fix(deps): update dependency winston to v3 - abandoned

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
winston	^2.2.0 -> ^3.0.0

---

Release Notes

winstonjs/winston

v3.8.2

Compare Source

Patch-level changes

• Add .js to main entry point in package.json in https://github.com/winstonjs/winston/pull/2177; thanks to new contributor @​rumanbsl
• Small grammatical fixes in README.md in https://github.com/winstonjs/winston/pull/2183; thanks to new contributor @​mikebarr24
• Move colors to non-dev dependencies by @​wbt in https://github.com/winstonjs/winston/pull/2190

Dependency updates by @​dependabot + CI autotesting

• Bump @​babel/preset-env from 7.18.2 to 7.19.0 in https://github.com/winstonjs/winston/pull/2189
• Bump @​babel/cli from 7.17.10 to 7.18.10 in https://github.com/winstonjs/winston/pull/2173
• Bump eslint from 8.18.0 to 8.23.0 in https://github.com/winstonjs/winston/pull/2184
• Bump @​babel/core from 7.18.5 to 7.19.0 in https://github.com/winstonjs/winston/pull/2192
• Bump logform from 2.4.1 to 2.4.2 in https://github.com/winstonjs/winston/pull/2191

v3.8.1

Compare Source

Patch-level changes

• Update types to match in-code definitions in https://github.com/winstonjs/winston/pull/2157; thanks to new contributor @​flappyBug

Dependency updates by @​dependabot + CI autotesting

• Bump logform from 2.4.0 to 2.4.1 in https://github.com/winstonjs/winston/pull/2156
• Bump async from 3.2.3 to 3.2.4 in https://github.com/winstonjs/winston/pull/2147

v3.8.0

Compare Source

Added functionality

• Add the stringify replacer option to the HTTP transport by @​domiins in https://github.com/winstonjs/winston/pull/2155

Dependency updates by @​dependabot + CI autotesting

• Bump @​babel/core from 7.17.8 to 7.18.5
• Bump eslint from 8.12.0 to 8.18.0
• Bump @​types/node from 17.0.23 to 18.0.0
• Bump @​babel/preset-env from 7.16.11 to 7.18.2
• Bump @​babel/cli from 7.17.6 to 7.17.10

Updates facilitating repo maintenance & enhancing documentation

• Explicitly note that the Contributing.md file is out of date
• Add instructions for publishing updated version by @​wbt (docs/publishing.md)
• Prettier Config File by @​jeanpierrecarvalho in https://github.com/winstonjs/winston/pull/2092
• Readme update to explain origin of errors for handling (#​2120)
• update documentation for #​2114 by @​zizifn in https://github.com/winstonjs/winston/pull/2138
• enhance message for logs with no transports #​2114 by @​zizifn in https://github.com/winstonjs/winston/pull/2139
• Added a new Community Transport option to the list: Worker Thread based async Console Transport by @​arpad1337 in https://github.com/winstonjs/winston/pull/2140

Thanks especially to new contributors @​zizifn, @​arpad1337, @​domiins, & @​jeanpierrecarvalho!

v3.7.2

Compare Source

This change reverts what should have been the feature-level update in 3.7.0 due to issue #​2103 showing this to be breaking, unintentionally.

v3.7.1

Compare Source

This change includes some minor updates to package-lock.json resolving npm audit failures: one in ansi-regex and another in minimist.

v3.6.0

Compare Source

• [#​2057] Fix potential memory leak by not waiting for process.nextTick before clearing pending callbacks (thanks @​smashah!)
• [#​2071] Update to logform 2.4.0, which includes changes such as new options for JsonOptions and some typo fixes regarding levels
• Various other dependencies are updated, tests are reorganized and cleaned up, etc. (thanks @​wbt, @​Maverick1872, @​fearphage!)

v3.5.1

Compare Source

This release reverts the changes made in PR #​1896 which added stricter typing to the available log levels,
and inadvertently broke use of custom levels with TypeScript (Issue #​2047). Apologies for that!

v3.5.0

Compare Source

This release includes the following, in sequence by first merge in group:

Feature updates:

• Support batch mode in HTTP Transport (Issue #​1970, PR #​1998, thanks @​BBE78!)

