fix(deps): update dependency commander to v15#410
Merged
Conversation
Contributor
✅MegaLinter analysis: Success
Notices📣 MegaLinter 9.5.0 is out! Discover the new features and security recommendations in the release announcement. (Skip this info by defining See detailed reports in MegaLinter artifacts MegaLinter is graciously provided by OX Security |
JoshMock
approved these changes
Jun 15, 2026
Draft
MattDevy
added a commit
that referenced
this pull request
Jun 16, 2026
Supersedes the previous regeneration commit, which ran against a locally-symlinked node_modules with a stale yaml version. The actual drift on main was commander 14 -> 15 from #410, which had updated the lockfile but not NOTICE.txt.
levontumanyan
added a commit
to levontumanyan/cli
that referenced
this pull request
Jun 22, 2026
The test for JSON-format input validation errors was failing on Node.js 22 (Linux) after the commander v14 → v15 upgrade (elastic#410). Commander 15 is ESM-only, and on Linux Node 22.22.x the combination of global process.stderr.write patching in the test helper with tsx/esm caused the captured output to be unreliable — specifically the second test in the suite got an empty or non-JSON buffer, making parsed come back null. Two-part fix: 1. factory.ts: route the JSON error through cmd.configureOutput().writeErr() instead of process.stderr.write() directly, respecting commander's own output configuration layer. 2. test: remove global process.stdout/stderr.write patching from invokeWithJsonFormat and rely solely on configureOutput — which is already set up to capture output. This eliminates the global-state mutation that was the root cause of the Linux-specific failure. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
^14.0.3->^15.0.0Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Release Notes
tj/commander.js (commander)
v15.0.0Compare Source
Commander 15 is ESM only. This is expected to be seamless for ESM consumers, but some CommonJS consumers may hit issues with tooling requiring configuration for ESM-only dependencies. See Migration Tips below.
The release of Commander 15 moves Commander 14 into maintenance. Commander 14 will get security updates for
12 months (to May 2027). For more info see Release Policy.
Added
Fixed
--no-*option sets default option value totrue, default not implicitly set when define both positive and negative option in either order ([#2405])Changed
require(esm)).node:testtest runner ([#2463])Deleted
commander/esm.mjs([#2464])Migration Tips
Commander 15 is ESM only, but this does not mean you need to migrate to ESM to use it. Importing ESM from CommonJS is
supported by Node.js, and Bun, and Deno. Hopefully it Just Works for you! However, you may be using a different runtime or
some other part of your setup that may not yet natively support importing ESM from CommonJS, such as your testing framework
or bundler.
If you have problems using Commander 15 in your environment, one option is stay on Commander 14 for now. Commander 14 will
get security updates until May 2027 and things will hopefully improve for your setup in the meantime.
Configuration
📅 Schedule: Branch creation - "on monday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.