Skip to content
This repository has been archived by the owner on Jun 18, 2024. It is now read-only.

Bump web-vitals from 3.5.2 to 4.0.0 #76

Merged
merged 1 commit into from
May 13, 2024
Merged

Bump web-vitals from 3.5.2 to 4.0.0 #76

merged 1 commit into from
May 13, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 13, 2024
edited
Loading

Bumps web-vitals from 3.5.2 to 4.0.0.

Changelog

Sourced from web-vitals's changelog.

v4.0.0 (2024-05-13)

  • [BREAKING] Update types to support more generic usage (#471)
  • [BREAKING] Split waitingDuration to make it easier to understand redirect delays (#458)
  • [BREAKING] Rename TTFBAttribution fields from *Time to *Duration (#453)
  • [BREAKING] Rename resourceLoadTime to resourceLoadDuration in LCP attribution (#450)
  • [BREAKING] Add INP breakdown timings and LoAF attribution (#442)
  • [BREAKING] Deprecate onFID() and remove previously deprecated APIs (#435)
  • Expose the target element in INP attribution (#479)
  • Save INP target after interactions to reduce null values when removed from the DOM (#477)
  • Cap TTFB in attribution (#440)
  • Fix reportAllChanges behavior for LCP when library is loaded late (#468)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @josephedward.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump web-vitals from 3.5.2 to 4.0.0
afdff9c 
Bumps [web-vitals](https://github.com/GoogleChrome/web-vitals) from 3.5.2 to 4.0.0.
- [Changelog](https://github.com/GoogleChrome/web-vitals/blob/main/CHANGELOG.md)
- [Commits](GoogleChrome/web-vitals@v3.5.2...v4.0.0)

---
updated-dependencies:
- dependency-name: web-vitals
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 13, 2024
@vercel Vercel
Copy link

vercel bot commented May 13, 2024
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
libridex ✅ Ready (Inspect) Visit Preview 💬 Add feedback May 13, 2024 11:23pm

@korbit-ai Korbit AI
Copy link

korbit-ai bot commented May 13, 2024

You’ve installed Korbit to your Github repository but you haven’t created a Korbit account yet! To create your Korbit account and get your PR scans, please visit https://app.korbit.ai/signup

@codara-ai-code-review Codara AI Code Review
Copy link

Potential issues, bugs, and flaws that can introduce unwanted behavior:

  1. package-lock.json:
    • The package-lock.json file shows an update from version 3.5.2 of the "web-vitals" package to version 4.0.0. However, there is a discrepancy in the resolved and integrity fields for the "web-vitals" package between the top-level and node_modules sections. This inconsistency could cause confusion or dependency resolution issues.

Code suggestions and improvements for better exception handling, logic, standardization, and consistency:

  1. package.json:
    • Ensure that the package.json file is updated consistently with the correct package versions. It's good practice to keep package.json and package-lock.json files in sync to prevent dependency mismatches.
    • Consider running a package manager command (such as npm install web-vitals@4.0.0 --save) to directly update the package version and maintain coherence between package.json and package-lock.json files. This ensures consistent dependency management.

@josephedward
Copy link
Owner

@dependabot squash and merge

@dependabot dependabot bot merged commit 1f10cb2 into master May 13, 2024
4 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/web-vitals-4.0.0 branch May 13, 2024 23:24
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@josephedward josephedward josephedward approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@josephedward