Patch-level updates:

• Bump dependency versions (thanks @​dependabot & @​DABH!)
  • Bump @​types/node from 16.11.12 to 17.0.8 (PR #​2009)
  • Bump @​babel/preset-env from 7.16.7 to 7.16.8 (#​2036)
  • Bump @​types/node from 17.0.8 to 17.0.9 (#​2035)
  • Bump @​babel/cli from 7.16.7 to 7.16.8 (#​2034)
  • Bump @​types/node from 17.0.9 to 17.0.10 (#​2042)
  • Bump @​babel/core from 7.16.7 to 7.16.12 (#​2041)
  • Bump @​babel/preset-env from 7.16.8 to 7.16.11 (#​2040)
• Fixing documentation syntax errors in transports code examples (#​1916; thanks @​romanzaycev!)
• Fix missing type declarations, especially for .rejections
  (#​1842, #​1929, #​2021; thanks @​vanflux, @​svaj, @​glensc, & others!)
• More narrowly typing the “level” string (#​1896, thanks @​yonas-g!)
• Using a safer stringify, e.g. to avoid issues from circular structures, in the http transport
  (#​2043, thanks @​karlwir!)

Updates to the repo & project which don’t actually affect the running code:

• Add a channel for reporting security vulnerabilities (#​2024, thanks @​JamieSlome!)
• Add coverage tracking in CI & documentation (#​2025 and #​2028, thanks @​fearphage!)
• Update issue templates (#​2030 and #​2031, thanks @​Maverick1872!)
• Remove gitter link from README.md (#​2027, thanks @​DABH!)

Thanks also to maintainers @​DABH, @​fearphage, @​Maverick1872, and @​wbt for issue/PR shepherding
and help across multiple parts of the release!
If somebody got missed in the list of thanks, please forgive the accidental oversight
and/or feel free to open a PR on this changelog.

v3.4.0

Compare Source

Yesterday's release was done with a higher sense of urgency than usual
due to vandalism in the colors package.
This release:

• ties up a loose end by including [#​1973] to go with [#​1824]
• adds a missing http property in NpmConfigSetColors [#​2004] (thanks @​SimDaSong)
• fixes a minor issue in the build/release process [#​2014]
• pins the version of the testing framework to avoid an issue with a test incorrectly failing [#​2017]

The biggest change in this release, motivating the feature-level update, is
[#​2006] Make winston more ESM friendly, thanks to @​miguelcobain.

Thanks also to @​DABH, @​wbt, and @​fearphage for contributions and reviews!

v3.3.4

Compare Source

Compared to v3.3.3, this version fixes some issues and includes some updates to project infrastructure,
such as replacing Travis with Github CI and dependabot configuration.
There have also been several relatively minor improvements to documentation, and incorporation of some updated dependencies.
Dependency updates include a critical bug fix [#​2008] in response to self-vandalism by the author of a dependency.

• [#​1964] Added documentation for how to use a new externally maintained Seq transport.
• [#​1712] Add default metadata when calling log with string level and message.
• [#​1824] Unbind event listeners on close
• [#​1961] Handle undefined rejections
• [#​1878] Correct boolean evaluation of empty-string value for eol option
• [#​1977] Improved consistency of object parameters for better test reliability

v3.3.3

Compare Source

• [#​1820] Revert [#​1807] to resolve breaking changes for Typescript users.

v3.3.2

Compare Source

• [#​1814] Use a fork of diagnostics published to NPM to avoid git dependency.

v3.3.1

Compare Source

• [#​1803], [#​1807] Fix TypeScript bugs.
• [#​1740] Add space between info.message and meta.message.
• [#​1813] Avoid indirect storage-engine dependency.
• [#​1810] README updates.

v3.3.0

Compare Source

• [#​1779] Fix property name in rejection handler.
• [#​1768] Exclude extraneous files from NPM package.
• [#​1364], [#​1714] Don't remove transport from logger when transport error
  occurs.
• [#​1603] Expose child property on default logger.
• [#​1777] Allow HTTP transport to pass options to request.
• [#​1662] Add bearer auth capabilities to HTTP transport.
• [#​1612] Remove no-op in file transport.
• [#​1622], [#​1623], [#​1625] Typescript fixes.
• (Minor) [#​1647], [#​1793] Update CI settings.
• (Minor) [#​1600], [#​1605], [#​1593], [#​1610], [#​1654], [#​1656], [#​1661],
  [#​1651], [#​1652], [#​1677], [#​1683], [#​1684], [#​1700], [#​1697], [#​1650],
  [#​1705], [#​1723], [#​1737], [#​1733], [#​1743], [#​1750], [#​1754], [#​1780],
  [#​1778] README, Transports.md, other docs changes.
• [#​1672], [#​1686], [#​1772] Update dependencies.

