chore(deps-dev): bump metalsmith from 2.4.3 to 2.5.1

[dependabot]

Bumps metalsmith from 2.4.3 to 2.5.1.

Release notes

Sourced from metalsmith's releases.

Metalsmith 2.5.1

• Dependencies: 774a164
  • debug: 4.3.3 ▶︎ 4.3.4
• Clarified semver policy in README.md
• Added SECURITY.md

Fixed

• Fixes #373: do not crash when postinstall script fails in specific environments

Metalsmith 2.5.0

Important note to metalsmith-watch users: Although 2.5.0 is a semver-minor release, it breaks compatibility with metalsmith-watch, which relies on the Metalsmith < 2.4.x private method signature using the outdated unyield package. See [issue #374](metalsmith/metalsmith#374) for more details.

Added

• #354 Added Metalsmith#env method. Supports passing DEBUG and DEBUG_LOG amongst others. Sets CLI: true when run from the metalsmith CLI. b42df8c, 446c676, 33d936b, 4c483a3
• #356 Added Metalsmith#debug method for creating plugin debuggers
• #362 Upgraded all generator-based methods (Metalsmith#read,Metalsmith#readFile,Metalsmith#write,Metalsmith#writeFile, Metalsmith#run and Metalsmith#process) to dual callback-/ promise-based methods 16a91c5, faf6ab6, 6cb6229
• Added org migration notification to postinstall script to encourage users to upgrade 3a11a24

Removed

• #231 Dropped support for Node < 12 0a53007
• Dependencies:
  • thunkify: replaced with promise-based implementation faf6ab6
  • unyield replaced with promise-based implementation faf6ab6
  • co-fs-extra: replaced with native Node.js methods faf6ab6
  • chalk: not necessary for the few colors used by Metalsmith CLI 1dae1cb
  • clone: see #247 a871af6

Updated

• Restructured and updated README.md 0da0c4d
• #247 Calling Metalsmith#metadata no longer clones the object passed to it, overwriting the previous metadata, but merges it into existing metadata.

#362: metalsmith/metalsmith#362 #354: metalsmith/metalsmith#354 #355: metalsmith/metalsmith#355 #356: metalsmith/metalsmith#356 #247: metalsmith/metalsmith#247 #231: metalsmith/metalsmith#247

Fixed

• #355 Proper path resolution for edge-cases using CLI, running metalsmith from outside or subfolder of metalsmith.directory()5d75539

Changelog

Sourced from metalsmith's changelog.

[2.5.1] - 2022-10-07

Updated

• Dependencies: 774a164
  • debug: 4.3.3 ▶︎ 4.3.4
• Clarified semver policy in README.md
• Added SECURITY.md

Fixed

• Fixes #373: do not crash when postinstall script fails in specific environments

[2.5.0] - 2022-06-10

Important note to metalsmith-watch users: Although 2.5.0 is a semver-minor release, it breaks compatibility with metalsmith-watch, which relies on the Metalsmith < 2.4.x private method signature using the outdated unyield package. See [issue #374](metalsmith/metalsmith#374) for more details.

Added

• #354 Added Metalsmith#env method. Supports passing DEBUG and DEBUG_LOG amongst others. Sets CLI: true when run from the metalsmith CLI. b42df8c, 446c676, 33d936b, 4c483a3
• #356 Added Metalsmith#debug method for creating plugin debuggers
• #362 Upgraded all generator-based methods (Metalsmith#read,Metalsmith#readFile,Metalsmith#write,Metalsmith#writeFile, Metalsmith#run and Metalsmith#process) to dual callback-/ promise-based methods 16a91c5, faf6ab6, 6cb6229
• Added org migration notification to postinstall script to encourage users to upgrade 3a11a24

Removed

• #231 Dropped support for Node < 12 0a53007
• Dependencies:
  • thunkify: replaced with promise-based implementation faf6ab6
  • unyield replaced with promise-based implementation faf6ab6
  • co-fs-extra: replaced with native Node.js methods faf6ab6
  • chalk: not necessary for the few colors used by Metalsmith CLI 1dae1cb
  • clone: see #247 a871af6

Updated

• Restructured and updated README.md 0da0c4d
• #247 Calling Metalsmith#metadata no longer clones the object passed to it, overwriting the previous metadata, but merges it into existing metadata.

#362: metalsmith/metalsmith#362 #354: metalsmith/metalsmith#354 #355: metalsmith/metalsmith#355 #356: metalsmith/metalsmith#356 #247: metalsmith/metalsmith#247

Fixed

• #355 Proper path resolution for edge-cases using CLI, running metalsmith from outside or subfolder of metalsmith.directory()5d75539

Commits

• 149c6f6 Release 2.5.1
• ba430c3 ci: update GH actions setup-node, checkout, coveralls
• da88f03 chore: prepare changelog for 2.5.1
• 089759f dev: update release-it & eslint & fix security vulnerability
• c8c432a Updates debug from 4.3.3 -> 4.3.4
• d31cd0e dev: update devDependencies
• be58ce8 Fixes #373: do not crash when postinstall script fails
• d60b027 Add security policy
• 4e2ecfb Resolves #373 - add note for metalsmith-watch users + specify NodeJS compatib...
• 3a0517c Release 2.5.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)