Skip to content

Pin @coana-tech/cli to exact version #919

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 18, 2025
Merged

Pin @coana-tech/cli to exact version #919

merged 1 commit into from
Nov 18, 2025
+9 −9

Conversation

@jdalton
Copy link
Contributor

@jdalton jdalton commented Nov 18, 2025
edited by cursor bot
Loading

Summary

Pin @coana-tech/cli to exact versions instead of using tilde ranges.

Changes

  • Update @coana-tech/cli from 14.12.51 to 14.12.88
  • Remove tilde (~) prefix from version specification in dlx.mts
  • Update test expectations to match exact version format

Note

Pin @coana-tech/cli to an exact version and bump it to 14.12.88, updating dlx usage and tests to remove tilde ranges.

  • Dependencies:
    • Update @coana-tech/cli from 14.12.51 to 14.12.88 in package.json (lockfile updated accordingly).
  • Utils:
    • In src/utils/dlx.mts, use exact constants.ENV.INLINED_SOCKET_CLI_COANA_TECH_CLI_VERSION (remove ~ prefix) when spawning @coana-tech/cli.
  • Tests:
    • Adjust expectations in src/utils/dlx.test.mts to assert @coana-tech/[email protected] (no tilde) for pnpm and npm cases.

Written by Cursor Bugbot for commit 2043149. Configure here.

@jdalton
Pin @coana-tech/cli to exact version without tilde
2043149 
Updated @coana-tech/cli from 14.12.51 to 14.12.88 and removed the tilde
prefix from version specification in dlx.mts to pin to exact versions.

Changes:
- Remove tilde (~) prefix from coana version in dlx.mts
- Update @coana-tech/cli to 14.12.88 (latest)
- Update test expectations to match exact version format
@socket-security
Copy link

socket-security bot commented Nov 18, 2025

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatednpm/​@​coana-tech/​cli@​14.12.51 ⏵ 14.12.8889 +310080 +196 +1100

View full report

@socket-security-staging
Copy link

socket-security-staging bot commented Nov 18, 2025

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatednpm/​@​coana-tech/​cli@​14.12.51 ⏵ 14.12.8889 +310080 +196 +1100

View full report

@jdalton jdalton merged commit 62b3aea into v1.x Nov 18, 2025
8 checks passed
@jdalton jdalton deleted the jdalton/coana-pin branch November 18, 2025 17:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jdalton