mirror of
https://github.com/maputnik/editor.git
synced 2026-05-22 16:07:27 +00:00
a62e5014ee39308e59fc5da702e413fceb4b2367
2543 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
 Mike Taves
|
a62e5014ee |
fix: typos (#1771)
Fix a few typos identified with codespell. ## Launch Checklist - [X] Briefly describe the changes in this PR. - [ ] Link to related issues. - [ ] Write tests for all new functionality. - [ ] Add an entry to `CHANGELOG.md` under the `## main` section. |
||
 dependabot[bot]
|
0032b85fb8 |
chore(deps): Bump lodash from 4.17.23 to 4.18.1 (#1773)
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.18.1</h2> <h2>Bugs</h2> <p>Fixes a <code>ReferenceError</code> issue in <code>lodash</code> <code>lodash-es</code> <code>lodash-amd</code> and <code>lodash.template</code> when using the <code>template</code> and <code>fromPairs</code> functions from the modular builds. See <a href="https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769">lodash/lodash#6167</a></p> <p>These defects were related to how lodash distributions are built from the main branch using <a href="https://github.com/lodash-archive/lodash-cli">https://github.com/lodash-archive/lodash-cli</a>. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.</p> <p>There is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:</p> <ul> <li><code>lodash</code>: <a href="https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm">https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm</a></li> <li><code>lodash-es</code>: <a href="https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es">https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es</a></li> <li><code>lodash-amd</code>: <a href="https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd">https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd</a></li> <li><code>lodash.template</code><a href="https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages">https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages</a></li> </ul> <h2>4.18.0</h2> <h2>v4.18.0</h2> <p><strong>Full Changelog</strong>: <a href="https://github.com/lodash/lodash/compare/4.17.23...4.18.0">https://github.com/lodash/lodash/compare/4.17.23...4.18.0</a></p> <h3>Security</h3> <p><strong><code>_.unset</code> / <code>_.omit</code></strong>: Fixed prototype pollution via <code>constructor</code>/<code>prototype</code> path traversal (<a href="https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh">GHSA-f23m-r3pf-42rh</a>, <a href="https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b">fe8d32e</a>). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now <code>constructor</code> and <code>prototype</code> are blocked unconditionally as non-terminal path keys, matching <code>baseSet</code>. Calls that previously returned <code>true</code> and deleted the property now return <code>false</code> and leave the target untouched.</p> <p><strong><code>_.template</code></strong>: Fixed code injection via <code>imports</code> keys (<a href="https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc">GHSA-r5fr-rjxr-66jc</a>, CVE-2026-4800, <a href="https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6">879aaa9</a>). Fixes an incomplete patch for CVE-2021-23337. The <code>variable</code> option was validated against <code>reForbiddenIdentifierChars</code> but <code>importsKeys</code> was left unguarded, allowing code injection via the same <code>Function()</code> constructor sink. <code>imports</code> keys containing forbidden identifier characters now throw <code>"Invalid imports option passed into _.template"</code>.</p> <h3>Docs</h3> <ul> <li>Add security notice for <code>_.template</code> in threat model and API docs (<a href="https://redirect.github.com/lodash/lodash/pull/6099">#6099</a>)</li> <li>Document <code>lower > upper</code> behavior in <code>_.random</code> (<a href="https://redirect.github.com/lodash/lodash/pull/6115">#6115</a>)</li> <li>Fix quotes in <code>_.compact</code> jsdoc (<a href="https://redirect.github.com/lodash/lodash/pull/6090">#6090</a>)</li> </ul> <h3><code>lodash.*</code> modular packages</h3> <p><a href="https://redirect.github.com/lodash/lodash/pull/6157">Diff</a></p> <p>We have also regenerated and published a select number of the <code>lodash.*</code> modular packages.</p> <p>These modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:</p> <ul> <li><a href="https://www.npmjs.com/package/lodash.orderby">lodash.orderby</a></li> <li><a href="https://www.npmjs.com/package/lodash.tonumber">lodash.tonumber</a></li> <li><a href="https://www.npmjs.com/package/lodash.trim">lodash.trim</a></li> <li><a href="https://www.npmjs.com/package/lodash.trimend">lodash.trimend</a></li> <li><a href="https://www.npmjs.com/package/lodash.sortedindexby">lodash.sortedindexby</a></li> <li><a href="https://www.npmjs.com/package/lodash.zipobjectdeep">lodash.zipobjectdeep</a></li> <li><a href="https://www.npmjs.com/package/lodash.unset">lodash.unset</a></li> <li><a href="https://www.npmjs.com/package/lodash.omit">lodash.omit</a></li> <li><a href="https://www.npmjs.com/package/lodash.template">lodash.template</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e"><code>cb0b9b9</code></a> release(patch): bump main to 4.18.1 (<a href="https://redirect.github.com/lodash/lodash/issues/6177">#6177</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51"><code>75535f5</code></a> chore: prune stale advisory refs (<a href="https://redirect.github.com/lodash/lodash/issues/6170">#6170</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4"><code>62e91bc</code></a> docs: remove n_ Node.js < 6 REPL note from README (<a href="https://redirect.github.com/lodash/lodash/issues/6165">#6165</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4"><code>59be2de</code></a> release(minor): bump to 4.18.0 (<a href="https://redirect.github.com/lodash/lodash/issues/6161">#6161</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d"><code>af63457</code></a> fix: broken tests for _.template 879aaa9</li> <li><a href="https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0"><code>1073a76</code></a> fix: linting issues</li> <li><a href="https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6"><code>879aaa9</code></a> fix: validate imports keys in _.template</li> <li><a href="https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b"><code>fe8d32e</code></a> fix: block prototype pollution in baseUnset via constructor/prototype traversal</li> <li><a href="https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d"><code>18ba0a3</code></a> refactor(fromPairs): use baseAssignValue for consistent assignment (<a href="https://redirect.github.com/lodash/lodash/issues/6153">#6153</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2"><code>b819080</code></a> ci: add dist sync validation workflow (<a href="https://redirect.github.com/lodash/lodash/issues/6137">#6137</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.23...4.18.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/maputnik/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
3fa9b83563 |
chore(deps): Bump lodash-es from 4.17.23 to 4.18.1 (#1772)
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash-es's releases</a>.</em></p> <blockquote> <h2>4.18.1</h2> <h2>Bugs</h2> <p>Fixes a <code>ReferenceError</code> issue in <code>lodash</code> <code>lodash-es</code> <code>lodash-amd</code> and <code>lodash.template</code> when using the <code>template</code> and <code>fromPairs</code> functions from the modular builds. See <a href="https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769">lodash/lodash#6167</a></p> <p>These defects were related to how lodash distributions are built from the main branch using <a href="https://github.com/lodash-archive/lodash-cli">https://github.com/lodash-archive/lodash-cli</a>. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.</p> <p>There is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:</p> <ul> <li><code>lodash</code>: <a href="https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm">https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm</a></li> <li><code>lodash-es</code>: <a href="https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es">https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es</a></li> <li><code>lodash-amd</code>: <a href="https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd">https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd</a></li> <li><code>lodash.template</code><a href="https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages">https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages</a></li> </ul> <h2>4.18.0</h2> <h2>v4.18.0</h2> <p><strong>Full Changelog</strong>: <a href="https://github.com/lodash/lodash/compare/4.17.23...4.18.0">https://github.com/lodash/lodash/compare/4.17.23...4.18.0</a></p> <h3>Security</h3> <p><strong><code>_.unset</code> / <code>_.omit</code></strong>: Fixed prototype pollution via <code>constructor</code>/<code>prototype</code> path traversal (<a href="https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh">GHSA-f23m-r3pf-42rh</a>, <a href="https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b">fe8d32e</a>). