Revert "chore(deps-dev): bump eslint-plugin-unicorn from 56.0.1 to 59…

[thinkasany]

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
table	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	May 7, 2025 8:00am

[coderabbitai]

Walkthrough

本次更改将 package.json 文件中 eslint-plugin-unicorn 的开发依赖版本从 ^59.0.0 降级至 ^56.0.0，未涉及其他依赖或脚本的修改。

Changes

文件	变更摘要
package.json	将 eslint-plugin-unicorn 依赖版本从 ^59.0.0 降级到 ^56.0.0

Poem

🐇
依赖降级轻轻跳，
Unicorn版本往回绕。
小兔检查没烦恼，
代码森林更美好。
🌱

---

📜 Recent review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0b5ece8 and a15f39b.

📒 Files selected for processing (1)

• package.json (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms (2)

• GitHub Check: test / react component workflow
• GitHub Check: Socket Security: Pull Request Alerts

🔇 Additional comments (1)

package.json (1)

78-78:

Details

✅ Verification successful

确认回退 eslint-plugin-unicorn 版本的兼容性和安全性

此 PR 将 eslint-plugin-unicorn 的版本从 ^59.0.0 降级至 ^56.0.0。请确认以下几点：

1. 回退后项目的 ESLint 规则和现有代码仍然能够正常通过 lint。
2. 版本 ^56.0.0 是否存在已知安全漏洞或已修复的问题。

可通过以下脚本进行验证：

---

🏁 Script executed:

#!/bin/bash
# 安装依赖并运行 lint
npm install
npm run lint

# 检查 eslint-plugin-unicorn 安全公告
npm audit --production=false | grep eslint-plugin-unicorn

Length of output: 1506

---

为了确保在有 lockfile 的情况下正确安装依赖并进行 lint 与安全扫描，请执行以下验证脚本：

此脚本完成后，请将输出结果贴回以便最终确认。

---

🏁 Script executed:

#!/bin/bash
# 1. 生成或更新 lockfile
npm install --package-lock-only

# 2. 安装依赖，忽略 peer 依赖冲突
npm install --legacy-peer-deps

# 3. 运行 lint 验证 ESLint 规则兼容性
npm run lint

# 4. 检查 eslint-plugin-unicorn 的安全公告
npm audit --production=false | grep eslint-plugin-unicorn || echo "未发现与 eslint-plugin-unicorn 相关的安全漏洞"

Length of output: 4466

---

请验证回退后的 ESLint 规则兼容性和安全性

运行以下脚本，确认在使用 --legacy-peer-deps 安装后仍能通过 lint 且无 eslint-plugin-unicorn 安全漏洞：

请贴出上述命令的完整输出，以便最终确认。

---

🏁 Script executed:

#!/bin/bash
# 安装依赖（忽略 peer 依赖冲突）
npm install --legacy-peer-deps

# 1. 验证 ESLint 规则兼容性
npm run lint

# 2. 检查 eslint-plugin-unicorn 的安全公告
npm audit --production=false | grep eslint-plugin-unicorn || echo "未发现与 eslint-plugin-unicorn 相关的安全漏洞"

Length of output: 6879

---

确认：eslint-plugin-unicorn@^56.0.0 兼容性和安全性已验证

• 依赖安装（npm install --legacy-peer-deps）无报错
• 运行 npm run lint 仅有 22 条警告，无错误
• 运行 npm audit 未发现与 eslint-plugin-unicorn 相关的安全漏洞

可放心合并此版本回退。

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	eslint-plugin-unicorn@​59.0.1 ⏵ 56.0.1

View full report

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 98.03%. Comparing base (0b5ece8) to head (a15f39b).
Report is 1 commits behind head on master.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #1265   +/-   ##
=======================================
  Coverage   98.03%   98.03%           
=======================================
  Files          76       76           
  Lines        7425     7425           
  Branches     1146     1146           
=======================================
  Hits         7279     7279           
  Misses        140      140           
  Partials        6        6           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.