v3.2.1

Compare Source

UNBOUND PROTOTYPE AD INFINITUM EDITION

• #[1579], (@​indexzero) Fallback to the "root" instance always created by
  createLogger for level convenience methods (e.g. .info(), .silly()).
  (Fixes [#​1577]).
• [#​1539], (@​indexzero) Assume message is the empty string when level-helper
  methods are invoked with no arguments (Fixed [#​1501]).
• [#​1583], (@​kibertoad) Add typings for defaultMeta (Fixes [#​1582])
• [#​1586], (@​kibertoad) Update dependencies.

v3.2.0

Compare Source

SORRY IT TOO SO LONG EDITION

NOTE: this was our first release using Github Projects. See the
3.2.0 Release Project.

New Features!

• [#​1471], (@​kibertoad) Implement child loggers.
• [#​1462], (@​drazisil) Add handleRejection support.
  • [#​1555], (@​DABH) Add fixes from [#​1355] to unhandled rejection handler.
• [#​1418], (@​mfrisbey) Precompile ES6 syntax before publishing to npm.
  • [#​1533], (@​kibertoad) Update to Babel 7.
• [#​1562], (@​indexzero) [fix] Better handling of new Error(string)
  throughout the pipeline(s). (Fixes [#​1338], [#​1486]).

Bug Fixes

• [#​1355], (@​DABH) Fix issues with ExceptionHandler (Fixes [#​1289]).
• [#​1463], (@​SerayaEryn) Bubble transport warn events up to logger in
  addition to errors.
• [#​1480], [#​1503], (@​SerayaEryn) File tailrolling fix.
• [#​1483], (@​soldair) Assign log levels to un-bound functions.
• [#​1513], (@​TilaTheHun0) Set maxListeners for Console transport.
• [#​1521], (@​jamesbechet) Fix Transform from readable-stream using CRA.
• [#​1434], (@​Kouzukii) Fixes logger.query function (regression from 3.0.0)
• [#​1526], (@​pixtron) Log file without .gz for tailable (Fixes [#​1525]).
• [#​1559], (@​eubnara) Fix typo related to exitOnError.
• [#​1556], (@​adoyle-h) Support to create log directory if it doesn't exist
  for FileTransport.

New splat behavior

• [#​1552], (@​indexzero) Consistent handling of meta with (and without)
  interpolation in winston and logform.
• [#​1499], (@​DABH) Provide all of SPLAT to formats (Fixes [#​1485]).
• [#​1485], (@​mpabst) Fixing off-by-one when using both meta and splat.

Previously splat would have added a meta property for any additional
info[SPLAT] beyond the expected number of tokens.

As of [email protected], format.splat assumes additional splat paramters
(aka "metas") are objects and merges enumerable properties into the info.
e.g. BE ADVISED previous "metas" that were not objects will very likely
lead to odd behavior. e.g.

const { createLogger, format, transports } = require('winston');
const { splat } = format;
const { MESSAGE, LEVEL, SPLAT } = require('triple-beam');

const logger = createLogger({
  format: format.combine(
    format.splat(),
    format.json()
  ),
  transports: [new transports.Console()]
});

// Expects two tokens, but four splat parameters provided.
logger.info(
  'Let us %s for %j',   // message
  'objects',           // used for %s
  { label: 'sure' },   // used for %j
  'lol', ['ok', 'why'] // Multiple additional meta values
);

// winston < 3.2.0 && [email protected] behavior:
// Added "meta" property.
//
// { level: 'info',
//   message: 'Let us objects for {"label":"sure"}',
//   meta: ['lol', ['ok', 'why']],
//   [Symbol(level)]: 'info',
//   [Symbol(message)]: 'Let us %s for %j',
//   [Symbol(splat)]: [ 'objects', { label: 'sure' } ] }

