chore(deps-dev): bump the dev-minor-and-patch-dependencies group across 1 directory with 4 updates by dependabot[bot] · Pull Request #7870 · DataDog/dd-trace-js

dependabot · 2026-03-27T16:31:08Z

Bumps the dev-minor-and-patch-dependencies group with 4 updates in the / directory: @babel/helpers, bun, sinon and yaml.

Updates @babel/helpers from 7.28.6 to 7.29.2

Release notes

Sourced from @babel/helpers's releases.

v7.29.2 (2026-03-16)

👓 Spec Compliance

babel-parser

#17840 [7.x backport] async x => {} must be in leading pos (@JLHwung)

🐛 Bug Fix

babel-helpers, babel-plugin-transform-async-generator-functions, babel-preset-env, babel-runtime-corejs3

#17805 [7.x backport] fix: Properly handle await in finally (@liuxingbaoyu)

babel-preset-env

#17789 [7.x backport] preset-env include/exclude should accept bugfix plugins (@JLHwung)

🏠 Internal

#17813 chore: update eslint peer deps (@JLHwung)

Committers: 2

Huáng Jùnliàng (@JLHwung)

@liuxingbaoyu

v7.29.1 (2026-02-04)

🐛 Bug Fix

babel-standalone

#17771 [7.x backport] fix: ensure targets.esmodules is validated (@JLHwung)

babel-generator

#17776 [7.x backport] Fix undefined when 64 indents (@liuxingbaoyu)

Committers: 2

Huáng Jùnliàng (@JLHwung)

@liuxingbaoyu

v7.29.0 (2026-01-31)

Thanks @simbahax for your first PR!

🚀 New Feature

babel-types

#17750 [7.x backport] Add attributes import declaration builder (@JLHwung)

babel-standalone

#17663 [7.x backport] feat(standalone): export async transform (@JLHwung)

#17725 [7.x backport] feat: read standalone targets from data-targets (@JLHwung)

🐛 Bug Fix

babel-parser

#17765 fix(parser): correctly parse type assertions in extends clause (@nicolo-ribaudo)

#17723 [7.x backport] fix(parser): improve super type argument parsing (@JLHwung)

babel-traverse

#17708 fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (@simbahax)

babel-plugin-transform-block-scoping, babel-traverse

#17737 [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (@magic-akari)

... (truncated)

Commits

37d5595 v7.29.2
1c0a08d [7.x backport] fix: Properly handle await in finally (#17805)
See full diff in compare view

Updates bun from 1.3.10 to 1.3.11

Release notes

Sourced from bun's releases.

Bun v1.3.11

To install Bun v1.3.11
curl -fsSL https://bun.sh/install | bash
# or you can use npm
# npm install -g bun
Windows:
powershell -c "irm bun.sh/install.ps1|iex"
To upgrade to Bun v1.3.11:
bun upgrade
Read Bun v1.3.11's release notes on Bun's blog

Thanks to 15 contributors!

@alii

@anthonybaldwin

@baboon-king

@c-stoeckl

@cirospaciari

@dylan-conway

@gaowhen

@hona

@igorkofman

@jarred-sumner

@km-anthropic

@robobun

@sosukesuzuki

@ssing2

@whiteminds

Commits

a04817c deflake hot.test.ts: fix duplicate error handling and buffer management (#28202)
af24e28 fix(install): print error message when security scanner fails (#28196)
1d50d64 fix(test): use chrome-headless-shell on macOS to fix next-pages puppeteer lau...
5693fc1 Disable runtime transpiler cache when debugger is active via env var (#28189)
047cedb Remove upload benchmark step
47826b3 fix(bundler): propagate star import through barrel namespace re-exports (#28173)
1628bfe feat(cron): add Bun.cron API for OS-level cron jobs and expression parsing (#...
31e0c9c Add documentation for Bun.CSRF API (#28144)
d50ab98 Shrink path ignore pattern stack buffer (follow-up to #28089) (#28128)
7e517b1 Fix: Receive data in security scanner via an ipc pipe to avoid hitting max ar...
Additional commits viewable in compare view

Updates sinon from 21.0.2 to 21.0.3

Changelog

Sourced from sinon's changelog.

