodeRabbit

• 更新内容
  • 将 np 包的版本从 ^9.2.0 更新至 ^10.0.7，可能带来新特性和改进。

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
select	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Aug 31, 2024 3:18pm

[coderabbitai]

Walkthrough

此次更改涉及 package.json 文件中 np 包的版本更新，从 ^9.2.0 升级至 ^10.0.7。此修改标志着包的主要版本升级，可能包含新特性、改进或与之前版本相比的重大更改。该更改不会直接影响代码库的整体结构或功能，但可能会影响依赖解析和与其他包的兼容性。

Changes

文件	更改摘要
package.json	更新 np 包版本从 ^9.2.0 到 ^10.0.7

Poem

在草地上跳跃的小兔子，
新版本来啦，真是喜气洋洋！
从九到十，变化多多，
依赖更新，心情飞扬！
跳跳乐，乐无穷，
代码更好，欢声笑语常相拥！ 🐇✨

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/np@10.0.7	Transitive: environment, filesystem, shell, unsafe	+23	2.02 MB	sindresorhus

🚮 Removed packages: npm/np@9.2.0)

View full report↗︎

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between e9c42a9 and 8d5df6d.

Files selected for processing (1)

• package.json (1 hunks)

Additional comments not posted (1)

package.json (1)

78-78: 核实新版本的兼容性

已更新 np 包的版本从 ^9.2.0 到 ^10.0.7。这是一个主要版本的更新，可能包含重大更改。建议核实此新版本与项目现有配置和脚本的兼容性，特别是考虑到 --yarn 标志已被移除，而新增了 --package-manager 标志。

请运行以下脚本来核实 np 的新版本是否与现有的发布脚本兼容：

Verification successful

---

确认 np 版本更新的兼容性

在 package.json 中未找到 --yarn 和 --package-manager 标志。这意味着移除 --yarn 标志不会影响当前脚本。然而，建议根据项目需求确认是否需要添加 --package-manager 标志以确保兼容性。

• 请检查项目配置以决定是否需要使用 --package-manager 标志。

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify compatibility of np version 10.0.7 with existing publish scripts.

# Test: Check for usage of deprecated flags in publish scripts.
rg --type json -A 5 $'np --yolo --no-publish' package.json

Length of output: 328

---

Script:

#!/bin/bash
# Description: Check for usage of the --yarn flag and --package-manager flag in package.json scripts.

# Test: Search for the --yarn flag in package.json scripts.
rg --type json '--yarn' package.json

# Test: Search for the --package-manager flag in package.json scripts.
rg --type json '--package-manager' package.json

Length of output: 913

---

Script:

#!/bin/bash
# Description: Correctly check for usage of the --yarn flag and --package-manager flag in package.json scripts.

# Test: Search for the --yarn flag in package.json scripts.
rg '--yarn' package.json

# Test: Search for the --package-manager flag in package.json scripts.
rg '--package-manager' package.json

Length of output: 889

---

Script:

#!/bin/bash
# Description: Correctly check for usage of the --yarn flag and --package-manager flag in package.json scripts.

# Test: Search for the --yarn flag in package.json scripts.
rg '--yarn' package.json

# Test: Search for the --package-manager flag in package.json scripts.
rg '--package-manager' package.json

Length of output: 889

---

Script:

#!/bin/bash
# Description: Correctly check for usage of the --yarn flag and --package-manager flag in package.json scripts.

# Test: Search for the '--yarn' pattern in package.json scripts.
rg "'--yarn'" package.json

# Test: Search for the '--package-manager' pattern in package.json scripts.
rg "'--package-manager'" package.json

Length of output: 80