build(deps-dev): bump concurrently from 9.2.1 to 10.0.3

[dependabot]

Bumps concurrently from 9.2.1 to 10.0.3.

Release notes

Sourced from concurrently's releases.

v10.0.3

Republish of https://github.com/open-cli-tools/concurrently/releases/tag/v10.0.1 with Trusted Publishing enabled (see #595)

Full Changelog: open-cli-tools/concurrently@v10.0.2...v10.0.3

v10.0.2

Test version to restore Trusted Publishing. Not published to npm.

v10.0.1

• Ensure FlowController type is exported - #594

Full Changelog: open-cli-tools/concurrently@v10.0.0...v10.0.1

v10.0.0

💥 Breaking Changes

• Dropped support for Node.js <22.0.0. Older Node.js version have reached end-of-life, and certain features require new-ish JS APIs.
• concurrently is now ESM-only. It's now possible to require(esm). See here for interoperability.
• Prefix colors now default to automatic - #581 The colors used to default to reset (which does nothing). Concurrently now automatically selects a color, out of the box. The list of colors used is not jarring nor carries semantic meaning, and reads well in both dark and light terminal backgrounds.
• Removed deprecated flags and options
  • CLI flag --name-separator: use commas instead.
  • API option killOthers: use killOthersOn instead.

✨ New Features

• Support applying modifiers to hex prefix colors (e.g. #ff0000.bold) - #450
• Support chalk's color functions in prefixes (e.g. rgb(), hex(), bgRgb(), etc) - #578
• Set prefix background color via bg#RRGGBB - #578
• Allow shell override via --shell CLI flag/shell API option - #288, #589, #556 concurrently distinguishes between cmd.exe, powershell, and POSIX-based shells.
• Manual prefix coloring in templates e.g. [{color}{name}{/color}] - #583, #587

🐛 Bug fixes

• Scope quote normalization to CLI input - #582, #585 It should now also be possible to run commands like "/some/command" foo bar"
• Don't throw when color doesn't exist - #580

🔐 Security

• Address vulnerability in shellquote - #591

Other changes

• Warn about running on Snap - #584

New Contributors

• @​philfreo made their first contribution in open-cli-tools/concurrently#566
• @​garretmh made their first contribution in open-cli-tools/concurrently#450
• @​CodeF53 made their first contribution in open-cli-tools/concurrently#574
• @​nkappler made their first contribution in open-cli-tools/concurrently#577

... (truncated)

Commits

• 435f61b 10.0.3
• 5ea69c6 ci: use node 24 in the release workflow
• 18e1281 10.0.2
• e70686f 10.0.1
• a95bceb Rename flow-controller{.d -> }.ts
• ced4245 ci: configure trusted publisher flow
• cf2eaa2 10.0.0
• 1b9bae4 deps: upgrade yargs to v18 (#593)
• b05ee75 Bump min Node.js version to v22
• ae60bc4 Scope quote normalization to CLI input (#585)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for concurrently since your current version.

[greptile-apps]

Greptile Summary

Bumps concurrently from 9.2.1 to 10.0.3 in both packages/cli and packages/core as a dev dependency, picking up a security fix for the shell-quote vulnerability and several new features.

• The v10 major bump drops Node.js <22 support and becomes ESM-only; both packages already declare "type": "module" and require node >= 24, so there are no compatibility concerns.
• Neither package uses the deprecated --name-separator CLI flag or the killOthers API option that were removed in v10 — the only concurrently usage is concurrently --group "npm:..." in the check:ci script, which remains fully supported.
• Transitive deps are updated to shell-quote 1.8.4 (security patch), chalk 5, yargs 18, and supports-color 10.

Confidence Score: 5/5

Safe to merge — dev-only version bump with no breaking changes affecting this project's usage patterns

All v10 breaking changes (Node ≥22, ESM-only, removed deprecated flags) are already satisfied by the project's existing constraints and usage. The only concurrently invocations use --group with npm:* patterns, which are unchanged. The update also brings a security patch for shell-quote.

No files require special attention

Important Files Changed

Filename	Overview
packages/cli/package.json	Dev dependency concurrently bumped from ^9.2.1 to ^10.0.3; only usage is the check:ci script with compatible flags
packages/core/package.json	Dev dependency concurrently bumped from ^9.2.1 to ^10.0.3; only usage is the check:ci script with compatible flags
package-lock.json	Lockfile updated to reflect concurrently 10.0.3 and its updated transitive deps (chalk 5, shell-quote 1.8.4, yargs 18, supports-color 10)

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A["concurrently 9.2.1 → 10.0.3"] --> B["Breaking changes in v10"]
    B --> C["Node ≥22 required\n(project requires ≥24 ✅)"]
    B --> D["ESM-only\n(both pkgs use type:module ✅)"]
    B --> E["--name-separator removed\n(not used in scripts ✅)"]
    B --> F["killOthers API removed\n(not used ✅)"]
    A --> G["Security fix\nshell-quote 1.8.3 → 1.8.4"]
    A --> H["Usage: concurrently --group\nnpm:lint npm:typecheck …\n(flag still supported ✅)"]

Loading

_{Reviews (2): Last reviewed commit: "build(deps-dev): bump concurrently from ..." | Re-trigger Greptile}

[dependabot]

Looks like concurrently is up-to-date now, so this is no longer needed.