Bump dependabot/fetch-metadata from 1.3.6 to 1.5.0

[dependabot]

Bumps dependabot/fetch-metadata from 1.3.6 to 1.5.0.

Release notes

Sourced from dependabot/fetch-metadata's releases.

v1.5.0

What's Changed

New Features:

• Added flag if "Maintainer changes" appears in the PR body by @​mwaddell in dependabot/fetch-metadata#174

Bumped Deps:

• Bump @​types/node from 18.15.11 to 20.2.1 by @​dependabot in dependabot/fetch-metadata#364
• Bump nock from 13.3.0 to 13.3.1 by @​dependabot in dependabot/fetch-metadata#366

Docs:

• Add minimum permissions to usage example by @​jablko in dependabot/fetch-metadata#343
• Document verification overrides in readme by @​jeffwidman in dependabot/fetch-metadata#345

Code cleanup:

• Simplify the release process by linking to release notes instead of copy/pasting them by @​jeffwidman in dependabot/fetch-metadata#347
• Use the full email for the GitHub Actions bot by @​jeffwidman in dependabot/fetch-metadata#354
• Inline the PR URL by @​jeffwidman in dependabot/fetch-metadata#359
• No need to request escalated permissions for GITHUB_TOKEN by @​jeffwidman in dependabot/fetch-metadata#357
• Remove unused step by @​jeffwidman in dependabot/fetch-metadata#358
• Simplify bin/bump-version by @​jeffwidman in dependabot/fetch-metadata#368
• Add a deeplink for tagging releases to the Readme by @​jeffwidman in dependabot/fetch-metadata#369
• Stop using deprecated set-output by @​jeffwidman in dependabot/fetch-metadata#370
• Add workflow for creating release PR's by @​jeffwidman in dependabot/fetch-metadata#360
• Add workflow for floating the v1 tag to the latest release by @​jeffwidman in dependabot/fetch-metadata#361

Full Changelog: dependabot/fetch-metadata@v1...v1.5.0

v1.4.0

New Features

• feat: add option to skip internal verifications by @​yeikel in dependabot/fetch-metadata#336

Bugfix

• Allow leading v on commit message versions by @​jonmcquillan in dependabot/fetch-metadata#338

Dep Bumps

• Bump @​typescript-eslint/eslint-plugin from 5.48.2 to 5.49.0 by @​dependabot in dependabot/fetch-metadata#307
• Bump @​types/yargs from 17.0.19 to 17.0.20 by @​dependabot in dependabot/fetch-metadata#308
• Bump @​typescript-eslint/parser from 5.48.2 to 5.49.0 by @​dependabot in dependabot/fetch-metadata#309
• Bump eslint from 8.32.0 to 8.33.0 by @​dependabot in dependabot/fetch-metadata#315
• Bump @​typescript-eslint/parser from 5.49.0 to 5.50.0 by @​dependabot in dependabot/fetch-metadata#314
• Bump @​types/yargs from 17.0.20 to 17.0.22 by @​dependabot in dependabot/fetch-metadata#312
• Bump @​vercel/ncc from 0.36.0 to 0.36.1 by @​dependabot in dependabot/fetch-metadata#311
• Bump typescript from 4.9.4 to 4.9.5 by @​dependabot in dependabot/fetch-metadata#313
• Bump yargs from 17.6.2 to 17.7.1 by @​dependabot in dependabot/fetch-metadata#322

... (truncated)

Commits

• 28a846a v1.5.0 (#372)
• a2a3a43 Add workflow for floating the v1 tag to the latest release (#361)
• 6c5b8c2 Add workflow for creating release PR's (#360)
• c40140b Stop using deprecated set-output (#370)
• 042f8db Add a deeplink for tagging releases to the Readme (#369)
• fd7c300 Simplify bin/bump-version (#368)
• 9cc71e7 Merge pull request #366 from dependabot/dependabot/npm_and_yarn/nock-13.3.1
• f29558c Bump nock from 13.3.0 to 13.3.1
• ec762dd Merge pull request #364 from dependabot/dependabot/npm_and_yarn/types/node-20...
• e79c5ea Bump @​types/node from 18.15.11 to 20.2.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov-commenter]

Codecov Report

Merging #92 (cde46ed) into main (ce294fd) will not change coverage.
The diff coverage is n/a.

❗ Your organization is not using the GitHub App Integration. As a result you may experience degraded service beginning May 15th. Please install the Github App Integration for your organization. Read more.

@@           Coverage Diff           @@
##             main      #92   +/-   ##
=======================================
  Coverage   97.09%   97.09%           
=======================================
  Files          20       20           
  Lines         344      344           
=======================================
  Hits          334      334           
  Misses         10       10           

---

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 53d9d5e...cde46ed. Read the comment docs.

[dependabot]

Superseded by #94.