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now <code>constructor</code> and <code>prototype</code> are blocked unconditionally as non-terminal path keys, matching <code>baseSet</code>. Calls that previously returned <code>true</code> and deleted the property now return <code>false</code> and leave the target untouched.</p> <p><strong><code>_.template</code></strong>: Fixed code injection via <code>imports</code> keys (<a href="https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc">GHSA-r5fr-rjxr-66jc</a>, CVE-2026-4800, <a href="https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6">879aaa9</a>). Fixes an incomplete patch for CVE-2021-23337. The <code>variable</code> option was validated against <code>reForbiddenIdentifierChars</code> but <code>importsKeys</code> was left unguarded, allowing code injection via the same <code>Function()</code> constructor sink. <code>imports</code> keys containing forbidden identifier characters now throw <code>"Invalid imports option passed into _.template"</code>.</p> <h3>Docs</h3> <ul> <li>Add security notice for <code>_.template</code> in threat model and API docs (<a href="https://redirect.github.com/lodash/lodash/pull/6099">#6099</a>)</li> <li>Document <code>lower > upper</code> behavior in <code>_.random</code> (<a href="https://redirect.github.com/lodash/lodash/pull/6115">#6115</a>)</li> <li>Fix quotes in <code>_.compact</code> jsdoc (<a href="https://redirect.github.com/lodash/lodash/pull/6090">#6090</a>)</li> </ul> <h3><code>lodash.*</code> modular packages</h3> <p><a href="https://redirect.github.com/lodash/lodash/pull/6157">Diff</a></p> <p>We have also regenerated and published a select number of the <code>lodash.*</code> modular packages.</p> <p>These modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:</p> <ul> <li><a href="https://www.npmjs.com/package/lodash.orderby">lodash.orderby</a></li> <li><a href="https://www.npmjs.com/package/lodash.tonumber">lodash.tonumber</a></li> <li><a href="https://www.npmjs.com/package/lodash.trim">lodash.trim</a></li> <li><a href="https://www.npmjs.com/package/lodash.trimend">lodash.trimend</a></li> <li><a href="https://www.npmjs.com/package/lodash.sortedindexby">lodash.sortedindexby</a></li> <li><a href="https://www.npmjs.com/package/lodash.zipobjectdeep">lodash.zipobjectdeep</a></li> <li><a href="https://www.npmjs.com/package/lodash.unset">lodash.unset</a></li> <li><a href="https://www.npmjs.com/package/lodash.omit">lodash.omit</a></li> <li><a href="https://www.npmjs.com/package/lodash.template">lodash.template</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e"><code>cb0b9b9</code></a> release(patch): bump main to 4.18.1 (<a href="https://redirect.github.com/lodash/lodash/issues/6177">#6177</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51"><code>75535f5</code></a> chore: prune stale advisory refs (<a href="https://redirect.github.com/lodash/lodash/issues/6170">#6170</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4"><code>62e91bc</code></a> docs: remove n_ Node.js < 6 REPL note from README (<a href="https://redirect.github.com/lodash/lodash/issues/6165">#6165</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4"><code>59be2de</code></a> release(minor): bump to 4.18.0 (<a href="https://redirect.github.com/lodash/lodash/issues/6161">#6161</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d"><code>af63457</code></a> fix: broken tests for _.template 879aaa9</li> <li><a href="https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0"><code>1073a76</code></a> fix: linting issues</li> <li><a href="https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6"><code>879aaa9</code></a> fix: validate imports keys in _.template</li> <li><a href="https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b"><code>fe8d32e</code></a> fix: block prototype pollution in baseUnset via constructor/prototype traversal</li> <li><a href="https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d"><code>18ba0a3</code></a> refactor(fromPairs): use baseAssignValue for consistent assignment (<a href="https://redirect.github.com/lodash/lodash/issues/6153">#6153</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2"><code>b819080</code></a> ci: add dist sync validation workflow (<a href="https://redirect.github.com/lodash/lodash/issues/6137">#6137</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.23...4.18.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/maputnik/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
83cc461ac8 |
chore(deps): Bump github/codeql-action from 4.34.1 to 4.35.1 (#1770)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.34.1 to 4.35.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/releases">github/codeql-action's releases</a>.</em></p> <blockquote> <h2>v4.35.1</h2> <ul> <li>Fix incorrect minimum required Git version for <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a>: it should have been 2.36.0, not 2.11.0. <a href="https://redirect.github.com/github/codeql-action/pull/3781">#3781</a></li> </ul> <h2>v4.35.0</h2> <ul> <li>Reduced the minimum Git version required for <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> from 2.38.0 to 2.11.0. <a href="https://redirect.github.com/github/codeql-action/pull/3767">#3767</a></li> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.1">2.25.1</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3773">#3773</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>[UNRELEASED]</h2> <ul> <li>The Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. <a href="https://redirect.github.com/github/codeql-action/pull/3789">#3789</a></li> </ul> <h2>4.35.1 - 27 Mar 2026</h2> <ul> <li>Fix incorrect minimum required Git version for <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a>: it should have been 2.36.0, not 2.11.0. <a href="https://redirect.github.com/github/codeql-action/pull/3781">#3781</a></li> </ul> <h2>4.35.0 - 27 Mar 2026</h2> <ul> <li>Reduced the minimum Git version required for <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> from 2.38.0 to 2.11.0. <a href="https://redirect.github.com/github/codeql-action/pull/3767">#3767</a></li> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.1">2.25.1</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3773">#3773</a></li> </ul> <h2>4.34.1 - 20 Mar 2026</h2> <ul> <li>Downgrade default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3">2.24.3</a> due to issues with a small percentage of Actions and JavaScript analyses. <a href="https://redirect.github.com/github/codeql-action/pull/3762">#3762</a></li> </ul> <h2>4.34.0 - 20 Mar 2026</h2> <ul> <li>Added an experimental change which disables TRAP caching when <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3569">#3569</a></li> <li>We are rolling out improved incremental analysis to C/C++ analyses that use build mode <code>none</code>. We expect this rollout to be complete by the end of April 2026. <a href="https://redirect.github.com/github/codeql-action/pull/3584">#3584</a></li> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0">2.25.0</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3585">#3585</a></li> </ul> <h2>4.33.0 - 16 Mar 2026</h2> <ul> <li> <p>Upcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. <a href="https://redirect.github.com/github/codeql-action/pull/3562">#3562</a></p> <p>To opt out of this change:</p> <ul> <li><strong>Repositories owned by an organization:</strong> Create a custom repository property with the name <code>github-codeql-file-coverage-on-prs</code> and the type "True/false", then set this property to <code>true</code> in the repository's settings. For more information, see <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">Managing custom properties for repositories in your organization</a>. Alternatively, if you are using an advanced setup workflow, you can set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using default setup:</strong> Switch to an advanced setup workflow and set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using advanced setup:</strong> Set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> </ul> </li> <li> <p>Fixed <a href="https://redirect.github.com/github/codeql-action/issues/3555">a bug</a> which caused the CodeQL Action to fail loading repository properties if a "Multi select" repository property was configured for the repository. <a href="https://redirect.github.com/github/codeql-action/pull/3557">#3557</a></p> </li> <li> <p>The CodeQL Action now loads <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">custom repository properties</a> on GitHub Enterprise Server, enabling the customization of features such as <code>github-codeql-disable-overlay</code> that was previously only available on GitHub.com. <a href="https://redirect.github.com/github/codeql-action/pull/3559">#3559</a></p> </li> <li> <p>Once <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries</a> can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. <a href="https://redirect.github.com/github/codeql-action/pull/3563">#3563</a></p> </li> <li> <p>Fixed the retry mechanism for database uploads. Previously this would fail with the error "Response body object should not be disturbed or locked". <a href="https://redirect.github.com/github/codeql-action/pull/3564">#3564</a></p> </li> <li> <p>A warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. <a