chore(deps): bump @hey-api/client-fetch from 0.6.0 to 0.7.0

[dependabot]

Bumps @hey-api/client-fetch from 0.6.0 to 0.7.0.

Release notes

Sourced from @​hey-api/client-fetch's releases.

@​hey-api/client-fetch@​0.7.0

Minor Changes

• #1568 465410c Thanks @​mrlubos! - feat: change the default parser

Changelog

Sourced from @​hey-api/client-fetch's changelog.

0.7.0

Minor Changes

• #1201 972a93a Thanks @​mrlubos! - feat: make plugins first-class citizens

  This release makes plugins first-class citizens. In order to achieve that, the following breaking changes were introduced.

  Removed CLI options

  The --types, --schemas, and --services CLI options have been removed. You can list which plugins you'd like to use explicitly by passing a list of plugins as --plugins <plugin1> <plugin2>

  Removed *.export option

  Previously, you could explicitly disable export of certain artifacts using the *.export option or its shorthand variant. These were both removed. You can now disable export of specific artifacts by manually defining an array of plugins and excluding the unwanted plugin.

  ::: code-group

  export default {
    client: '@hey-api/client-fetch',
    input: 'path/to/openapi.json',
    output: 'src/client',
    schemas: false, // [!code --]
    plugins: ['@hey-api/types', '@hey-api/services'], // [!code ++]
  };

  export default {
    client: '@hey-api/client-fetch',
    input: 'path/to/openapi.json',
    output: 'src/client',
    schemas: {
      export: false, // [!code --]
    },
    plugins: ['@hey-api/types', '@hey-api/services'], // [!code ++]
  };

  :::

  Renamed schemas.name option

  Each plugin definition contains a name field. This was conflicting with the schemas.name option. As a result, it has been renamed to nameBuilder.

  export default {
    client: '@hey-api/client-fetch',
    input: 'path/to/openapi.json',

... (truncated)

Commits

• 55f27bf Merge pull request #1567 from hey-api/changeset-release/main
• 91a83c1 Version Packages
• f8bf82d Merge pull request #1568 from hey-api/feat/experimental-parser-release
• 465410c feat: change the default parser
• f5e5fca Merge pull request #1566 from hey-api/fix/sdk-options-override
• 39d558a fix: spread sdk options at the end to allow overriding generated values
• fc7ebbd Merge pull request #1553 from hey-api/changeset-release/main
• ddcdddc Version Packages
• cfe6c77 Merge pull request #1560 from hey-api/docs/announcement
• e8634a9 docs: add announcement component
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[stacklok-cloud-staging]

Minder Vulnerability Report ✅

Minder analyzed this PR and found it does not add any new vulnerable dependencies.

Vulnerability scan of 90dfd8fb:

• 🐞 vulnerable packages: 0
• 🛠 fixes available for: 0

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @hey-api/client-fetch

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.3
User activity	9.2
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	36
Number of git tags or releases	168
Versions matched to tags or releases	35

This package has been digitally signed using sigtore.

Source repository	https://github.com/hey-api/openapi-ts
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=162356337

Alternatives

Package	Score	Description
axios	0
isomorphic-fetch	0

[coveralls]

Pull Request Test Coverage Report for Build 12865054690

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 64.112%

---

Totals
Change from base Build 12865028393:	0.0%
Covered Lines:	458
Relevant Lines:	638

---

💛 - Coveralls

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @hey-api/client-fetch

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.3
User activity	9.2
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	36
Number of git tags or releases	168
Versions matched to tags or releases	35

This package has been digitally signed using sigtore.

Source repository	https://github.com/hey-api/openapi-ts
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=162356337

Alternatives

Package	Score	Description
axios	0
node-fetch	0
isomorphic-fetch	0

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @hey-api/client-fetch

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.3
User activity	9.2
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	36
Number of git tags or releases	168
Versions matched to tags or releases	35

This package has been digitally signed using sigtore.

Source repository	https://github.com/hey-api/openapi-ts
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=162356337

Alternatives

Package	Score	Description
axios	0
node-fetch	0
isomorphic-fetch	0

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @hey-api/client-fetch

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.3
User activity	9.2
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	36
Number of git tags or releases	168
Versions matched to tags or releases	35

This package has been digitally signed using sigtore.

Source repository	https://github.com/hey-api/openapi-ts
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=162356337

Alternatives

Package	Score	Description
axios	0
node-fetch	0
isomorphic-fetch	0

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @hey-api/client-fetch

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.3
User activity	9.2
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	36
Number of git tags or releases	168
Versions matched to tags or releases	35

This package has been digitally signed using sigtore.

Source repository	https://github.com/hey-api/openapi-ts
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=162356337

Alternatives

Package	Score	Description
axios	0
node-fetch	0
isomorphic-fetch	0

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @hey-api/client-fetch

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.3
User activity	9.2
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	36
Number of git tags or releases	168
Versions matched to tags or releases	35

This package has been digitally signed using sigtore.

Source repository	https://github.com/hey-api/openapi-ts
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=162356337

Alternatives

Package	Score	Description
axios	0
node-fetch	0
isomorphic-fetch	0

[dependabot]

Superseded by #153.