Bump dependency_validator from 3.2.3 to 5.0.2

[dependabot]

Bumps dependency_validator from 3.2.3 to 5.0.2.

Release notes

Sourced from dependency_validator's releases.

5.0.2

Info

Build: (waiting for build to complete) Skynet Results: (waiting for Skynet results) Pipeline: (waiting for pipeline to start) This patch release includes the following changes:

Miscellaneous

• #146 Updated changelog to fix release

• #147 RM-307841 Release dependency_validator 5.0.2

  • RM-307841 RELEASE dependency_validator 5.0.2

Notes created on Friday, January 10 05:45 PM UTC

5.0.1

Info

Build: (waiting for build to complete) Skynet Results: (waiting for Skynet results) Pipeline: (waiting for pipeline to start) This patch release includes the following changes:

Miscellaneous

• #144 Latest analyzer version

• #145 RM-307835 Release dependency_validator 5.0.1

Notes created on Friday, January 10 04:58 PM UTC

5.0.0

Info

Build: (waiting for build to complete) Skynet Results: (waiting for Skynet results) Pipeline: (waiting for pipeline to start) This major release includes the following changes:

Miscellaneous

• #138 Support Pub Workspaces

• #142 FEDX-2363: Reset the version of dependency_validator

  • FEDX-2363 Reset the version of dependency_validator

• #143 RM-302023 Release dependency_validator 5.0.0

Notes created on Friday, January 10 04:36 PM UTC

4.1.2

Info

Build: (waiting for build to complete)

... (truncated)

Changelog

Sourced from dependency_validator's changelog.

5.0.2

• Fixed changelog entries caused from mis-configured auto-release

5.0.1

• Fixed analyzer version constraint which was no longer compatable with the specified dart sdk

5.0.0

• Breaking change: Requires Dart 3.0 or above
• Added support for Pub Workspaces (monorepos)

4.1.1

• Update the output of parse failures to include the path to the file which failed to parse

4.1.0

• Update specified analyzer range to support v6.0.0+. This supports dependency_validator running on dart 3 better

4.0.0

• Breaking Change: Added "non-dev packages that are only used within bin/" check to cover this edge case. This is enabled by default, and will break the execution of dependency_validator if it occurs within the codebase. Resolution is to either ignore the dependency, or demote the dependency to a dev_dep
• Fixed bug where uris declared within comments and strings would register as dependency "usages"

3.2.2

• Raise dependency minimums to ensure all dependencies are null-safe.

3.2.0

• Feature: Added option allow_pins for disabling/enabling checks for pins. Pins not allowed by default.

3.1.2

• Return non-zero exit code from executable when incorrect args are used

3.1.0

• Deprecate static configuration in pubspec.yaml (because pub publish warns about unrecognized keys) and instead read it from a dart_dependency_validator.yaml file when possible.

3.0.0

• Breaking: removed the public package:dependency_validator/dependency_validator.dart entrypoint. It was only intended for this package to provide an executable and

... (truncated)

Commits

• aecf0fe Merge pull request #147 from Workiva/release_dependency_validator_5.0.2
• c0663d8 dependency_validator_5.0.2
• 71112d4 Merge pull request #146 from Workiva/changelog_update
• bc785de updated changelog to fix release
• 35b13d4 Merge pull request #145 from Workiva/release_dependency_validator_5.0.1
• f654539 dependency_validator_5.0.1
• 0d0917f Merge pull request #144 from Workiva/resolved_latest_versions
• 13ea512 latest analyzer version
• bfb5952 Merge pull request #143 from Workiva/release_dependency_validator_5.0.0
• 6f8dc45 dependency_validator_5.0.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)