href="https://redirect.github.com/github/codeql-action/pull/3570">#3570</a></p> </li> </ul> <h2>4.32.6 - 05 Mar 2026</h2> <ul> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3">2.24.3</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3548">#3548</a></li> </ul> <h2>4.32.5 - 02 Mar 2026</h2> <ul> <li>Repositories owned by an organization can now set up the <code>github-codeql-disable-overlay</code> custom repository property to disable <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis for CodeQL</a>. First, create a custom repository property with the name <code>github-codeql-disable-overlay</code> and the type "True/false" in the organization's settings. Then in the repository's settings, set this property to <code>true</code> to disable improved incremental analysis. For more information, see <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">Managing custom properties for repositories in your organization</a>. This feature is not yet available on GitHub Enterprise Server. <a href="https://redirect.github.com/github/codeql-action/pull/3507">#3507</a></li> <li>Added an experimental change so that when <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> fails on a runner — potentially due to insufficient disk space — the failure is recorded in the Actions cache so that subsequent runs will automatically skip improved incremental analysis until something changes (e.g. a larger runner is provisioned or a new CodeQL version is released). We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3487">#3487</a></li> <li>The minimum memory check for improved incremental analysis is now skipped for CodeQL 2.24.3 and later, which has reduced peak RAM usage. <a href="https://redirect.github.com/github/codeql-action/pull/3515">#3515</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/github/codeql-action/commit/c10b8064de6f491fea524254123dbe5e09572f13"><code>c10b806</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3782">#3782</a> from github/update-v4.35.1-d6d1743b8</li> <li><a href="https://github.com/github/codeql-action/commit/c5ffd0683786820677d054e3505e1c5bb4b8c227"><code>c5ffd06</code></a> Update changelog for v4.35.1</li> <li><a href="https://github.com/github/codeql-action/commit/d6d1743b8ec7ecd94f78ad1ce4cb3d8d2ba58001"><code>d6d1743</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3781">#3781</a> from github/henrymercer/update-git-minimum-version</li> <li><a href="https://github.com/github/codeql-action/commit/65d2efa7333ad65f97cc54be40f4cd18630f884c"><code>65d2efa</code></a> Add changelog note</li> <li><a href="https://github.com/github/codeql-action/commit/2437b20ab31021229573a66717323dd5c6ce9319"><code>2437b20</code></a> Update minimum git version for overlay to 2.36.0</li> <li><a href="https://github.com/github/codeql-action/commit/ea5f71947c021286c99f61cc426a10d715fe4434"><code>ea5f719</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3775">#3775</a> from github/dependabot/npm_and_yarn/node-forge-1.4.0</li> <li><a href="https://github.com/github/codeql-action/commit/45ceeea896ba2293e10982f871198d1950ee13d6"><code>45ceeea</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3777">#3777</a> from github/mergeback/v4.35.0-to-main-b8bb9f28</li> <li><a href="https://github.com/github/codeql-action/commit/24448c98434f429f901d27db7ddae55eec5cc1c4"><code>24448c9</code></a> Rebuild</li> <li><a href="https://github.com/github/codeql-action/commit/7c510606312e5c68ac8b27c009e5254f226f5dfa"><code>7c51060</code></a> Update changelog and version after v4.35.0</li> <li><a href="https://github.com/github/codeql-action/commit/b8bb9f28b8d3f992092362369c57161b755dea45"><code>b8bb9f2</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3776">#3776</a> from github/update-v4.35.0-0078ad667</li> <li>Additional commits viewable in <a href="https://github.com/github/codeql-action/compare/38697555549f1db7851b81482ff19f1fa5c4fedc...c10b8064de6f491fea524254123dbe5e09572f13">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
327771d143 |
chore(deps-dev): Bump i18next-cli from 1.51.3 to 1.51.4 (#1768)
Bumps [i18next-cli](https://github.com/i18next/i18next-cli) from 1.51.3 to 1.51.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md">i18next-cli's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.51.3...v1.51.4">1.51.4</a> - 2026-03-27</h2> <ul> <li>Updated <code>react-i18next</code> to v17. <code>transKeepBasicHtmlNodesFor</code> now correctly preserves HTML tag names when children contain interpolations or mixed content (e.g. <code><strong>{{name}}</strong></code> instead of <code><1>{{name}}</1></code>). Fixes <a href="https://redirect.github.com/i18next/i18next-cli/issues/230">#230</a>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next-cli/commit/23b1681ae9178eec6dc9e30fa3d608219363f1f1"><code>23b1681</code></a> 1.51.4</li> <li><a href="https://github.com/i18next/i18next-cli/commit/262c6ae835680695b5ad1eb7e755d6cf56b1b7c0"><code>262c6ae</code></a> Updated <code>react-i18next</code> to v17 to fix <a href="https://redirect.github.com/i18next/i18next-cli/issues/230">#230</a></li> <li>See full diff in <a href="https://github.com/i18next/i18next-cli/compare/v1.51.3...v1.51.4">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
b9406469ae |
chore(deps): Bump dependabot/fetch-metadata from 2.5.0 to 3.0.0 (#1766)
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.5.0 to 3.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <h2>What's Changed</h2> <ul> <li>feat: Parse versions from metadata links by <a href="https://github.com/ppkarwasz"><code>@ppkarwasz</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/632">dependabot/fetch-metadata#632</a></li> <li>Upgrade actions core and actions github packages by <a href="https://github.com/truggeri"><code>@truggeri</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/649">dependabot/fetch-metadata#649</a></li> <li>docs: Add notes for using <code>alert-lookup</code> with App Token by <a href="https://github.com/sue445"><code>@sue445</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/656">dependabot/fetch-metadata#656</a></li> <li>feat!: update Node.js version to v24 by <a href="https://github.com/sturman"><code>@sturman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/671">dependabot/fetch-metadata#671</a></li> <li>Switch build tooling from ncc to esbuild by <a href="https://github.com/truggeri"><code>@truggeri</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/676">dependabot/fetch-metadata#676</a></li> <li>Add --legal-comments=none to esbuild build commands by <a href="https://github.com/jeffwidman"><code>@jeffwidman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/679">dependabot/fetch-metadata#679</a></li> <li>Bump tsconfig target from es2022 to es2024 by <a href="https://github.com/jeffwidman"><code>@jeffwidman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/680">dependabot/fetch-metadata#680</a></li> <li>Remove vestigial outDir from tsconfig.json by <a href="https://github.com/jeffwidman"><code>@jeffwidman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/681">dependabot/fetch-metadata#681</a></li> <li>Switch tsconfig module resolution to bundler by <a href="https://github.com/jeffwidman"><code>@jeffwidman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/682">dependabot/fetch-metadata#682</a></li> <li>Remove skipLibCheck from tsconfig.json by <a href="https://github.com/jeffwidman"><code>@jeffwidman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/683">dependabot/fetch-metadata#683</a></li> <li>Add typecheck step to CI by <a href="https://github.com/jeffwidman"><code>@jeffwidman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/685">dependabot/fetch-metadata#685</a></li> <li>Enable noImplicitAny in tsconfig.json by <a href="https://github.com/jeffwidman"><code>@jeffwidman</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/684">dependabot/fetch-metadata#684</a></li> <li>Upgrade <code>@actions/core</code> to ^3.0.0 by <a href="https://github.com/truggeri"><code>@truggeri</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/677">dependabot/fetch-metadata#677</a></li> <li>Upgrade <code>@actions/github</code> to ^9.0.0 and <code>@octokit/request-error</code> to ^7.1.0 by <a href="https://github.com/truggeri"><code>@truggeri</code></a> in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/678">dependabot/fetch-metadata#678</a></li> <li>Bump qs from 6.14.0 to 6.14.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/651">dependabot/fetch-metadata#651</a></li> <li>Bump hono from 4.11.1 to 4.11.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/652">dependabot/fetch-metadata#652</a></li> <li>Bump hono from 4.11.4 to 4.11.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/653">dependabot/fetch-metadata#653</a></li> <li>Bump hono from 4.11.7 to 4.12.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/657">dependabot/fetch-metadata#657</a></li> <li>Bump qs from 6.14.1 to 6.14.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/655">dependabot/fetch-metadata#655</a></li> <li>Bump <code>@modelcontextprotocol/sdk</code> from 1.25.1 to 1.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/654">dependabot/fetch-metadata#654</a></li> <li>Bump <code>@hono/node-server</code> from 1.19.9 to 1.19.