Bump dependency_validator from 3.2.3 to 5.0.3

[dependabot]

Bumps dependency_validator from 3.2.3 to 5.0.3.

Release notes

Sourced from dependency_validator's releases.

5.0.3

Info

Build: (waiting for build to complete) Skynet Results: (waiting for Skynet results) Pipeline: (waiting for pipeline to start) This patch release includes the following changes:

Miscellaneous

• #151 FEDX-2777: Fixed formatting

  • FEDX-2777 Fixed formatting

• #152 FEDX-2723: correctly ignore unused deps

  • FEDX-2723 Correctly ignore unused deps

• #154 Bump Workiva/gha-dart-oss from 0.1.7 to 0.1.9 in the gha group

• #157 Bump analyzer from 7.7.1 to 8.1.1 in the major group

• #162 Reformat with correct dependencies

• #164 Bump Workiva/gha-dart-oss from 0.1.12 to 0.1.13 in the gha group

• #166 RM-307870 Release dependency_validator 5.0.3

  • RM-307870 RELEASE dependency_validator 5.0.3

Notes created on Friday, October 17 06:04 PM UTC

5.0.2

Info

Build: (waiting for build to complete) Skynet Results: (waiting for Skynet results) Pipeline: (waiting for pipeline to start) This patch release includes the following changes:

Miscellaneous

• #146 Updated changelog to fix release

• #147 RM-307841 Release dependency_validator 5.0.2

  • RM-307841 RELEASE dependency_validator 5.0.2

Notes created on Friday, January 10 05:45 PM UTC

5.0.1

Info

Build: (waiting for build to complete) Skynet Results: (waiting for Skynet results) Pipeline: (waiting for pipeline to start) This patch release includes the following changes:

Miscellaneous

• #144 Latest analyzer version

... (truncated)

Changelog

Sourced from dependency_validator's changelog.

5.0.3

• Widened dependency bounds to accept analyzer v8

5.0.2

• Fixed changelog entries caused from mis-configured auto-release

5.0.1

• Fixed analyzer version constraint which was no longer compatable with the specified dart sdk

5.0.0

• Breaking change: Requires Dart 3.0 or above
• Added support for Pub Workspaces (monorepos)

4.1.1

• Update the output of parse failures to include the path to the file which failed to parse

4.1.0

• Update specified analyzer range to support v6.0.0+. This supports dependency_validator running on dart 3 better

4.0.0

• Breaking Change: Added "non-dev packages that are only used within bin/" check to cover this edge case. This is enabled by default, and will break the execution of dependency_validator if it occurs within the codebase. Resolution is to either ignore the dependency, or demote the dependency to a dev_dep
• Fixed bug where uris declared within comments and strings would register as dependency "usages"

3.2.2

• Raise dependency minimums to ensure all dependencies are null-safe.

3.2.0

• Feature: Added option allow_pins for disabling/enabling checks for pins. Pins not allowed by default.

3.1.2

• Return non-zero exit code from executable when incorrect args are used

3.1.0

• Deprecate static configuration in pubspec.yaml (because pub publish warns about unrecognized keys) and instead read it from a dart_dependency_validator.yaml file when possible.

... (truncated)

Commits

• b458fb9 Merge pull request #166 from Workiva/release_dependency_validator_5.0.3
• f0a7e4b updated changelog
• b604baa dependency_validator_5.0.3
• d6cc85f Merge pull request #162 from Workiva/does-this-fix-formatting
• b0a01c6 Merge branch 'master' of github.com:Workiva/dependency_validator into does-th...
• c44bfc5 Merge pull request #164 from Workiva/dependabot/github_actions/gha-0551978d42
• 8208abe Bump Workiva/gha-dart-oss from 0.1.12 to 0.1.13 in the gha group
• 0f261f4 attempt to fix CI formatting
• ff6665a Merge pull request #154 from Workiva/dependabot/github_actions/gha-caf7102b68
• f7a7c94 Bump Workiva/gha-dart-oss from 0.1.7 to 0.1.9 in the gha group
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)