[Deps] chore(deps): safe dependency updates 2026-03-04#1141
Closed
github-actions[bot] wants to merge 1 commit intomainfrom
Closed
[Deps] chore(deps): safe dependency updates 2026-03-04#1141github-actions[bot] wants to merge 1 commit intomainfrom
github-actions[bot] wants to merge 1 commit intomainfrom
Conversation
Updated dependencies to latest compatible versions: - @commitlint/cli: 20.4.1 -> 20.4.3 - @commitlint/config-conventional: 20.4.1 -> 20.4.3 - @types/node: 25.2.3 -> 25.3.3 - @typescript-eslint/eslint-plugin: 8.55.0 -> 8.56.1 - @typescript-eslint/parser: 8.55.0 -> 8.56.1 - eslint: 10.0.0 -> 10.0.2 - glob: 13.0.1 -> 13.0.6 - globals: 17.3.0 -> 17.4.0 - typescript-eslint: 8.55.0 -> 8.56.1 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
github-actions
bot
added
automated
dependencies
Collaborator
|
Closing in favor of an aggregated dependency update PR that combines all pending updates. This reduces PR noise and CI load. |
Mossaka
added a commit
that referenced
this pull request
Mar 11, 2026
Run npm update and npm audit fix across root and docs-site to bring all dependencies to latest compatible versions within existing semver ranges. Closes individual dependency PRs #1204, #1199, #1185, #1183, #1179, #1175, #1141, #1114, #1110, #1104, #1059, #1027, #1019, #976. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
4 tasks
Mossaka
added a commit
that referenced
this pull request
Mar 12, 2026
Run npm update and npm audit fix across root and docs-site to bring all dependencies to latest compatible versions within existing semver ranges. Closes individual dependency PRs #1204, #1199, #1185, #1183, #1179, #1175, #1141, #1114, #1110, #1104, #1059, #1027, #1019, #976. Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Automated safe patch and minor dependency updates verified by the full test suite (818 tests passing).
Updated Dependencies
@commitlint/cli@commitlint/config-conventional@types/node@typescript-eslint/eslint-plugin@typescript-eslint/parsereslintglobglobalstypescript-eslintSecurity Fixes Included
None of these updates directly address the open HIGH-severity
minimatchReDoS vulnerability (tracked in #1100), as that requires a transitive dependency fix vianpm audit fix --force. These are safe patch/minor updates only.Verification
npm run buildpassesnpm run lintpassesSkipped (Major Version Bumps)
These packages have major updates available but were skipped to avoid breaking changes:
chalk: 4.x → 5.x (ESM-only, breaking)commander: 12.x → 14.x (API changes)eslint-plugin-security: 3.x → 4.x (config changes)execa: 5.x → 9.x (ESM-only, breaking)Generated by Dependency Security Monitor Workflow