21.0.3

0494251b fix(#2678): upgrade samsam to fix buffer comparisons (Carl-Erik Kopseng)

Released by Carl-Erik Kopseng on 2026-03-16.

Commits

1381482 21.0.3
0494251 fix(#2678): upgrade samsam to fix buffer comparisons
See full diff in compare view

Updates yaml from 2.8.2 to 2.8.3

Release notes

Sourced from yaml's releases.

v2.8.3

Add trailingComma ToString option for multiline flow formatting (#670)

Catch stack overflow during node composition (1e84ebb)

Commits

ce14587 2.8.3
1e84ebb fix: Catch stack overflow during node composition
6b24090 ci: Include Prettier check in lint action
9424dee chore: Refresh lockfile
d1aca82 Add trailingComma ToString option for multiline flow formatting (#670)
4321509 ci: Drop the branch filter from GitHub PR actions
47207d0 chore: Update docs-slate
5212fae chore: Update docs-slate
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ss 1 directory with 4 updates Bumps the dev-minor-and-patch-dependencies group with 4 updates in the / directory: [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers), [bun](https://github.com/oven-sh/bun), [sinon](https://github.com/sinonjs/sinon) and [yaml](https://github.com/eemeli/yaml). Updates `@babel/helpers` from 7.28.6 to 7.29.2 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.29.2/packages/babel-helpers) Updates `bun` from 1.3.10 to 1.3.11 - [Release notes](https://github.com/oven-sh/bun/releases) - [Commits](oven-sh/bun@bun-v1.3.10...bun-v1.3.11) Updates `sinon` from 21.0.2 to 21.0.3 - [Release notes](https://github.com/sinonjs/sinon/releases) - [Changelog](https://github.com/sinonjs/sinon/blob/main/docs/changelog.md) - [Commits](sinonjs/sinon@v21.0.2...v21.0.3) Updates `yaml` from 2.8.2 to 2.8.3 - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](eemeli/yaml@v2.8.2...v2.8.3) --- updated-dependencies: - dependency-name: "@babel/helpers" dependency-version: 7.29.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-minor-and-patch-dependencies - dependency-name: bun dependency-version: 1.3.11 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-minor-and-patch-dependencies - dependency-name: sinon dependency-version: 21.0.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-minor-and-patch-dependencies - dependency-name: yaml dependency-version: 2.8.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-minor-and-patch-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

github-actions · 2026-03-27T16:32:26Z

Overall package size

Self size: 5.05 MB
Deduped: 5.9 MB
No deduping: 5.9 MB

Dependency sizes

| name | version | self size | total size | |------|---------|-----------|------------| | import-in-the-middle | 3.0.0 | 81.15 kB | 815.98 kB | | dc-polyfill | 0.1.10 | 26.73 kB | 26.73 kB |

_{🤖 This report was automatically generated by heaviest-objects-in-the-universe}

pr-commenter · 2026-03-27T16:40:58Z

Benchmarks

Benchmark execution time: 2026-03-27 16:40:54

Comparing candidate commit c21fd77 in PR branch dependabot/npm_and_yarn/dev-minor-and-patch-dependencies-4c0037544f with baseline commit 97a8a2e in branch master.

Found 0 performance improvements and 0 performance regressions! Performance is the same for 231 metrics, 29 unstable metrics.

codecov · 2026-03-27T16:41:40Z

Codecov Report

✅ All modified and coverable lines are covered by tests.
⚠️ Please upload report for BASE (master@97a8a2e). Learn more about missing BASE report.
⚠️ Report is 1 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff            @@
##             master    #7870   +/-   ##
=========================================
  Coverage          ?   74.61%           
=========================================
  Files             ?      768           
  Lines             ?    35673           
  Branches          ?        0           
=========================================
  Hits              ?    26618           
  Misses            ?     9055           
  Partials          ?        0

