chore(deps): bump @metamask/utils from 8.4.0 to 9.0.0 #349

dependabot · 2024-07-01T07:04:01Z

Bumps @metamask/utils from 8.4.0 to 9.0.0.

Release notes

Sourced from @metamask/utils's releases.

9.0.0

Changed

BREAKING: The return types of functions getChecksumAddress, numberToHex, bigIntToHex are narrowed from string to Hex (#193)

Fixed
Bump @metamask/superstruct from ^3.0.0 to ^3.1.0 (#194)

If @metamask/utils <=8.5.0 is used with @metamask/superstruct >=3.1.0 the following error may be encountered:
error TS2742: The inferred type of 'ExampleType' cannot be named without a reference to '@metamask/utils/node_modules/@metamask/superstruct'. This is likely not portable. A type annotation is necessary.
This can be resolved by updating @metamask/utils to >=9.0.0.
8.5.0

Changed

Bump dependency semver from ^5.7.1 to ^7.6.0 (#181).

Fixed

Replace dependency superstruct ^1.0.3 with ESM-compatible @metamask/superstruct ^3.0.0 (#185).

This fixes the issue of this package being unusable by any TypeScript project that uses Node16 or NodeNext as its moduleResolution option.

Produce and export ESM-compatible TypeScript type declaration files in addition to CommonJS-compatible declaration files (#182)

Previously, this package shipped with only one variant of type declaration files, and these files were only CommonJS-compatible, and the exports field in package.json linked to these files. This is an anti-pattern and was rightfully flagged by the "Are the Types Wrong?" tool as "masquerading as CJS". All of the ATTW checks now pass.

Remove chunk files (#182).

Previously, the build tool we used to generate JavaScript files extracted common code to "chunk" files. While this was intended to make this package more tree-shakeable, it also made debugging more difficult for our development teams. These chunk files are no longer present.

Changelog

Sourced from @metamask/utils's changelog.

[9.0.0]

Changed

BREAKING: The return types of functions getChecksumAddress, numberToHex, bigIntToHex are narrowed from string to Hex (#193)

Fixed
Bump @metamask/superstruct from ^3.0.0 to ^3.1.0 (#194)

If @metamask/utils <=8.5.0 is used with @metamask/superstruct >=3.1.0 the following error may be encountered:
error TS2742: The inferred type of 'ExampleType' cannot be named without a reference to '@metamask/utils/node_modules/@metamask/superstruct'. This is likely not portable. A type annotation is necessary.
This can be resolved by updating @metamask/utils to >=9.0.0.
[8.5.0]

Changed

Bump dependency semver from ^5.7.1 to ^7.6.0 (#181).

Fixed

Replace dependency superstruct ^1.0.3 with ESM-compatible @metamask/superstruct ^3.0.0 (#185).

This fixes the issue of this package being unusable by any TypeScript project that uses Node16 or NodeNext as its moduleResolution option.

Produce and export ESM-compatible TypeScript type declaration files in addition to CommonJS-compatible declaration files (#182)

Previously, this package shipped with only one variant of type declaration files, and these files were only CommonJS-compatible, and the exports field in package.json linked to these files. This is an anti-pattern and was rightfully flagged by the "Are the Types Wrong?" tool as "masquerading as CJS". All of the ATTW checks now pass.

Remove chunk files (#182).

Previously, the build tool we used to generate JavaScript files extracted common code to "chunk" files. While this was intended to make this package more tree-shakeable, it also made debugging more difficult for our development teams. These chunk files are no longer present.

Commits

654f9cf 9.0.0 (#196)
5a66cb8 Bump @metamask/superstruct from ^3.0.0 to ^3.1.0 (#194)
369e5b2 Ensure functions that should return Hex, do (#193)
6000435 Bump braces from 3.0.2 to 3.0.3 (#192)
c72216b 8.5.0 (#191)
631d1eb Use @metamask/superstruct, set moduleResolution to NodeNext (#185)
7eac3c8 Bump semver (#181)
1c408dd Use ts-bridge for building (#182)
e122e33 Bump tar from 6.1.11 to 6.2.1 (#180)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@metamask/utils](https://github.com/MetaMask/utils) from 8.4.0 to 9.0.0. - [Release notes](https://github.com/MetaMask/utils/releases) - [Changelog](https://github.com/MetaMask/utils/blob/main/CHANGELOG.md) - [Commits](MetaMask/utils@v8.4.0...v9.0.0) --- updated-dependencies: - dependency-name: "@metamask/utils" dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

socket-security · 2024-07-01T07:04:42Z

New dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@metamask/utils@9.0.0	Transitive: network	`+16`	5.13 MB	metamaskbot

View full report↗︎

dependabot · 2024-07-01T08:22:02Z