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/665">dependabot/fetch-metadata#665</a></li> <li>Bump hono from 4.12.2 to 4.12.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/664">dependabot/fetch-metadata#664</a></li> <li>Bump minimatch from 3.1.2 to 3.1.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/667">dependabot/fetch-metadata#667</a></li> <li>Bump hono from 4.12.5 to 4.12.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/668">dependabot/fetch-metadata#668</a></li> <li>Bump actions/create-github-app-token from 2.2.1 to 3.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/669">dependabot/fetch-metadata#669</a></li> <li>Bump flatted from 3.3.3 to 3.4.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/670">dependabot/fetch-metadata#670</a></li> <li>build(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/674">dependabot/fetch-metadata#674</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/ppkarwasz"><code>@ppkarwasz</code></a> made their first contribution in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/632">dependabot/fetch-metadata#632</a></li> <li><a href="https://github.com/truggeri"><code>@truggeri</code></a> made their first contribution in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/649">dependabot/fetch-metadata#649</a></li> <li><a href="https://github.com/sue445"><code>@sue445</code></a> made their first contribution in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/656">dependabot/fetch-metadata#656</a></li> <li><a href="https://github.com/sturman"><code>@sturman</code></a> made their first contribution in <a href="https://redirect.github.com/dependabot/fetch-metadata/pull/671">dependabot/fetch-metadata#671</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0">https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dependabot/fetch-metadata/commit/ffa630c65fa7e0ecfa0625b5ceda64399aea1b36"><code>ffa630c</code></a> v3.0.0 (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/686">#686</a>)</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/ec8fff2ea0f40ccdbdcd1fea69759029f2990807"><code>ec8fff2</code></a> Merge pull request <a href="https://redirect.github.com/dependabot/fetch-metadata/issues/674">#674</a> from dependabot/dependabot/npm_and_yarn/picomatch-2.3.2</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/caf48bddf9ab5175bbd568425ea999bab03f1147"><code>caf48bd</code></a> build(deps-dev): bump picomatch from 2.3.1 to 2.3.2</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/13d82742f9de94226254782b8662a39878795272"><code>13d8274</code></a> Upgrade <code>@actions/github</code> to ^9.0.0 and <code>@octokit/request-error</code> to ^7.1.0 (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/678">#678</a>)</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/b60309944845001ba168d4947b0c43c4bc94be74"><code>b603099</code></a> Upgrade <code>@actions/core</code> from ^1.11.1 to ^3.0.0 (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/677">#677</a>)</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/c5dc5b174070a3760ba36f0638aa6be896c4c7c9"><code>c5dc5b1</code></a> Enable noImplicitAny in tsconfig.json (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/684">#684</a>)</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/a183f3c7985054f86eba6dd1ad07cde0067cc4f7"><code>a183f3c</code></a> Add typecheck step to CI (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/685">#685</a>)</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/5e175645c2bdda348d0b48d730d38c537356a153"><code>5e17564</code></a> Remove skipLibCheck from tsconfig.json (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/683">#683</a>)</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/bb56eeb32acd8595e47fb3529ce5816589d912fe"><code>bb56eeb</code></a> Switch tsconfig module resolution to bundler (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/682">#682</a>)</li> <li><a href="https://github.com/dependabot/fetch-metadata/commit/3632e3d8b773dac47f843a97c7536d0ce4e73de4"><code>3632e3d</code></a> Remove vestigial outDir from tsconfig.json (<a href="https://redirect.github.com/dependabot/fetch-metadata/issues/681">#681</a>)</li> <li>Additional commits viewable in <a href="https://github.com/dependabot/fetch-metadata/compare/21025c705c08248db411dc16f3619e6b5f9ea21a...ffa630c65fa7e0ecfa0625b5ceda64399aea1b36">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
f8e7d1f327 |
chore(deps): Bump codecov/codecov-action from 5.5.3 to 6.0.0 (#1765)
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 5.5.3 to 6.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h2>⚠️ This version introduces support for node24 which make cause breaking changes for systems that do not currently support node24. ⚠️</h2> <h2>What's Changed</h2> <ul> <li>Revert "Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0"" by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1929">codecov/codecov-action#1929</a></li> <li>Th/6.0.0 by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1928">codecov/codecov-action#1928</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.5.4...v6.0.0">https://github.com/codecov/codecov-action/compare/v5.5.4...v6.0.0</a></p> <h2>v5.5.4</h2> <p>This is a mirror of <code>v5.5.2</code>. <code>v6</code> will be released which requires <code>node24</code></p> <h2>What's Changed</h2> <ul> <li>Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0" by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1926">codecov/codecov-action#1926</a></li> <li>chore(release): 5.5.4 by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1927">codecov/codecov-action#1927</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.5.3...v5.5.4">https://github.com/codecov/codecov-action/compare/v5.5.3...v5.5.4</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md">codecov/codecov-action's changelog</a>.</em></p> <blockquote> <h2>v5.5.2</h2> <h3>What's Changed</h3> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2">https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2</a></p> <h2>v5.5.1</h2> <h3>What's Changed</h3> <ul> <li>fix: overwrite pr number on fork by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1871">codecov/codecov-action#1871</a></li> <li>build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1868">codecov/codecov-action#1868</a></li> <li>build(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1867">codecov/codecov-action#1867</a></li> <li>fix: update to use local app/ dir by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1872">codecov/codecov-action#1872</a></li> <li>docs: fix typo in README by <a href="https://github.com/datalater"><code>@datalater</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1866">codecov/codecov-action#1866</a></li> <li>Document a <code>codecov-cli</code> version reference example by <a href="https://github.com/webknjaz"><code>@webknjaz</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1774">codecov/codecov-action#1774</a></li> <li>build(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1861">codecov/codecov-action#1861</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1833">codecov/codecov-action#1833</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1">https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1</a></p> <h2>v5.5.0</h2> <h3>What's Changed</h3> <ul> <li>feat: upgrade wrapper to 0.2.4 by <a href="https://github.com/jviall"><code>@jviall</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1864">codecov/codecov-action#1864</a></li> <li>Pin actions/github-script by Git SHA by <a href="https://github.com/martincostello"><code>@martincostello</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1859">codecov/codecov-action#1859</a></li> <li>fix: check reqs exist by <a href="https://github.com/joseph-sentry"><code>@joseph-sentry</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1835">codecov/codecov-action#1835</a></li> <li>fix: Typo in README by <a href="https://github.com/spalmurray"><code>@spalmurray</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1838">codecov/codecov-action#1838</a></li> <li>docs: Refine OIDC docs by <a href="https://github.com/spalmurray"><code>@spalmurray</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1837">codecov/codecov-action#1837</a></li> <li>build(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1829">codecov/codecov-action#1829</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0">https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0</a></p> <h2>v5.4.3</h2> <h3>What's Changed</h3> <ul> <li>build(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1822">codecov/codecov-action#1822</a></li> <li>fix: OIDC on forks by <a href="https://github.com/joseph-sentry"><code>@joseph-sentry</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1823">codecov/codecov-action#1823</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3">https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3</a></p> <h2>v5.4.2</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codecov/codecov-action/commit/57e3a136b779b570ffcdbf80b3bdc90e7fab3de2"><code>57e3a13</code></a> Th/6.0.0 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1928">#1928</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/f67d33dda8a42b51c42a8318a1f66468119e898b"><code>f67d33d</code></a> Revert "Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0""...</li> <li><a href="https://github.com/codecov/codecov-action/commit/75cd11691c0faa626561e295848008c8a7dddffe"><code>75cd116</code></a> chore(release): 5.5.4 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1927">#1927</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/87d39f4a2cec2673cf9505764fb20a38792ea722"><code>87d39f4</code></a> Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0" (<a href="https://redirect.github.com/codecov/codecov-action/issues/1926">#1926</a>)</li> <li>See full diff in <a href="https://github.com/codecov/codecov-action/compare/1af58845a975a7985b0beb0cbe6fbbb71a41dbad...57e3a136b779b570ffcdbf80b3bdc90e7fab3de2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
