chore(deps-dev): bump @nodesecure/mama from 2.2.0 to 2.3.0 in the development-dependencies group

[dependabot]

Bumps the development-dependencies group with 1 update: @nodesecure/mama.

Updates @nodesecure/mama from 2.2.0 to 2.3.0

Release notes

Sourced from @​nodesecure/mama's releases.

@​nodesecure/mama@​2.3.0

Minor Changes

• #704 7178972 Thanks @​fraxken! - Implement ManifestManager class deep into scanner and tree-walker. Implement documentDigest into ManifestManager class and fix issue with pacote.manifest type.

Patch Changes

• Updated dependencies [7178972]:
  • @​nodesecure/npm-types@​1.4.0

Changelog

Sourced from @​nodesecure/mama's changelog.

2.3.0

Minor Changes

• #704 7178972 Thanks @​fraxken! - Implement ManifestManager class deep into scanner and tree-walker. Implement documentDigest into ManifestManager class and fix issue with pacote.manifest type.

Patch Changes

• Updated dependencies [7178972]:
  • @​nodesecure/npm-types@​1.4.0

Commits

• 3518e99 chore: update versions (#703)
• 7178972 refactor: implement ManifestManager class deep into scanner and tree-walker (...
• b4053af fix(ci): properly execute tests with glob for Windows and UNIX
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

⚠️ No Changeset found

Latest commit: a627a06

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​nodesecure/​mama@​2.2.0 ⏵ 2.3.0	-25		-1	-5

View full report