[DEPENDENCY] Bump @npmcli/config from 9.0.0 to 10.11.0

[dependabot]

Bumps @npmcli/config from 9.0.0 to 10.11.0.

Release notes

Sourced from @​npmcli/config's releases.

config: v10.11.0

10.11.0 (2026-06-11)

Features

• 5f73e31 #9539 differentiate GitHub Actions environments in user-agent (#9517) (@​reggi, @​Copilot)
• ae8ac4e #9534 add min-release-age-exclude config (@​JamieMagee, @​caseyjhol)

Bug Fixes

• 1bb62bb #9454 config: clarify --all help so it's accurate for approve-scripts and deny-scripts (@​JamieMagee)

config: v10.10.0

10.10.0 (2026-05-27)

Features

• 4b67f6e #9416 publish --access=private alias for restricted (#9416) (@​github-actions[bot], @​reggi, @​Copilot)
• a10c7ca #9415 Phase 1 of allowScripts opt-in install-script policy (#9360) (#9415) (@​owlstronaut, @​JamieMagee)

v10.9.8

Dependencies

• workspace: @npmcli/arborist@8.0.5
• workspace: libnpmdiff@7.0.5
• workspace: libnpmexec@9.0.5
• workspace: libnpmfund@6.0.5
• workspace: libnpmpack@8.0.5

v10.9.7

10.9.7 (2026-03-18)

Bug Fixes

• bbcd455 #9120 arborist: v10 - backport store, lock-only, and override sibling fixes (#9120) (@​manzoorwanijk)

Dependencies

• cc9a4de #9130 hoist production @​sigstore dependencies

Chores

• e5c1309 #9130 dev dependency updates (@​wraithgar)
• workspace: @npmcli/arborist@8.0.4
• workspace: libnpmdiff@7.0.4
• workspace: libnpmexec@9.0.4
• workspace: libnpmfund@6.0.4
• workspace: libnpmpack@8.0.4

v10.9.6

10.9.6 (2026-03-10)

Bug Fixes

• d6fe671 #9098 arborist: v10 - backport multiple fixes for linked install (#9098) (@​manzoorwanijk)

Dependencies

• a5dadad #9067 tar@7.5.11
• 87abb92 #9067 pacote@20.0.1
• c2f0fd2 #9067 pacote@19.0.2
• workspace: @npmcli/arborist@8.0.3
• workspace: libnpmdiff@7.0.3
• workspace: libnpmexec@9.0.3
• workspace: libnpmfund@6.0.3
• workspace: libnpmpack@8.0.3

... (truncated)

Changelog

Sourced from @​npmcli/config's changelog.

10.11.0 (2026-06-11)

Features

• 5f73e31 #9539 differentiate GitHub Actions environments in user-agent (#9517) (@​reggi, @​Copilot)
• ae8ac4e #9534 add min-release-age-exclude config (@​JamieMagee, @​caseyjhol)

Bug Fixes

• 1bb62bb #9454 config: clarify --all help so it's accurate for approve-scripts and deny-scripts (@​JamieMagee)

10.10.0 (2026-05-27)

Features

• 4b67f6e #9416 publish --access=private alias for restricted (#9416) (@​github-actions[bot], @​reggi, @​Copilot)
• a10c7ca #9415 Phase 1 of allowScripts opt-in install-script policy (#9360) (#9415) (@​owlstronaut, @​JamieMagee)

10.9.1 (2026-05-20)

Bug Fixes

• 25708d3 #9339 min-release-age=0 doesn't filter, honor cross-source precedence (@​owlstronaut)
• 6aa332d #9339 allow min-release-age in npmrc to coexist with --before (@​raazkhnl)

10.9.0 (2026-05-06)

Features

• 45fc5e0 #9288 add allow-directory, allow-file, and allow-remote (#9288) (@​github-actions[bot], @​wraithgar)

Bug Fixes

• 574b73a #9293 config: preserve min-release-age after flattening (@​lawrence3699)

10.8.1 (2026-03-24)

Bug Fixes

• 596706a #9148 revert prefer-offline/prefer-online exclusivity (#9129) (@​owlstronaut)

10.8.0 (2026-03-18)

Features

• 8eff5fb #9049 audit: add --include-attestations flag to output sigstore bundles (#9049) (@​mitchdenny)

Bug Fixes

• d273380 #9129 config: make prefer-offline and prefer-online exclusive (#9129) (@​mvanhorn)
• e839b07 #9023 clear exclusive param siblings when setting from CLI (#9023) (@​umeshmore45)

10.7.1 (2026-02-19)

Bug Fixes

• 9fac412 #8995 improve unknown config warning with .npmrc section hint (#8995) (@​umeshmore45)

Chores

• 40fcab4 #8991 @npmcli/template-oss@4.29.0 (@​wraithgar)

10.7.0 (2026-02-11)

Features

• cf56a1e #8899 npm trust, per-command config (@​reggi)
• cf56a1e #8899 npm trust (@​reggi)
• 66d6e11 #8965 add min-release-age (#8965) (@​wraithgar)

10.6.0 (2026-02-04)

Features

• f5f6cf7 #8943 config: add --allow-git (@​wraithgar)

... (truncated)

Commits

• 5866280 chore: release 11.17.0
• 5f73e31 feat: differentiate GitHub Actions environments in user-agent (#9517)
• ae8ac4e feat: add min-release-age-exclude config
• 1bb62bb fix(config): clarify --all help so it's accurate for approve-scripts and deny...
• 960135a chore: release 11.16.0
• 4b67f6e feat: publish --access=private alias for restricted (#9416)
• a10c7ca feat: Phase 1 of allowScripts opt-in install-script policy (#9360) (#9415)
• dba4863 chore: release 11.15.0
• 25708d3 fix: min-release-age=0 doesn't filter, honor cross-source precedence
• 6aa332d fix: allow min-release-age in npmrc to coexist with --before
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by owlstronaut, a new releaser for @​npmcli/config since your current version.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.