552f0f2c16 |
chore(deps): Bump maplibre-gl from 5.21.0 to 5.21.1 (#1764)
Bumps [maplibre-gl](https://github.com/maplibre/maplibre-gl-js) from 5.21.0 to 5.21.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/maplibre/maplibre-gl-js/releases">maplibre-gl's releases</a>.</em></p> <blockquote> <h2>v5.21.1</h2> <h3>🐞 Bug fixes</h3> <ul> <li>Add missing <code>promoteId</code> parameter to geojson worker and refactor communication object (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7320">#7320</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/maplibre/maplibre-gl-js/blob/main/CHANGELOG.md">maplibre-gl's changelog</a>.</em></p> <blockquote> <h2>5.21.1</h2> <h3>🐞 Bug fixes</h3> <ul> <li>Add missing <code>promoteId</code> parameter to geojson worker and refactor communication object (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7320">#7320</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/1fe69fd961d62c9b017debfc7eb49c32c53e5339"><code>1fe69fd</code></a> Bump js version to 5.21.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7325">#7325</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/1bf28ae09ad2b158cb64795efea6fac9da9a8ba6"><code>1bf28ae</code></a> Add missing promoteId parameter to geojson worker (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7320">#7320</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/1557f5205f210a7f1a20c7f0d30ef00746cc6938"><code>1557f52</code></a> chore(deps-dev): bump canvas from 3.2.1 to 3.2.2 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7324">#7324</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/73db19a8ecc2f02b9a5d8eb969ff9a48375ef5e7"><code>73db19a</code></a> chore(deps-dev): bump <code>@vitest/eslint-plugin</code> in the vitest group (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7321">#7321</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/9eeb0fd4a555e45419a01324d9760b52cc1c6439"><code>9eeb0fd</code></a> chore(deps-dev): bump rollup from 4.59.1 to 4.60.0 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7322">#7322</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/a5a63bcedee8eceb3fd90f7e5f727dbad35273d8"><code>a5a63bc</code></a> chore(deps-dev): bump rollup from 4.59.0 to 4.59.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7316">#7316</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/a54d7a149745a1af0ae834800772e41993648da6"><code>a54d7a1</code></a> chore(deps): bump github/codeql-action from 4.33.0 to 4.34.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7317">#7317</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/a4c8bc8ad0fb685d846be9c80e5169799f9b7d93"><code>a4c8bc8</code></a> chore(deps): bump ggilder/codecoverage from 1.3.0 to 1.3.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7318">#7318</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/a8cf500b71089778f93c64c975bcaa0598e14c5d"><code>a8cf500</code></a> chore(deps-dev): bump devtools-protocol from 0.0.1596832 to 0.0.1602427 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7312">#7312</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/65766d25e8c979f240a89ae7ae2c117c0d8bef86"><code>65766d2</code></a> chore(deps-dev): bump puppeteer from 24.39.1 to 24.40.0 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7313">#7313</a>)</li> <li>Additional commits viewable in <a href="https://github.com/maplibre/maplibre-gl-js/compare/v5.21.0...v5.21.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
85975900a1 |
chore(deps): Bump i18next from 25.10.9 to 25.10.10 (#1761)
[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [i18next](https://github.com/i18next/i18next) from 25.10.9 to 25.10.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/releases">i18next's releases</a>.</em></p> <blockquote> <h2>v25.10.10</h2> <ul> <li>feat: suppress support notice automatically in production environments (<code>NODE_ENV=production</code>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md">i18next's changelog</a>.</em></p> <blockquote> <h2>25.10.10</h2> <ul> <li>feat: suppress support notice automatically in production environments (<code>NODE_ENV=production</code>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next/commit/e0fa8382de3b64100a594a2c27124ea9fa48814b"><code>e0fa838</code></a> 25.10.10</li> <li><a href="https://github.com/i18next/i18next/commit/796fdd96c99967fcecdca21ceabd61aee7b3cc21"><code>796fdd9</code></a> feat: suppress support notice automatically in production environments (`NODE...</li> <li><a href="https://github.com/i18next/i18next/commit/07f585f351a564249c8f83dfd168037cd1d4cf69"><code>07f585f</code></a> changelog</li> <li><a href="https://github.com/i18next/i18next/commit/1ba99513b2ac4f7a3e2d97cefd3716230db93032"><code>1ba9951</code></a> jsr update</li> <li>See full diff in <a href="https://github.com/i18next/i18next/compare/v25.10.9...v25.10.10">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
e14f79df8b |
chore(deps-dev): Bump cypress from 15.12.0 to 15.13.0 (#1757)
Bumps [cypress](https://github.com/cypress-io/cypress) from 15.12.0 to 15.13.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/cypress/releases">cypress's releases</a>.</em></p> <blockquote> <h2>v15.13.0</h2> <p>Changelog: <a href="https://docs.cypress.io/app/references/changelog#15-13-0">https://docs.cypress.io/app/references/changelog#15-13-0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cypress-io/cypress/commit/18b67d710835b5d8ae1a1c56025ef1b9f2b7df37"><code>18b67d7</code></a> chore: release 15.13.0 (<a href="https://redirect.github.com/cypress-io/cypress/issues/33513">#33513</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/6a1879baa84be714fabece7a792736e7015efebd"><code>6a1879b</code></a> test: fix flake in readFile retries to read when ENOENT (<a href="https://redirect.github.com/cypress-io/cypress/issues/33510">#33510</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/a6f2df60c89a38d5cf498296b80d6467981b230f"><code>a6f2df6</code></a> chore(deps): update dependency cypress-example-kitchensink to 5.2.6 (<a href="https://redirect.github.com/cypress-io/cypress/issues/33508">#33508</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/ab6a7d9b8bd9d8de3a786aaacdd34c33fd6773fd"><code>ab6a7d9</code></a> chore: update changelog wording (<a href="https://redirect.github.com/cypress-io/cypress/issues/33509">#33509</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/28504ddbccc786e90a5e2cb078e6c545adfb3bf9"><code>28504dd</code></a> chore: updating v8 snapshot cache (<a href="https://redirect.github.com/cypress-io/cypress/issues/33506">#33506</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/5a300aa8d5b63e3a3631b28b9f778f33b5d88cdf"><code>5a300aa</code></a> chore: updating v8 snapshot cache (<a href="https://redirect.github.com/cypress-io/cypress/issues/33505">#33505</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/1bf3ff8023a62c6f202db76cd25e82ed2836eb79"><code>1bf3ff8</code></a> chore: remove experimentalPromptCommand config (<a href="https://redirect.github.com/cypress-io/cypress/issues/33497">#33497</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/b21fa13daaeab71d767b0c19255b5e01c9654adb"><code>b21fa13</code></a> chore: updating v8 snapshot cache (<a href="https://redirect.github.com/cypress-io/cypress/issues/33503">#33503</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/6eac7d8e1640e48565e1cb167df1ad0858513fe4"><code>6eac7d8</code></a> chore: display get code button on prompt failure (<a href="https://redirect.github.com/cypress-io/cypress/issues/33480">#33480</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/6dfecdaf82becc252077d8245efd3eb8dacc1837"><code>6dfecda</code></a> dependency: update flatted to 3.4.2 (<a href="https://redirect.github.com/cypress-io/cypress/issues/33501">#33501</a>)</li> <li>Additional commits viewable in <a href="https://github.com/cypress-io/cypress/compare/v15.12.0...v15.13.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
9de236b695 |
chore(deps): Bump react-i18next from 16.6.5 to 16.6.6 (#1760)
Bumps [react-i18next](https://github.com/i18next/react-i18next) from 16.6.5 to 16.6.6. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/react-i18next/blob/master/CHANGELOG.md">react-i18next's changelog</a>.</em></p> <blockquote> <h3>16.6.6</h3> <ul> <li>fix(peer-deps): bump i18next peer dependency to <code>>= 25.10.9</code> to match required type exports (<code>ConstrainTarget</code>, <code>ApplyTarget</code>, <code>GetSource</code>) used by <code>TransSelector</code> <a href="https://redirect.github.com/i18next/react-i18next/issues/1911">1911</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/react-i18next/commit/eb02c6305a9252222179bd6272c09f3e4ff9ad6a"><code>eb02c63</code></a> 16.6.6</li> <li><a href="https://github.com/i18next/react-i18next/commit/76f98cdd00e12d36b99bccb18614d647f6f9ce30"><code>76f98cd</code></a> fix(peer-deps): bump i18next peer dependency to <code>>= 25.10.9</code> to match require...</li> <li>See full diff in <a href="https://github.com/i18next/react-i18next/compare/v16.6.5...v16.6.6">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
