RobinTail / express-zod-api / 27407651093
100%

DEFAULT BRANCH: master
Ran
Jobs 6
Files 50
Run time 1min
Badge
Embed ▾
README BADGES
x

If you need to use a raster PNG badge, change the '.svg' to '.png' in the link

Markdown

Textile

RDoc

HTML

Rst
coverage: 100.0%. Remained the same
27407651093

push

github

web-flow 
chore(deps): update pnpm to v11.5.2 (#3460)

This PR contains the following updates:

| Package | Change |
[Age](https://docs.renovatebot.com/merge-confidence/) |
[Confidence](https://docs.renovatebot.com/merge-confidence/) |
|---|---|---|---|
| [pnpm](https://pnpm.io)
([source](https://redirect.github.com/pnpm/pnpm/tree/HEAD/pnpm)) |
[`11.5.1+sha512.93f7b5742dc2372319defa2b1178c1d1485`
→ `11.5.2`](https://renovatebot.com/diffs/npm/pnpm/11.5.1/11.5.2) |
![age](https://developer.mend.io/api/mc/badges/age/npm/pnpm/11.5.2?slim=true)
|
![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/pnpm/11.5.1/11.5.2?slim=true)
|

---

### Release Notes

<details>
<summary>pnpm/pnpm (pnpm)</summary>

###
[`v11.5.2`](https://redirect.github.com/pnpm/pnpm/blob/HEAD/pnpm/CHANGELOG.md#1152)

[Compare
Source](https://redirect.github.com/pnpm/pnpm/compare/v11.5.1...v11.5.2)

##### Patch Changes

- Peer dependency resolution now reuses the peer contexts already
recorded in the lockfile when those providers are still present in the
dependency graph and still satisfy the peer ranges. This avoids
unnecessary peer-context rewrites during lockfile regeneration. Current
manifest choices remain authoritative: a newly added, explicitly
updated, or aliased direct provider, a changed nested provider, or a
locked version that no longer satisfies the range still takes
precedence.

- The lockfile verifier now checks that a registry entry pinning an
explicit `tarball` URL points at the artifact the registry's own
metadata lists for that `name@version`. Previously a tampered lockfile
could pair a trusted `name@version` with an attacker-chosen tarball URL
(and a matching integrity for those bytes), so the install fetched the
attacker's bytes. A mismatch — or any entry that can't be confirmed
against the registry — is rejected with `ERR_PNPM_TARBALL_URL_MISMATCH`.
Non-registry resol... (continued)

1016 of 1058 branches covered (96.03%)

1475 of 1475 relevant lines covered (100.0%)

434.01 hits per line

Jobs
ID Job ID Ran Files Coverage
1 run-26.x - 27407651093.1 50
100.0
 GitHub Action Run
2 run-26.0.0 - 27407651093.2 50
100.0
 GitHub Action Run
3 run-22.19.0 - 27407651093.3 50
100.0
 GitHub Action Run
4 run-24.x - 27407651093.4 50
100.0
 GitHub Action Run
5 run-24.0.0 - 27407651093.5 50
100.0
 GitHub Action Run
6 run-22.x - 27407651093.6 50
100.0
 GitHub Action Run
Source Files on build 27407651093