Skip to content

meta: bump cross-env from 7.0.3 to 10.0.0 #8063

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
avivkeller merged 2 commits into from
Aug 2, 2025
Merged

meta: bump cross-env from 7.0.3 to 10.0.0 #8063

avivkeller merged 2 commits into from
Aug 2, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 1, 2025
edited
Loading

Bumps cross-env from 7.0.3 to 10.0.0.

Release notes

Sourced from cross-env's releases.

v10.0.0

10.0.0 (2025-07-25)

TL;DR: You should probably not have to change anything if:

  • You're using a modern maintained version of Node.js (v20+ is tested)
  • You're only using the CLI (most of you are as that's the intended purpose)

In this release (which should have been v8 except I had some issues with automated releases 🙈), I've updated all the things and modernized the package. This happened in #261

Was this needed? Not really, but I just thought it'd be fun to modernize this package.

Here's the highlights of what was done.

  • Replace Jest with Vitest for testing
  • Convert all source files from .js to .ts with proper TypeScript types
  • Use zshy for ESM-only builds (removes CJS support)
  • Adopt @​epic-web/config for TypeScript, ESLint, and Prettier
  • Update to Node.js >=20 requirement
  • Remove kcd-scripts dependency
  • Add comprehensive e2e tests with GitHub Actions matrix testing
  • Update GitHub workflow with caching and cross-platform testing
  • Modernize documentation and remove outdated sections
  • Update all dependencies to latest versions
  • Add proper TypeScript declarations and exports

The tool maintains its original functionality while being completely modernized with the latest tooling and best practices

BREAKING CHANGES

  • This is a major rewrite that changes the module format from CommonJS to ESM-only. The package now requires Node.js >=20 and only exports ESM modules (not relevant in most cases).
Commits
  • 8635e80 fix(release): manually release a major version
  • 3a58f22 chore: fix npmrc registry
  • b70bfff chore(ci): add names to steps and workflows
  • cc5759d fix(release): manually release a major version
  • 080a859 chore: remove publish script
  • 31e5bc7 chore(ci): restore built files
  • 81e9c34 chore(ci): add back semantic-release
  • 3e380cb fix: link to license
  • 0642472 fix: handle edge case and update README for clarity
  • 3ff5b3d feat: modernize cross-env with TypeScript, Vitest, and ESM-only build (#261)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the github_actions:pull-request Trigger Pull Request Checks label Aug 1, 2025
@dependabot dependabot bot requested review from a team as code owners August 1, 2025 17:30
@dependabot dependabot bot added the github_actions:pull-request Trigger Pull Request Checks label Aug 1, 2025
@vercel
Copy link

vercel bot commented Aug 1, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

1 Skipped Deployment
Name Status Preview Updated (UTC)
nodejs-org ⬜️ Ignored (Inspect) Visit Preview Aug 2, 2025 9:03pm

@github-actions github-actions bot removed the github_actions:pull-request Trigger Pull Request Checks label Aug 1, 2025
@avivkeller
Copy link
Member

avivkeller commented Aug 1, 2025

@dependabot rebase

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 1, 2025

Looks like this PR is already up-to-date with main! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@avivkeller
Copy link
Member

avivkeller commented Aug 1, 2025

@dependabot recreate

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/cross-env-10.0.0 branch from 32c9fe5 to 9c4f13f Compare August 1, 2025 17:53
@codecov
Copy link

codecov bot commented Aug 1, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 72.76%. Comparing base (aae783e) to head (9fbfc38).
⚠️ Report is 1 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #8063      +/-   ##
==========================================
- Coverage   72.77%   72.76%   -0.02%     
==========================================
  Files          96       96              
  Lines        8328     8328              
  Branches      215      215              
==========================================
- Hits         6061     6060       -1     
- Misses       2266     2267       +1     
  Partials        1        1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@ovflowd
Copy link
Member

ovflowd commented Aug 2, 2025

@dependabot rebase

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 2, 2025

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@ovflowd
Copy link
Member

ovflowd commented Aug 2, 2025

@dependabot rebase

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 2, 2025

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@avivkeller
Copy link
Member

avivkeller commented Aug 2, 2025

@dependabot recreate

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/cross-env-10.0.0 branch from 81153d8 to 5eb0b61 Compare August 2, 2025 20:50
@avivkeller avivkeller self-assigned this Aug 2, 2025
@dependabot
meta: bump cross-env from 7.0.3 to 10.0.0
765e20e 
Bumps [cross-env](https://github.com/kentcdodds/cross-env) from 7.0.3 to 10.0.0.
- [Release notes](https://github.com/kentcdodds/cross-env/releases)
- [Changelog](https://github.com/kentcdodds/cross-env/blob/main/CHANGELOG.md)
- [Commits](kentcdodds/cross-env@v7.0.3...v10.0.0)

---
updated-dependencies:
- dependency-name: cross-env
  dependency-version: 10.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/cross-env-10.0.0 branch from 5eb0b61 to 765e20e Compare August 2, 2025 20:58
@avivkeller avivkeller added the github_actions:pull-request Trigger Pull Request Checks label Aug 2, 2025
@avivkeller avivkeller enabled auto-merge August 2, 2025 21:03
@github-actions github-actions bot removed the github_actions:pull-request Trigger Pull Request Checks label Aug 2, 2025
@avivkeller avivkeller added this pull request to the merge queue Aug 2, 2025
Merged via the queue into main with commit 35f0004 Aug 2, 2025
15 checks passed
@avivkeller avivkeller deleted the dependabot/npm_and_yarn/cross-env-10.0.0 branch August 2, 2025 21:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ovflowd ovflowd ovflowd approved these changes

@avivkeller avivkeller avivkeller approved these changes

@AugustinMauroy AugustinMauroy AugustinMauroy approved these changes

Assignees

@avivkeller avivkeller

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@avivkeller @ovflowd @AugustinMauroy