eb6c6129d5 |
chore(deps-dev): Bump stylelint from 17.5.0 to 17.6.0 (#1759)
Bumps [stylelint](https://github.com/stylelint/stylelint) from 17.5.0 to 17.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/stylelint/stylelint/releases">stylelint's releases</a>.</em></p> <blockquote> <h2>17.6.0</h2> <p>It adds support for extending units in <code>languageOptions</code>, which then apply to rules like <code>declaration-property-value-no-unknown</code>, and fixes 2 bugs.</p> <ul> <li>Added: support for extending units to <code>languageOptions</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9166">#9166</a>) (<a href="https://github.com/jeddy3"><code>@jeddy3</code></a>).</li> <li>Fixed: missing <code>ruleMetadata</code> when linting multiple files with overrides (<a href="https://redirect.github.com/stylelint/stylelint/issues/9154">#9154</a>) (<a href="https://github.com/kovsu"><code>@kovsu</code></a>).</li> <li>Fixed: <code>custom-property-no-missing-var-function</code> false positives for <code>timeline-scope</code> and <code>animation-timeline</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9164">#9164</a>) (<a href="https://github.com/splincode"><code>@splincode</code></a>).</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md">stylelint's changelog</a>.</em></p> <blockquote> <h2>17.6.0 - 2026-03-26</h2> <p>It adds support for extending units in <code>languageOptions</code>, which then apply to rules like <code>declaration-property-value-no-unknown</code>, and fixes 2 bugs.</p> <ul> <li>Added: support for extending units to <code>languageOptions</code> (<a href="https://redirect.github.com/stylelint/stylelint/pull/9166">#9166</a>) (<a href="https://github.com/jeddy3"><code>@jeddy3</code></a>).</li> <li>Fixed: missing <code>ruleMetadata</code> when linting multiple files with overrides (<a href="https://redirect.github.com/stylelint/stylelint/pull/9154">#9154</a>) (<a href="https://github.com/kovsu"><code>@kovsu</code></a>).</li> <li>Fixed: <code>custom-property-no-missing-var-function</code> false positives for <code>timeline-scope</code> and <code>animation-timeline</code> (<a href="https://redirect.github.com/stylelint/stylelint/pull/9164">#9164</a>) (<a href="https://github.com/splincode"><code>@splincode</code></a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/stylelint/stylelint/commit/f74ceafa445e0299261a8d590a27c9441dea49d1"><code>f74ceaf</code></a> Release 17.6.0 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9180">#9180</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/895f7f23e7a67e1fcc763f2e29c625bd56ce86f1"><code>895f7f2</code></a> Add support for extending units to <code>languageOptions</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9166">#9166</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/dd7231b971072c130fc333edf744ee01febacb6f"><code>dd7231b</code></a> Refactor to replace <code>imurmurhash</code> with <code>node:crypto</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9177">#9177</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/5b6b024684b88f11a3bc84269722529e09bd4c16"><code>5b6b024</code></a> Bump picomatch (<a href="https://redirect.github.com/stylelint/stylelint/issues/9178">#9178</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/7e25378e748a06e67bc0c8c467d3ed46a395d2ed"><code>7e25378</code></a> Bump <code>@csstools/css-syntax-patches-for-csstree</code> from 1.0.29 to 1.1.1 in the css...</li> <li><a href="https://github.com/stylelint/stylelint/commit/9edeff40a6cbcaff908294777e72e6ba9873c914"><code>9edeff4</code></a> Group <code>csstree</code> and <code>@csstools/css-syntax-patches-for-csstree</code> in dependabot ...</li> <li><a href="https://github.com/stylelint/stylelint/commit/2f7c0ca4da6ca860dec80ebd04fc02339d8fa7fe"><code>2f7c0ca</code></a> Bump actions/download-artifact from 8.0.0 to 8.0.1 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9167">#9167</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/59f310d6e4ca45f603f8d82dd250d49341c3a8f9"><code>59f310d</code></a> Bump write-file-atomic from 7.0.0 to 7.0.1 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9169">#9169</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/ab2ffcbae6691a3882bdbac058cebb108a7c57a0"><code>ab2ffcb</code></a> Bump <code>@vscode/windows-process-tree</code> from 0.6.3 to 0.7.0 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9170">#9170</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/a9f3e5b3ffe9a18c361f643c6bd87036356f573e"><code>a9f3e5b</code></a> Bump lint-staged from 16.3.3 to 16.4.0 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9171">#9171</a>)</li> <li>Additional commits viewable in <a href="https://github.com/stylelint/stylelint/compare/17.5.0...17.6.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
a658d59eac |
chore(deps-dev): Bump the vitest group with 2 updates (#1756)
Bumps the vitest group with 2 updates: [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `@vitest/coverage-v8` from 4.1.1 to 4.1.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitest-dev/vitest/releases"><code>@vitest/coverage-v8</code>'s releases</a>.</em></p> <blockquote> <h2>v4.1.2</h2> <p>This release bumps Vitest's <code>flatted</code> version and removes version pinning to resolve <code>flatted</code>'s CVE related issues (<a href="https://redirect.github.com/vitest-dev/vitest/issues/9975">vitest-dev/vitest#9975</a>).</p> <h3> 🐞 Bug Fixes</h3> <ul> <li>Don't resolve <code>setupFiles</code> from parent directory - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9960">vitest-dev/vitest#9960</a> <a href="https://github.com/vitest-dev/vitest/commit/7aa937776"><!-- raw HTML omitted -->(7aa93)<!-- raw HTML omitted --></a></li> <li>Ensure sequential mock/unmock resolution - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> and <strong>Claude Opus 4.6</strong> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9830">vitest-dev/vitest#9830</a> <a href="https://github.com/vitest-dev/vitest/commit/7c06598db"><!-- raw HTML omitted -->(7c065)<!-- raw HTML omitted --></a></li> <li><strong>browser</strong>: Take failure screenshot if <code>toMatchScreenshot</code> can't capture a stable screenshot - by <a href="https://github.com/macarie"><code>@macarie</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9847">vitest-dev/vitest#9847</a> <a href="https://github.com/vitest-dev/vitest/commit/faace1fbe"><!-- raw HTML omitted -->(faace)<!-- raw HTML omitted --></a></li> <li><strong>coverage</strong>: Correct <code>coverageConfigDefaults</code> values and types - by <a href="https://github.com/Arthie"><code>@Arthie</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9940">vitest-dev/vitest#9940</a> <a href="https://github.com/vitest-dev/vitest/commit/b3c992cb2"><!-- raw HTML omitted -->(b3c99)<!-- raw HTML omitted --></a></li> <li><strong>pretty-format</strong>: Fix output limit over counting - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9965">vitest-dev/vitest#9965</a> <a href="https://github.com/vitest-dev/vitest/commit/d3b7a40fa"><!-- raw HTML omitted -->(d3b7a)<!-- raw HTML omitted --></a></li> <li>Disable colors if agent is detected - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> and <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9851">vitest-dev/vitest#9851</a> <a href="https://github.com/vitest-dev/vitest/commit/6f97b55dd"><!-- raw HTML omitted -->(6f97b)<!-- raw HTML omitted --></a></li> </ul> <h5> <a href="https://github.com/vitest-dev/vitest/compare/v4.1.1...v4.1.2">View changes on GitHub</a></h5> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitest-dev/vitest/commit/fc6f482f4c54bf6a766a0ff502b9843994af5bf5"><code>fc6f482</code></a> chore: release v4.1.2</li> <li>See full diff in <a href="https://github.com/vitest-dev/vitest/commits/v4.1.2/packages/coverage-v8">compare view</a></li> </ul> </details> <br /> Updates `vitest` from 4.1.1 to 4.1.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitest-dev/vitest/releases">vitest's releases</a>.</em></p> <blockquote> <h2>v4.1.2</h2> <p>This release bumps Vitest's <code>flatted</code> version and removes version pinning to resolve <code>flatted</code>'s CVE related issues (<a href="https://redirect.github.com/vitest-dev/vitest/issues/9975">vitest-dev/vitest#9975</a>).</p> <h3> 🐞 Bug Fixes</h3> <ul> <li>Don't resolve <code>setupFiles</code> from parent directory - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9960">vitest-dev/vitest#9960</a> <a href="https://github.com/vitest-dev/vitest/commit/7aa937776"><!-- raw HTML omitted -->(7aa93)<!-- raw HTML omitted --></a></li> <li>Ensure sequential mock/unmock resolution - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> and <strong>Claude Opus 4.6</strong> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9830">vitest-dev/vitest#9830</a> <a href="https://github.com/vitest-dev/vitest/commit/7c06598db"><!