Flag	Coverage Δ
aiguard-macos	`39.23% <ø> (?)`
aiguard-ubuntu	`39.35% <ø> (?)`
aiguard-windows	`39.02% <ø> (?)`
apm-capabilities-tracing-macos	`49.09% <ø> (?)`
apm-capabilities-tracing-ubuntu	`49.00% <ø> (?)`
apm-capabilities-tracing-windows	`48.87% <ø> (?)`
apm-integrations-child-process	`38.56% <ø> (?)`
apm-integrations-couchbase-18	`37.36% <ø> (?)`
apm-integrations-couchbase-eol	`37.85% <ø> (?)`
apm-integrations-oracledb	`37.69% <ø> (?)`
appsec-express	`55.17% <ø> (?)`
appsec-fastify	`51.52% <ø> (?)`
appsec-graphql	`51.68% <ø> (?)`
appsec-kafka	`44.31% <ø> (?)`
appsec-ldapjs	`43.94% <ø> (?)`
appsec-lodash	`43.54% <ø> (?)`
appsec-macos	`58.18% <ø> (?)`
appsec-mongodb-core	`48.70% <ø> (?)`
appsec-mongoose	`49.36% <ø> (?)`
appsec-mysql	`50.79% <ø> (?)`
appsec-node-serialize	`43.12% <ø> (?)`
appsec-passport	`47.55% <ø> (?)`
appsec-postgres	`50.51% <ø> (?)`
appsec-sourcing	`42.37% <ø> (?)`
appsec-stripe	`44.55% <ø> (?)`
appsec-template	`43.29% <ø> (?)`
appsec-ubuntu	`58.26% <ø> (?)`
appsec-windows	`58.01% <ø> (?)`
instrumentations-instrumentation-bluebird	`32.20% <ø> (?)`
instrumentations-instrumentation-body-parser	`40.46% <ø> (?)`
instrumentations-instrumentation-child_process	`37.90% <ø> (?)`
instrumentations-instrumentation-cookie-parser	`34.23% <ø> (?)`
instrumentations-instrumentation-express	`34.55% <ø> (?)`
instrumentations-instrumentation-express-mongo-sanitize	`34.36% <ø> (?)`
instrumentations-instrumentation-express-session	`40.10% <ø> (?)`
instrumentations-instrumentation-fs	`31.89% <ø> (?)`
instrumentations-instrumentation-generic-pool	`29.45% <ø> (?)`
instrumentations-instrumentation-http	`39.81% <ø> (?)`
instrumentations-instrumentation-knex	`32.27% <ø> (?)`
instrumentations-instrumentation-mongoose	`33.39% <ø> (?)`
instrumentations-instrumentation-multer	`40.21% <ø> (?)`
instrumentations-instrumentation-mysql2	`38.24% <ø> (?)`
instrumentations-instrumentation-passport	`43.98% <ø> (?)`
instrumentations-instrumentation-passport-http	`43.66% <ø> (?)`
instrumentations-instrumentation-passport-local	`44.19% <ø> (?)`
instrumentations-instrumentation-pg	`37.68% <ø> (?)`
instrumentations-instrumentation-promise	`32.13% <ø> (?)`
instrumentations-instrumentation-promise-js	`32.14% <ø> (?)`
instrumentations-instrumentation-q	`32.18% <ø> (?)`
instrumentations-instrumentation-url	`32.10% <ø> (?)`
instrumentations-instrumentation-when	`32.15% <ø> (?)`
llmobs-ai	`42.37% <ø> (?)`
llmobs-anthropic	`40.39% <ø> (?)`
llmobs-bedrock	`39.18% <ø> (?)`
llmobs-google-genai	`39.72% <ø> (?)`
llmobs-langchain	`40.08% <ø> (?)`
llmobs-openai	`43.90% <ø> (?)`
llmobs-vertex-ai	`39.97% <ø> (?)`
platform-core	`31.47% <ø> (?)`
platform-esbuild	`34.42% <ø> (?)`