// winston >= 3.2.0 && [email protected] behavior: Enumerable properties
// assigned into `info`. Since **strings and Arrays only have NUMERIC
// enumerable properties we get this behavior!**
//
// { '0': 'ok',
//   '1': 'why',
//   '2': 'l',
//   level: 'info',
//   message: 'Let us objects for {"label":"sure"}',
//   [Symbol(level)]: 'info',
//   [Symbol(message)]: 'Let us %s for %j',
//   [Symbol(splat)]: [ 'objects', { label: 'sure' } ] }

v3.1.0

Compare Source

RELEASES ON A PLANE EDITION

• Minor TypeScript fixes [#​1362], [#​1395], [#​1440]
• Fix minor typos [#​1359], [#​1363], [#​1372], [#​1378], [#​1390]
• [#​1373], (@​revik): Add consoleWarnLevels property to console transport options for console.warn browser support.
• [#​1394], (@​bzoz): Fix tests on Windows.
• [#​1447], (@​dboshardy): Support transport name option to override default names for built-in transports.
• [#​1420], (@​ledbit): Fix file rotation with tailing: true (Fixes [#​1450], [#​1194]).
• [#​1352], (@​lutovich): Add isLevelEnabled(string) & isXXXEnabled() to Logger class.
• Dependency management
  • Regenerate package-lock.json.
  • Upgrade to colors@^1.3.2 (Fixes [#​1439]).
  • Upgrade to logform@^1.9.1.
  • Upgrade to diagnostics@^1.1.1.
  • Upgrade to @types/node@^10.9.3.
  • Upgrade to assume@^2.1.0.
  • Upgrade to hock@^1.3.3.
  • Upgrade to mocha@^5.2.0.
  • Upgrade to nyc@^13.0.1.
  • Upgrade to split2@​^3.0.0.

v3.0.1

Compare Source

v3.0.0

Compare Source

GET IN THE CHOPPA EDITION

• [#​1332], (@​DABH): logger.debug is sent to stderr (Fixed [#​1024])
• [#​1328], (@​ChrisAlderson): Logger level doesn't update transports level (Fixes [#​1191]).
• [#​1356], (@​indexzero) Move splat functionality into logform. (Fixes [#​1298]).
• [#​1340], (@​indexzero): Check log.length when evaluating "legacyness" of transports (Fixes [#​1280]).
• [#​1346], (@​indexzero): Implement _final from Node.js streams. (Related to winston-transport#​24, Fixes [#​1250]).
• [#​1347], (@​indexzero): Wrap calls to format.transform with try / catch (Fixes [#​1261]).
• [#​1357], (@​indexzero): Remove paddings as we have no use for it in the current API.
• [TODO]: REMAINS OPEN, NO PR (Fixes [#​1289])
• Documentation
  • [#​1301], (@​westonpace) Cleaned up some of the documentation on colorize
    to address concerns in [#​1095].
  • First pass at a heavy refactor of docs/transports.md.
• Dependency management
  • Regenerate package-lock.json.
  • Upgrade to logform@^1.9.0.

v2.4.7

Compare Source

What's Changed

• Utilizing async 2.6.4 for node 4 compatibility by @​ansmithf5 in https://github.com/winstonjs/winston/pull/2166
• Update lodash to fix audit failures by @​ansmithf5 in https://github.com/winstonjs/winston/pull/2167

New Contributors

• @​ansmithf5 made their first contribution in https://github.com/winstonjs/winston/pull/2166

Full Changelog: winstonjs/winston@v2.4.6...v2.4.7

v2.4.6

Compare Source

This updates a dependency to address https://security.snyk.io/vuln/SNYK-JS-ASYNC-2441827. See #​2112 by @​bacali95.

v2.4.5

Compare Source

v2.4.4

Compare Source

v2.4.3

Compare Source

v2.4.2

Compare Source

v2.4.1

Compare Source

v2.4.0

Compare Source

ZOMFG [email protected] EDITION

• [#​1036] Container.add() 'filters' and 'rewriters' option passing to logger.
• [#​1066] Fixed working of "humanReadableUnhandledException" parameter when additional data is added in meta.
• [#​1040] Added filtering by log level
• [#​1042] Fix regressions brought by 2.3.1.
  • Fix regression on array printing.
  • Fix regression on falsy value.
• [#​977] Always decycle objects before cloning.
  • Fixes [#​862]
  • Fixes [#​474]
  • Fixes [#​914]
• [57af38a] Missing context in .lazyDrain of File transport.
• [178935f] Suppress excessive Node warning from fs.unlink.
• [fcf04e1] Add label option to File transport docs.
• [7e736b4], [24300e2] Added more info about undocumented winston.startTimer() method.
• [#​1076], [#​1082], [#​1029], [#​989], [e1e7188] Minor grammatical & style updates to README.md.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

[renovate]

Autoclosing Skipped

This PR has been flagged for autoclosing. However, it is being skipped due to the branch being already modified. Please close/delete it manually or report a bug if you think this is in error.