Skip to content

Bump config from 3.3.12 to 4.4.0#360

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/config-4.4.0
Closed

Bump config from 3.3.12 to 4.4.0#360
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/config-4.4.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 23, 2026
edited
Loading

Bumps config from 3.3.12 to 4.4.0.

Release notes

Sourced from config's releases.

4.4.0

What's Changed

  • Adding typescript support by @​mdkitzman
  • withModuleDefaults() added to support bifurcating module defaults across multiple versions
  • Rework raw.js to function like the new defer mechanism.
  • ./raw.js is also now deprecated, and will be removed in 5.0

New Contributors

Full Changelog: node-config/node-config@v4.3.0...v4.4.0

v4.3.0

What's Changed

  • new callback mechanism for handling deferred and async configuration evaluation
  • ./async.js and ./defer.js are now deprecated

New Async and Deferred mechanism

Instead of using async.js and defer.js, your executable config files can return a synchronous or asynchronous function. Note that if you use async deferred functions through the new mechanism, you need to call Util.resolveAsyncConfig() instead of the old version.

Util.resolveAsyncConfig() also fixes an issue where using defer in an array did not function properly #876

The old implementations have been marked as deprecated and will issue warnings to console.error to indicate use of the old pathways. The old functions are incompatible with ESM loading conventions and will be removed at the beginning of the 5.0 cycle to facilitate conversion of the library to ESM.

Full Changelog: node-config/node-config@v4.2.1...v4.3.0

v4.2.1

What's Changed

Full Changelog: node-config/node-config@v4.2.0...v4.2.1

v4.2.0

What's Changed

Breaking Changes

  • All deprecated functions in config.util have been removed. Please use lib/util for similar functionality
  • Default Yaml parser has changed to a more maintained alternative. Please validate your config files for correct processing, or adjust your package.json to force js-yaml to be used

Full Changelog: node-config/node-config@v4.1.1...v4.2.0

v4.1.1

What's Changed

... (truncated)

Commits
  • 228c4ad 4.4.0
  • 407f80c Merge pull request #888 from jdmarshall/getRegression
  • d71db3c Update baseline and add 4.3 to the test matrix.
  • 10b0c8e Fix perf regression in Config.get()
  • 2d3e179 Merge pull request #887 from jdmarshall/benchmarks
  • a35a7cd Matrix builds and separate benchmarks from ci run.
  • 1156350 Merge pull request #883 from jdmarshall/readme
  • f9d2818 Fix badges and Release Notes link.
  • 8f552b4 Merge pull request #884 from jdmarshall/rawFix
  • 89a161b Fix weird merge error with previous PR.
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by jdmarshall, a new releaser for config since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 23, 2026
@dependabot dependabot bot mentioned this pull request Feb 23, 2026
Closed
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/config-4.4.0 branch from 0bc14e1 to 9074c50 Compare February 23, 2026 22:46
@dependabot
Bump config from 3.3.12 to 4.4.0
eba3b62 
Bumps [config](https://github.com/node-config/node-config) from 3.3.12 to 4.4.0.
- [Release notes](https://github.com/node-config/node-config/releases)
- [Changelog](https://github.com/node-config/node-config/blob/master/History.md)
- [Commits](node-config/node-config@v3.3.12...v4.4.0)

---
updated-dependencies:
- dependency-name: config
  dependency-version: 4.4.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/config-4.4.0 branch from 9074c50 to eba3b62 Compare February 28, 2026 12:48
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 2, 2026

Superseded by #363.

@dependabot dependabot bot closed this Mar 2, 2026
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/config-4.4.0 branch March 2, 2026 23:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants