Bump cross-env from 7.0.3 to 10.1.0 #13

Open

dependabot[bot] wants to merge 1 commit from dependabot/npm_and_yarn/cross-env-10.1.0 into main

dependabot[bot] commented

2025-09-29 23:36:56 +00:00

(Migrated from github.com)

Bumps cross-env from 7.0.3 to 10.1.0.

Release notes

Sourced from cross-env's releases.

v10.1.0

10.1.0 (2025-09-29)

Features

add support for default value syntax (152ae6a)

For example:
"dev:server": "cross-env wrangler dev --port ${PORT:-8787}",
If PORT is already set, use that value, otherwise fallback to 8787.

Learn more about Shell Parameter Expansion

v10.0.0

10.0.0 (2025-07-25)

TL;DR: You should probably not have to change anything if:

You're using a modern maintained version of Node.js (v20+ is tested)

You're only using the CLI (most of you are as that's the intended purpose)

In this release (which should have been v8 except I had some issues with automated releases 🙈), I've updated all the things and modernized the package. This happened in #261

Was this needed? Not really, but I just thought it'd be fun to modernize this package.

Here's the highlights of what was done.

Replace Jest with Vitest for testing

Convert all source files from .js to .ts with proper TypeScript types

Use zshy for ESM-only builds (removes CJS support)

Adopt @epic-web/config for TypeScript, ESLint, and Prettier

Update to Node.js >=20 requirement

Remove kcd-scripts dependency

Add comprehensive e2e tests with GitHub Actions matrix testing

Update GitHub workflow with caching and cross-platform testing

Modernize documentation and remove outdated sections

Update all dependencies to latest versions

Add proper TypeScript declarations and exports

The tool maintains its original functionality while being completely modernized with the latest tooling and best practices

BREAKING CHANGES

This is a major rewrite that changes the module format from CommonJS to ESM-only. The package now requires Node.js >=20 and only exports ESM modules (not relevant in most cases).

Commits

152ae6a feat: add support ofr default value syntax
bd70d1a chore: upgrade zshy
8e0b190 chore(ci): get coverage
8635e80 fix(release): manually release a major version
3a58f22 chore: fix npmrc registry
b70bfff chore(ci): add names to steps and workflows
cc5759d fix(release): manually release a major version
080a859 chore: remove publish script
31e5bc7 chore(ci): restore built files
81e9c34 chore(ci): add back semantic-release
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [cross-env](https://github.com/kentcdodds/cross-env) from 7.0.3 to 10.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/kentcdodds/cross-env/releases">cross-env's releases</a>.</em></p> <blockquote> <h2>v10.1.0</h2> <h1><a href="https://github.com/kentcdodds/cross-env/compare/v10.0.0...v10.1.0">10.1.0</a> (2025-09-29)</h1> <h3>Features</h3> <ul> <li>add support for default value syntax (<a href="https://github.com/kentcdodds/cross-env/commit/152ae6a85b5725ac3c725a8a3e471aee79acc712">152ae6a</a>)</li> </ul> <p>For example:</p> <pre lang="json"><code>"dev:server": "cross-env wrangler dev --port ${PORT:-8787}", </code></pre> <p>If <code>PORT</code> is already set, use that value, otherwise fallback to <code>8787</code>.</p> <p>Learn more about <a href="https://www.gnu.org/software/bash/manual/html_node/Shell-Parameter-Expansion.html">Shell Parameter Expansion</a></p> <h2>v10.0.0</h2> <h1><a href="https://github.com/kentcdodds/cross-env/compare/v9.0.0...v10.0.0">10.0.0</a> (2025-07-25)</h1> <p>TL;DR: You should probably not have to change anything if:</p> <ul> <li>You're using a modern maintained version of Node.js (v20+ is tested)</li> <li>You're only using the CLI (most of you are as that's the intended purpose)</li> </ul> <p>In this release (which should have been v8 except I had some issues with automated releases 🙈), I've updated all the things and modernized the package. This happened in <a href="https://redirect.github.com/kentcdodds/cross-env/issues/261">#261</a></p> <p>Was this needed? Not really, but I just thought it'd be fun to modernize this package.</p> <p>Here's the highlights of what was done.</p> <ul> <li>Replace Jest with Vitest for testing</li> <li>Convert all source files from .js to .ts with proper TypeScript types</li> <li>Use zshy for ESM-only builds (removes CJS support)</li> <li>Adopt <code>@epic-web/config</code> for TypeScript, ESLint, and Prettier</li> <li>Update to Node.js >=20 requirement</li> <li>Remove kcd-scripts dependency</li> <li>Add comprehensive e2e tests with GitHub Actions matrix testing</li> <li>Update GitHub workflow with caching and cross-platform testing</li> <li>Modernize documentation and remove outdated sections</li> <li>Update all dependencies to latest versions</li> <li>Add proper TypeScript declarations and exports</li> </ul> <p>The tool maintains its original functionality while being completely modernized with the latest tooling and best practices</p> <h3>BREAKING CHANGES</h3> <ul> <li>This is a major rewrite that changes the module format from CommonJS to ESM-only. The package now requires Node.js >=20 and only exports ESM modules (not relevant in most cases).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kentcdodds/cross-env/commit/152ae6a85b5725ac3c725a8a3e471aee79acc712"><code>152ae6a</code></a> feat: add support ofr default value syntax</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/bd70d1ab25b0e0b9b2926b048bf8ca52668a393c"><code>bd70d1a</code></a> chore: upgrade zshy</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/8e0b190df9f90266c720aafe6f24d43eee93fa1b"><code>8e0b190</code></a> chore(ci): get coverage</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/8635e80e81080f3e8f83b514565dc6bfecf6760c"><code>8635e80</code></a> fix(release): manually release a major version</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/3a58f2236009b2f52479f2927c7790129450ec63"><code>3a58f22</code></a> chore: fix npmrc registry</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/b70bfff5ecff5c92f2462cd6334378ef5bd84db0"><code>b70bfff</code></a> chore(ci): add names to steps and workflows</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/cc5759dc36012c4b13b3d3b1af5e0a645d3c55f6"><code>cc5759d</code></a> fix(release): manually release a major version</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/080a8591909665f42592d73e1149d0a061164045"><code>080a859</code></a> chore: remove publish script</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/31e5bc70e726dee8e453dd64d54ad02eeb66e23a"><code>31e5bc7</code></a> chore(ci): restore built files</li> <li><a href="https://github.com/kentcdodds/cross-env/commit/81e9c34f55c483dc1f568696db36267748b3740d"><code>81e9c34</code></a> chore(ci): add back semantic-release</li> <li>Additional commits viewable in <a href="https://github.com/kentcdodds/cross-env/compare/v7.0.3...v10.1.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cross-env&package-manager=npm_and_yarn&previous-version=7.0.3&new-version=10.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

This pull request can be merged automatically.

This branch is out-of-date with the base branch

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin dependabot/npm_and_yarn/cross-env-10.1.0:dependabot/npm_and_yarn/cross-env-10.1.0

git switch dependabot/npm_and_yarn/cross-env-10.1.0

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch main

git merge --no-ff dependabot/npm_and_yarn/cross-env-10.1.0

git switch dependabot/npm_and_yarn/cross-env-10.1.0

git rebase main

git switch main

git merge --ff-only dependabot/npm_and_yarn/cross-env-10.1.0

git switch dependabot/npm_and_yarn/cross-env-10.1.0

git rebase main

git switch main

git merge --no-ff dependabot/npm_and_yarn/cross-env-10.1.0

git switch main

git merge --squash dependabot/npm_and_yarn/cross-env-10.1.0