platform-instrumentations-misc	`48.41% <ø> (?)`
platform-shimmer	`37.56% <ø> (?)`
platform-unit-guardrails	`32.89% <ø> (?)`
platform-webpack	`20.04% <ø> (?)`
plugins-azure-durable-functions	`25.74% <ø> (?)`
plugins-azure-event-hubs	`25.90% <ø> (?)`
plugins-azure-service-bus	`25.26% <ø> (?)`
plugins-bullmq	`44.27% <ø> (?)`
plugins-cassandra	`37.73% <ø> (?)`
plugins-cookie	`26.96% <ø> (?)`
plugins-cookie-parser	`26.75% <ø> (?)`
plugins-crypto	`26.73% <ø> (?)`
plugins-dd-trace-api	`38.26% <ø> (?)`
plugins-express-mongo-sanitize	`26.89% <ø> (?)`
plugins-express-session	`26.70% <ø> (?)`
plugins-fastify	`42.18% <ø> (?)`
plugins-fetch	`38.35% <ø> (?)`
plugins-fs	`38.59% <ø> (?)`
plugins-generic-pool	`25.94% <ø> (?)`
plugins-google-cloud-pubsub	`45.49% <ø> (?)`
plugins-grpc	`40.85% <ø> (?)`
plugins-handlebars	`26.94% <ø> (?)`
plugins-hapi	`40.23% <ø> (?)`
plugins-hono	`40.43% <ø> (?)`
plugins-ioredis	`38.40% <ø> (?)`
plugins-knex	`26.57% <ø> (?)`
plugins-langgraph	`38.45% <ø> (?)`
plugins-ldapjs	`24.43% <ø> (?)`
plugins-light-my-request	`26.30% <ø> (?)`
plugins-limitd-client	`32.48% <ø> (?)`
plugins-lodash	`26.03% <ø> (?)`
plugins-mariadb	`39.48% <ø> (?)`
plugins-memcached	`38.14% <ø> (?)`
plugins-microgateway-core	`39.17% <ø> (?)`
plugins-moleculer	`40.46% <ø> (?)`
plugins-mongodb	`39.11% <ø> (?)`
plugins-mongodb-core	`38.95% <ø> (?)`
plugins-mongoose	`38.83% <ø> (?)`
plugins-multer	`26.70% <ø> (?)`
plugins-mysql	`39.14% <ø> (?)`
plugins-mysql2	`39.23% <ø> (?)`
plugins-node-serialize	`27.00% <ø> (?)`
plugins-opensearch	`37.73% <ø> (?)`
plugins-passport-http	`26.76% <ø> (?)`
plugins-postgres	`35.53% <ø> (?)`
plugins-process	`26.73% <ø> (?)`
plugins-pug	`26.96% <ø> (?)`
plugins-redis	`38.86% <ø> (?)`
plugins-router	`43.16% <ø> (?)`
plugins-sequelize	`25.55% <ø> (?)`
plugins-test-and-upstream-amqp10	`38.45% <ø> (?)`
plugins-test-and-upstream-amqplib	`44.15% <ø> (?)`
plugins-test-and-upstream-apollo	`39.08% <ø> (?)`
plugins-test-and-upstream-avsc	`38.52% <ø> (?)`
plugins-test-and-upstream-bunyan	`33.80% <ø> (?)`
plugins-test-and-upstream-connect	`40.75% <ø> (?)`
plugins-test-and-upstream-graphql	`40.10% <ø> (?)`
plugins-test-and-upstream-koa	`40.34% <ø> (?)`
plugins-test-and-upstream-protobufjs	`38.75% <ø> (?)`
plugins-test-and-upstream-rhea	`44.16% <ø> (?)`
plugins-undici	`39.07% <ø> (?)`
plugins-url	`26.73% <ø> (?)`
plugins-valkey	`38.11% <ø> (?)`
plugins-vm	`26.73% <ø> (?)`
plugins-winston	`33.99% <ø> (?)`
plugins-ws	`41.93% <ø> (?)`
profiling-macos	`40.47% <ø> (?)`
profiling-ubuntu	`40.59% <ø> (?)`
profiling-windows	`41.73% <ø> (?)`
serverless-azure-functions-client	`25.62% <ø> (?)`
serverless-azure-functions-eventhubs	`25.62% <ø> (?)`
serverless-azure-functions-servicebus	`25.62% <ø> (?)`

