Skip to content

⬆️(deps-dev): Bump @moonrepo/cli from 1.38.3 to 1.40.0 #95

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

⬆️(deps-dev): Bump @moonrepo/cli from 1.38.3 to 1.40.0 #95

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Sep 3, 2025

Bumps @moonrepo/cli from 1.38.3 to 1.40.0.

Release notes

Sourced from @​moonrepo/cli's releases.

v1.40.0

💥 Breaking

  • The legacy toolchains (bun, node, python, etc) will no longer automatically enable if there's a version defined in .prototools, as there's no way to differentiate between the legacy and modern toolchains.
  • Updated moon query touched-files to default to comparing against remote branches when in CI, and local when not in CI. This aligns with the other moon query commands.
    • This can be overridden with the --local and --remote flags.

🚀 Updates

  • Added new JavaScript ecosystem toolchain WASM plugins. This was a large feature that required extensive work, as the JavaScript ecosystem is quite unique. The following plugins are being introduced:
    • unstable_javascript
      • A new JavaScript specific plugin that is a superset of all JavaScript runtimes (Bun & Node, with Deno coming soon).
      • Implements tier 1 and 2 features, and is now in charge of defining the package manager, installing dependencies, extending the project graph (aliases and tasks), parsing lockfiles/manifests, and much more.
      • Supports multiple lockfiles for each package manager.
    • unstable_bun and unstable_node
      • The JavaScript runtimes only implement tier 1 and 3 features, and only exist for installing the tool into the proto toolchain. Most functionality is now in the unstable_javascript plugin.
      • Supports settings for Bun/Node execution.
    • unstable_npm, unstable_pnpm, and unstable_yarn
      • The JavaScript package managers only implement tier 1 and 3 features, and only exist for installing the tool into the proto toolchain. Most functionality is now in the unstable_javascript plugin.
      • Supports settings for package installation.
      • npm now supports npm-shrinkwrap.json.
      • Is no longer configured within node, and is now configured at the top-level within .moon/toolchain.yml.
  • Added new values to the task cache option, alongside the existing boolean.
    • local to only use the local cache.
    • remote to only use the remote cache.
  • Added a new unstable_remote.cache.localReadOnly setting, which turns local development caching into a read-only mode (only downloads, doesn't upload).
  • Updated task commands (child processes) to utilize toolchain executables directly, instead of relying entirely on proto shims. It achieves this by locating the executables, and prepending their directory onto PATH.
  • Updated moon task command to include all PATHs that are injected when running the task.
  • Deprecated the moon run --profile option.
    • This option was only used by Node.js, and is now a configuration setting for the unstable_node toolchain.
  • When running a task, we now set a MOON_TASK_HASH environment variable for the current hash, which can be read from child processes.
  • Published the moon VS Code extension to Open VSX:

... (truncated)

Changelog

Sourced from @​moonrepo/cli's changelog.

1.40.0

💥 Breaking

  • The legacy toolchains (bun, node, python, etc) will no longer automatically enable if there's a version defined in .prototools, as there's no way to differentiate between the legacy and modern toolchains.
  • Updated moon query touched-files to default to comparing against remote branches when in CI, and local when not in CI. This aligns with the other moon query commands.
    • This can be overridden with the --local and --remote flags.

🚀 Updates

  • Added new JavaScript ecosystem toolchain WASM plugins. This was a large feature that required extensive work, as the JavaScript ecosystem is quite unique. The following plugins are being introduced:
    • unstable_javascript
      • A new JavaScript specific plugin that is a superset of all JavaScript runtimes (Bun & Node, with Deno coming soon).
      • Implements tier 1 and 2 features, and is now in charge of defining the package manager, installing dependencies, extending the project graph (aliases and tasks), parsing lockfiles/manifests, and much more.
      • Supports multiple lockfiles for each package manager.
    • unstable_bun and unstable_node
      • The JavaScript runtimes only implement tier 1 and 3 features, and only exist for installing the tool into the proto toolchain. Most functionality is now in the unstable_javascript plugin.
      • Supports settings for Bun/Node execution.
    • unstable_npm, unstable_pnpm, and unstable_yarn
      • The JavaScript package managers only implement tier 1 and 3 features, and only exist for installing the tool into the proto toolchain. Most functionality is now in the unstable_javascript plugin.
      • Supports settings for package installation.
      • npm now supports npm-shrinkwrap.json.
      • Is no longer configured within node, and is now configured at the top-level within .moon/toolchain.yml.
  • Added new values to the task cache option, alongside the existing boolean.
    • local to only use the local cache.
    • remote to only use the remote cache.
  • Added a new unstable_remote.cache.localReadOnly setting, which turns local development caching into a read-only mode (only downloads, doesn't upload).
  • Updated task commands (child processes) to utilize toolchain executables directly, instead of relying entirely on proto shims. It achieves this by locating the executables, and prepending their directory onto PATH.
  • Updated moon task command to include all PATHs that are injected when running the task.
  • Deprecated the moon run --profile option.
    • This option was only used by Node.js, and is now a configuration setting for the unstable_node toolchain.
  • When running a task, we now set a MOON_TASK_HASH environment variable for the current hash, which can be read from child processes.

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
⬆️(deps-dev): Bump @moonrepo/cli from 1.38.3 to 1.40.0
99b3844 
Bumps [@moonrepo/cli](https://github.com/moonrepo/moon/tree/HEAD/packages/cli) from 1.38.3 to 1.40.0.
- [Release notes](https://github.com/moonrepo/moon/releases)
- [Changelog](https://github.com/moonrepo/moon/blob/master/CHANGELOG.md)
- [Commits](https://github.com/moonrepo/moon/commits/@moonrepo/[email protected]/packages/cli)

---
updated-dependencies:
- dependency-name: "@moonrepo/cli"
  dependency-version: 1.40.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Sep 3, 2025
@dependabot dependabot bot mentioned this pull request Sep 3, 2025
Closed
@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Sep 3, 2025

⚠️ No Changeset found

Latest commit: 99b3844

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Sep 4, 2025

Superseded by #97.

@dependabot dependabot bot closed this Sep 4, 2025
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/moonrepo/cli-1.40.0 branch September 4, 2025 10:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants