Skip to content

chore(deps): 20 deps analyzed. Safe minor/patch upgrades: prettier → 2.8.8, meow → 9.#17259

Open
isagoakira wants to merge 1 commit into
react:mainfrom
isagoakira:fix/deps-update-1780106683
Open

chore(deps): 20 deps analyzed. Safe minor/patch upgrades: prettier → 2.8.8, meow → 9.#17259
isagoakira wants to merge 1 commit into
react:mainfrom
isagoakira:fix/deps-update-1780106683

Conversation

@isagoakira

Copy link
Copy Markdown

🔧 依赖维护更新 — react/create-react-app

此 PR 由 Code Legacy Reviver 自动生成🤖

📋 更新摘要

20 deps analyzed. Safe minor/patch upgrades: prettier → 2.8.8, meow → 9.0.5, web-vitals → 2.1.4, lint-staged → 12.5.0, lerna-changelog → 2.2.6, jest → 27.5.1, @testing-library/jest-dom → 5.17.0, @testing-library/react → 12.1.5, fs-extra → 10.1.0, globby → 13.2.4. Major version bumps (puppeteer, lerna, husky, eslint v9, execa v6, fs-extra v11) carry breaking changes — skipped for safety.

📦 变更清单

🟡 jest: ^27.4.3^27.5.1
27.4.3 from 2022, latest 27.x is 27.5.1 with bug fixes. v28/v29 introduce breaking changes (jsdom, transform config) that may require test adjustments.

🟢 puppeteer: ^12.0.1^12.0.1
12.0.1 from 2022 is extremely outdated. However, puppeteer v13+ switched to bundled Chromium and changed the API significantly — manual binary handling breaks. Recommend v21 (bundled Chromium) but requires API review.

🔴 eslint: ^8.3.0^8.57.0
8.3.0 from 2022, v9.x (flat config) introduced breaking changes. Staying on 8.57.x applies all v8 security/bug fixes without config migration.

🟢 lerna: ^4.0.0^4.0.0
v4.0.0 from 2020 is ancient. v5+ switched to nx caching, v7+ requires Node 18. Upgrading would involve migration guide work — risky for a quick bump.

🟢 husky: ^4.3.8^4.3.8
4.3.8 from 2019. v7+ changed hook format and v8+ switched to yarn4/pnpm defaults. Migration is non-trivial, risk of breaking pre-commit hooks.

🟡 globby: ^11.0.4^13.2.4
11.0.4 from 2021, v12+ has minor API changes (ignorePatterns), v13 is stable. Staying on 13.x avoids v14's fast-glob v5 upgrade risk.

🟢 execa: ^5.1.1^5.1.1
5.1.1 from 2021. v6+ changed environment handling and template literal syntax. Breaking changes in v6 make safe upgrade uncertain.

🟡 get-port: ^5.1.1^5.1.1
5.1.1 from 2020. v6 changed default port selection strategy. Minor but may affect behavior — low risk but still a change.

🔴 fs-extra: ^10.0.0^10.1.0
10.0.0 from 2022, latest 10.x is 10.1.0. v11 switched to ESM — major breaking change, not a quick bump.

🔴 prettier: ^2.5.0^2.8.8
2.5.0 from 2021, v2.8.8 is the latest 2.x with all fixes. v3.x (2023) changed config format — stay on 2.x.

🔴 meow: ^9.0.0^9.0.5
9.0.0 from 2021, v9.0.5 is latest 9.x. v11 switched to ESM — avoid for now.

🟢 alex: ^8.2.0^8.2.0
8.2.0 from 2020. v10+ changed config/CLI output. Not a safe quick upgrade.

🔴 @testing-library/jest-dom: ^5.15.1^5.17.0
5.15.1 from 2022, v5.17.0 is latest 5.x. v6 requires @jest/globals typing changes.

🔴 @testing-library/react: ^12.1.2^12.1.5
12.1.2 from 2020, v12.1.5 is latest 12.x. v13+ dropped React 17 support entirely — avoid for React 17 projects.

🟢 @testing-library/user-event: ^13.5.0^13.5.0
13.5.0 from 2021. v14+ changed async API significantly (clock integration). Safe upgrade unclear without testing.

🔴 lint-staged: ^12.1.2^12.5.0
12.1.2 from 2022, v12.5.0 is latest 12.x. v13+ requires ESM and Node 16+ — v12.5.0 is safe terminus.

🟢 multimatch: ^5.0.0^5.0.0
5.0.0 from 2018. v6+ updated to fast-glob v3. Behavior may differ — leave for now.

🔴 web-vitals: ^2.1.2^2.1.4
2.1.2 from 2021, v2.1.4 is latest 2.x with bug fixes. v3.x changed attribution API.

🔴 lerna-changelog: ^2.2.0^2.2.6
2.2.0 from 2020, v2.2.6 is latest 2.x. No v3 — small package, safe patch bump.

🟡 tempy: ^1.0.1^1.0.1
1.0.1 from 2020. v3.x switched to ESM. Stick with 1.x.

⚠️ 风险等级

🟡 Medium

📝 文件变更

  • package.json

Generated by Code Legacy Reviver

@meta-cla meta-cla Bot added the CLA Signed label May 30, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

1 participant