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

…ss 1 directory with 4 updates (#7870) Bumps the dev-minor-and-patch-dependencies group with 4 updates in the / directory: [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers), [bun](https://github.com/oven-sh/bun), [sinon](https://github.com/sinonjs/sinon) and [yaml](https://github.com/eemeli/yaml). Updates `@babel/helpers` from 7.28.6 to 7.29.2 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.29.2/packages/babel-helpers) Updates `bun` from 1.3.10 to 1.3.11 - [Release notes](https://github.com/oven-sh/bun/releases) - [Commits](oven-sh/bun@bun-v1.3.10...bun-v1.3.11) Updates `sinon` from 21.0.2 to 21.0.3 - [Release notes](https://github.com/sinonjs/sinon/releases) - [Changelog](https://github.com/sinonjs/sinon/blob/main/docs/changelog.md) - [Commits](sinonjs/sinon@v21.0.2...v21.0.3) Updates `yaml` from 2.8.2 to 2.8.3 - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](eemeli/yaml@v2.8.2...v2.8.3) --- updated-dependencies: - dependency-name: "@babel/helpers" dependency-version: 7.29.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-minor-and-patch-dependencies - dependency-name: bun dependency-version: 1.3.11 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-minor-and-patch-dependencies - dependency-name: sinon dependency-version: 21.0.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-minor-and-patch-dependencies - dependency-name: yaml dependency-version: 2.8.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dev-minor-and-patch-dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot Bot added dependabot dependencies javascript Pull requests that update javascript code semver-patch labels Mar 27, 2026

dependabot Bot requested a review from a team as a code owner March 27, 2026 16:31

dependabot Bot added semver-patch dependencies javascript Pull requests that update javascript code dependabot labels Mar 27, 2026

dd-octo-sts Bot approved these changes Mar 27, 2026

View reviewed changes

dd-octo-sts Bot enabled auto-merge (squash) March 27, 2026 16:31

dd-octo-sts Bot merged commit e7ef986 into master Mar 27, 2026
799 checks passed

dd-octo-sts Bot deleted the dependabot/npm_and_yarn/dev-minor-and-patch-dependencies-4c0037544f branch March 27, 2026 16:45

dd-octo-sts Bot mentioned this pull request Mar 28, 2026

v5.94.0 proposal #7867

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps-dev): bump the dev-minor-and-patch-dependencies group across 1 directory with 4 updates#7870

chore(deps-dev): bump the dev-minor-and-patch-dependencies group across 1 directory with 4 updates#7870
dd-octo-sts[bot] merged 1 commit intomasterfrom
dependabot/npm_and_yarn/dev-minor-and-patch-dependencies-4c0037544f

dependabot Bot commented on behalf of github Mar 27, 2026

Uh oh!

github-actions Bot commented Mar 27, 2026

Uh oh!

pr-commenter Bot commented Mar 27, 2026

Uh oh!

codecov Bot commented Mar 27, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Mar 27, 2026

v7.29.2 (2026-03-16)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

Committers: 2

v7.29.1 (2026-02-04)

🐛 Bug Fix

Committers: 2

v7.29.0 (2026-01-31)

🚀 New Feature

🐛 Bug Fix

Bun v1.3.11

Read Bun v1.3.11's release notes on Bun's blog

Thanks to 15 contributors!

21.0.3

v2.8.3

Uh oh!

github-actions Bot commented Mar 27, 2026

Overall package size

Uh oh!

pr-commenter Bot commented Mar 27, 2026

Benchmarks

Uh oh!

codecov Bot commented Mar 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

codecov Bot commented Mar 27, 2026 •

edited

Loading