-- raw HTML omitted -->(7c065)<!-- raw HTML omitted --></a></li> <li><strong>browser</strong>: Take failure screenshot if <code>toMatchScreenshot</code> can't capture a stable screenshot - by <a href="https://github.com/macarie"><code>@macarie</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9847">vitest-dev/vitest#9847</a> <a href="https://github.com/vitest-dev/vitest/commit/faace1fbe"><!-- raw HTML omitted -->(faace)<!-- raw HTML omitted --></a></li> <li><strong>coverage</strong>: Correct <code>coverageConfigDefaults</code> values and types - by <a href="https://github.com/Arthie"><code>@Arthie</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9940">vitest-dev/vitest#9940</a> <a href="https://github.com/vitest-dev/vitest/commit/b3c992cb2"><!-- raw HTML omitted -->(b3c99)<!-- raw HTML omitted --></a></li> <li><strong>pretty-format</strong>: Fix output limit over counting - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9965">vitest-dev/vitest#9965</a> <a href="https://github.com/vitest-dev/vitest/commit/d3b7a40fa"><!-- raw HTML omitted -->(d3b7a)<!-- raw HTML omitted --></a></li> <li>Disable colors if agent is detected - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> and <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9851">vitest-dev/vitest#9851</a> <a href="https://github.com/vitest-dev/vitest/commit/6f97b55dd"><!-- raw HTML omitted -->(6f97b)<!-- raw HTML omitted --></a></li> </ul> <h5> <a href="https://github.com/vitest-dev/vitest/compare/v4.1.1...v4.1.2">View changes on GitHub</a></h5> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitest-dev/vitest/commit/fc6f482f4c54bf6a766a0ff502b9843994af5bf5"><code>fc6f482</code></a> chore: release v4.1.2</li> <li><a href="https://github.com/vitest-dev/vitest/commit/6f97b55ddc446e725d259b7790eb21e39be77d6c"><code>6f97b55</code></a> feat: disable colors if agent is detected (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9851">#9851</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/b3c992cb29ede4cca1581ed08dd9921d575cb384"><code>b3c992c</code></a> fix(coverage): correct <code>coverageConfigDefaults</code> values and types (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9940">#9940</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/7c06598dbb49d9b54c990d537b700474330b6e12"><code>7c06598</code></a> fix: ensure sequential mock/unmock resolution (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9830">#9830</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/f54abad136c25796937f2376a3c8c1c10f5c71c8"><code>f54abad</code></a> chore: add typo-checker skill and fix typos (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9963">#9963</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/7aa93777641fb78643535cf46b1d080910ec97c8"><code>7aa9377</code></a> fix: don't resolve <code>setupFiles</code> from parent directory (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9960">#9960</a>)</li> <li>See full diff in <a href="https://github.com/vitest-dev/vitest/commits/v4.1.2/packages/vitest">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
e7bcfc25c9 |
chore(deps-dev): Bump i18next-cli from 1.50.5 to 1.51.3 (#1758)
Bumps [i18next-cli](https://github.com/i18next/i18next-cli) from 1.50.5 to 1.51.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md">i18next-cli's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.51.2...v1.51.3">1.51.3</a> - 2026-03-26</h2> <ul> <li>Silently skip directories that happen to have file-like extensions (e.g. a directory named <code>Foo.tsx</code>) instead of logging a misleading "Skipping file due to error" warning. Fixes <a href="https://redirect.github.com/i18next/i18next-cli/issues/229">#229</a>.</li> </ul> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.51.1...v1.51.2">1.51.2</a> - 2026-03-26</h2> <ul> <li>Fix <code>extract</code> function returning default namespace keys at top level instead of under <code>"translation"</code> when <code>nsSeparator: false</code> is used with multiple namespaces. The <code>nsSeparator: false</code> top-level collapsing (<a href="https://redirect.github.com/i18next/i18next-cli/issues/223">#223</a>) now only applies when there are no other explicit namespaces present. Fixes <a href="https://redirect.github.com/i18next/i18next-cli/issues/227">#227</a>.</li> </ul> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.51.0...v1.51.1">1.51.1</a> - 2026-03-26</h2> <ul> <li>Fix <code>allPluralForms</code> to only generate plural forms needed by at least one configured locale (union of all locales' CLDR categories) instead of always generating all 6 forms. Also fixes defaultValues not being applied consistently to the extra plural forms. Fixes <a href="https://redirect.github.com/i18next/i18next-cli/issues/226">#226</a>.</li> </ul> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.8...v1.51.0">1.51.0</a> - 2026-03-25</h2> <ul> <li>Add <code>allPluralForms</code> option to force generation of all 6 CLDR plural forms (<code>zero</code>, <code>one</code>, <code>two</code>, <code>few</code>, <code>many</code>, <code>other</code>) for every language, including the primary language. This is useful when secondary languages need plural forms that the primary language doesn't have, and you want a consistent set of keys across all locales. Set <code>extract.allPluralForms: true</code> in your config to enable. Addresses <a href="https://redirect.github.com/i18next/i18next-cli/issues/226">#226</a>.</li> </ul> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.7...v1.50.8">1.50.8</a> - 2026-03-25</h2> <ul> <li>Fix crash with custom locale codes (e.g. <code>'E'</code>, <code>'F'</code>) that are not valid BCP 47 language tags. <code>Intl.PluralRules</code> now falls back to English plural rules for unrecognized locales instead of throwing a <code>RangeError</code>. Fixes <a href="https://redirect.github.com/i18next/i18next-cli/issues/225">#225</a>.</li> </ul> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.6...v1.50.7">1.50.7</a> - 2026-03-25</h2> <ul> <li>Fix incomplete <a href="https://redirect.github.com/i18next/i18next-cli/issues/223">#223</a> fix: keys from <code>useTranslation()</code> (no args) have <code>nsIsImplicit: false</code> after parser resolution, so the previous <code>nsIsImplicit</code> check did not catch them. The merged-path loop now treats any defaultNS-keyed bucket as top-level when <code>nsSeparator: false</code>, without affecting non-merged layouts that rely on namespace-based file routing.</li> </ul> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.5...v1.50.6">1.50.6</a> - 2026-03-25</h2> <ul> <li>Fix merged single-file layout with <code>nsSeparator: false</code> misdetecting top-level</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next-cli/commit/effeba911c5019abe07ca20e0d19851fe8f65a4f"><code>effeba9</code></a> 1.51.3</li> <li><a href="https://github.com/i18next/i18next-cli/commit/5b1b8126bdbc477ab28fb1c7c9810f7267093ae5"><code>5b1b812</code></a> Silently skip directories that happen to have file-like extensions <a href="https://redirect.github.com/i18next/i18next-cli/issues/229">#229</a></li> <li><a href="https://github.com/i18next/i18next-cli/commit/f618bb931521b3c7e621c4d7a017523fa14ac296"><code>f618bb9</code></a> Fix syntax for acceptedAttributes and acceptedTags in README. (<a href="https://redirect.github.com/i18next/i18next-cli/issues/228">#228</a>)</li> <li><a href="https://github.com/i18next/i18next-cli/commit/858450ba9e2f417074e807a221b5e5618e9dbe24"><code>858450b</code></a> 1.51.2</li> <li><a href="https://github.com/i18next/i18next-cli/commit/4d60cab84755938d02d9d16db2f95d92a5eea673"><code>4d60cab</code></a> try to address <a href="https://redirect.github.com/i18next/i18next-cli/issues/227">#227</a></li> <li><a href="https://github.com/i18next/i18next-cli/commit/5eb9c0f6aea58108b92cf3e002756ade49fc81bb"><code>5eb9c0f</code></a> 1.51.1</li> <li><a href="https://github.com/i18next/i18next-cli/commit/c4022def8cff35cded1b287e2c4b5d7d06235d58"><code>c4022de</code></a> fix new allPluralForms option <a href="https://redirect.github.com/i18next/i18next-cli/issues/226">#226</a></li> <li><a href="https://github.com/i18next/i18next-cli/commit/0c3849afafdad9812f76de8e2566bd9d3a4f1b55"><code>0c3849a</code></a> 1.51.0</li> <li><a href="https://github.com/i18next/i18next-cli/commit/226550bde09b752caecd88ebaaffadecc708dcfc"><code>226550b</code></a> introduce allPluralForms <a href="https://redirect.github.com/i18next/i18next-cli/issues/226">#226</a></li> <li><a href="https://github.com/i18next/i18next-cli/commit/1ddf7cc1d06e440c59c3400b540923acc0c7cacf"><code>1ddf7cc</code></a> 1.50.8</li> <li>Additional commits viewable in <a href="https://github.com/i18next/i18next-cli/compare/v1.50.5...v1.51.3">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
1de83cbd66 |
chore(deps-dev): Bump typescript-eslint from 8.57.1 to 8.57.2 (#1751)
Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 8.57.1 to 8.57.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases">typescript-eslint's releases</a>.</em></p> <blockquote> <h2>v8.57.2</h2> <h2>8.57.2 (2026-03-23)</h2> <h3>🩹 Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [prefer-optional-chain] remove dangling closing parenthesis (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11865">#11865</a>)</li> <li><strong>eslint-plugin:</strong> [array-type] ignore Array and ReadonlyArray without type arguments (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11971">#11971</a>)</li> <li><strong>eslint-plugin:</strong> [no-restricted-types] flag banned generics in extends or implements (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12120">#12120</a>)</li> <li><strong>eslint-plugin:</strong> [no-unsafe-return] false positive on unwrapping generic (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12125">#12125</a>)</li> <li><strong>eslint-plugin:</strong> [no-unsafe-return] false positive on unwrapping generic (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12125">#12125</a>)</li> <li><strong>eslint-plugin:</strong> [no-useless-default-assignment] skip reporting false positives for unresolved type parameters (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12127">#12127</a>)</li> <li><strong>eslint-plugin:</strong> [prefer-readonly-parameter-types] preserve type alias infomation (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11954">#11954</a>)</li> <li><strong>typescript-estree:</strong> skip createIsolatedProgram fallback for projectService (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12066">#12066</a>, <a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/12065">#12065</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Kirk Waiblinger <a href="https://github.com/kirkwaiblinger"><code>@kirkwaiblinger</code></a></li> <li>Konv Suu</li> <li>mdm317</li> <li>Newton Yuan <a href="https://github.com/NewtonYuan"><code>@NewtonYuan</code></a></li> <li>RyoheiYamamoto</li> <li>SungHyun627 <a href="https://github.com/SungHyun627"><code>@SungHyun627</code></a></li> <li>Tamashoo <a href="https://github.com/Tamashoo"><code>@Tamashoo</code></a></li> </ul> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.2">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md">typescript-eslint's changelog</a>.</em></p> <blockquote> <h2>8.57.2 (2026-03-23)</h2> <p>This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.</p> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.2">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/be4d54d26e695cc93605ffcca67dd75848e95c6f"><code>be4d54d</code></a> chore(release): publish 8.57.2</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v8.57.2/packages/typescript-eslint">compare view</a></li> </ul> </details> <br /> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
9efc2273da |
chore(deps-dev): Bump i18next-cli from 1.50.4 to 1.50.5 (#1755)
Bumps [i18next-cli](https://github.com/i18next/i18next-cli) from 1.50.4 to 1.50.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md">i18next-cli's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.4...v1.50.5">1.50.5</a> - 2026-03-24</h2> <ul> <li>Suppress promotional messages when <code>--quiet</code> flag is used. The <code>extract</code> and <code>sync</code> commands now correctly silence all non-essential output in quiet mode. Fixes <a href="https://redirect.github.com/i18next/i18next-cli/issues/222">#222</a>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next-cli/commit/fd50be77822034ed0366c2deb07fc56bafb45cd7"><code>fd50be7</code></a> 1.50.5</li> <li><a href="https://github.com/i18next/i18next-cli/commit/42b0d0c649399aaf25c8038d26c55f3b317a1a30"><code>42b0d0c</code></a> Suppress promotional messages when <code>--quiet</code> flag is used. <a href="https://redirect.github.com/i18next/i18next-cli/issues/222">#222</a></li> <li><a href="https://github.com/i18next/i18next-cli/commit/45e90a2696d4dad5f2038f3dc1e040b5b64bd205"><code>45e90a2</code></a> Fix namespaces containing spaces <a href="https://redirect.github.com/i18next/i18next-cli/issues/221">#221</a></li> <li>See full diff in <a href="https://github.com/i18next/i18next-cli/compare/v1.50.4...v1.50.5">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
72d8c14e35 |
chore(deps-dev): Bump @cypress/code-coverage from 4.0.1 to 4.0.3 (#1754)
Bumps [@cypress/code-coverage](https://github.com/cypress-io/code-coverage) from 4.0.1 to 4.0.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/code-coverage/releases"><code>@cypress/code-coverage</code>'s releases</a>.</em></p> <blockquote> <h2>v4.0.3</h2> <h2><a href="https://github.com/cypress-io/code-coverage/compare/v4.0.2...v4.0.3">4.0.3</a> (2026-03-23)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update dependency debug to v4.4.3 (<a href="https://redirect.github.com/cypress-io/code-coverage/issues/990">#990</a>) (<a href="https://github.com/cypress-io/code-coverage/commit/985dbddecbb43a1a0aa346dcfd616e11301d9c87">985dbdd</a>)</li> </ul> <h2>v4.0.2</h2> <h2><a href="https://github.com/cypress-io/code-coverage/compare/v4.0.1...v4.0.2">4.0.2</a> (2026-03-16)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update dependency dayjs to v1.11.20 (<a href="https://redirect.github.com/cypress-io/code-coverage/issues/988">#988</a>) (<a href="https://github.com/cypress-io/code-coverage/commit/05407767f64aaa02062d7f3c8576fbd14041c146">0540776</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cypress-io/code-coverage/commit/995b23a596d8b2732a9ed48fcfae1f675d2c097d"><code>995b23a</code></a> chore(deps): update dependency <code>@types/debug</code> to v4.1.13 (<a href="https://redirect.github.com/cypress-io/code-coverage/issues/989">#989</a>)</li> <li><a href="https://github.com/cypress-io/code-coverage/commit/985dbddecbb43a1a0aa346dcfd616e11301d9c87"><code>985dbdd</code></a> fix(deps): update dependency debug to v4.4.3 (<a href="https://redirect.github.com/cypress-io/code-coverage/issues/990">#990</a>)</li> <li><a href="https://github.com/cypress-io/code-coverage/commit/72e429928472443a7e523ee90e4c4c7f35cf2f89"><code>72e4299</code></a> chore(deps): update dependency serve to v14.2.6 (<a href="https://redirect.github.com/cypress-io/code-coverage/issues/987">#987</a>)</li> <li><a href="https://github.com/cypress-io/code-coverage/commit/05407767f64aaa02062d7f3c8576fbd14041c146"><code>0540776</code></a> fix(deps): update dependency dayjs to v1.11.20 (<a href="https://redirect.github.com/cypress-io/code-coverage/issues/988">#988</a>)</li> <li><a href="https://github.com/cypress-io/code-coverage/commit/fbe99183e4d50b24e82399e205568087d9456fe5"><code>fbe9918</code></a> chore(deps): update dependency <code>@types/lodash</code> to v4.17.24 (<a href="https://redirect.github.com/cypress-io/code-coverage/issues/984">#984</a>)</li> <li><a href="https://github.com/cypress-io/code-coverage/commit/649cf9d7f21be98e32ad88087eb01c4e9feb428b"><code>649cf9d</code></a> chore(deps): update nyc, babel-plugin-istanbul, rimraf, and semantic-release ...</li> <li>See full diff in <a href="https://github.com/cypress-io/code-coverage/compare/v4.0.1...v4.0.3">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
cc9ab7daef |
chore(deps): Bump i18next from 25.10.5 to 25.10.9 (#1753)
[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [i18next](https://github.com/i18next/i18next) from 25.10.5 to 25.10.9. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/releases">i18next's releases</a>.</em></p> <blockquote> <h2>v25.10.9</h2> <ul> <li>feat(types): export <code>SelectorParam<Ns, KPrefix></code> helper type — a stable, readable alternative to <code>Parameters<TFunction<Ns>>[0]</code> for typing selector function props <a href="https://redirect.github.com/i18next/i18next/issues/2414">2414</a></li> </ul> <h2>v25.10.8</h2> <ul> <li>fix(types): reorder <code>TFunctionSelector</code> overloads so <code>Parameters<TFunction></code> resolves to the general selector signature instead of the branded <code>SelectorKey</code> type <a href="https://redirect.github.com/i18next/i18next/issues/2412">2412</a></li> </ul> <h2>v25.10.7</h2> <ul> <li>feat(types): support typescript 6 to address <a href="https://redirect.github.com/i18next/react-i18next/issues/1910">i18next/react-i18next#1910</a></li> </ul> <h2>v25.10.6</h2> <ul> <li>feat(types): support typescript 6 to address <a href="https://redirect.github.com/i18next/react-i18next/issues/1910">i18next/react-i18next#1910</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md">i18next's changelog</a>.</em></p> <blockquote> <h2>25.10.9</h2> <ul> <li>feat(types): export <code>SelectorParam<Ns, KPrefix></code> helper type — a stable, readable alternative to <code>Parameters<TFunction<Ns>>[0]</code> for typing selector function props <a href="https://redirect.github.com/i18next/i18next/issues/2414">2414</a></li> </ul> <h2>25.10.8</h2> <ul> <li>fix(types): reorder <code>TFunctionSelector</code> overloads so <code>Parameters<TFunction></code> resolves to the general selector signature instead of the branded <code>SelectorKey</code> type <a href="https://redirect.github.com/i18next/i18next/issues/2412">2412</a></li> </ul> <h2>25.10.7</h2> <ul> <li>feat(types): support typescript 6 to address <a href="https://redirect.github.com/i18next/react-i18next/issues/1910">i18next/react-i18next#1910</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next/commit/8ea74a97948892400736ee2330d9e6f7224117ad"><code>8ea74a9</code></a> 25.10.9</li> <li><a href="https://github.com/i18next/i18next/commit/74220cce3ff03ca659748dbb00cf72b389bbcbc3"><code>74220cc</code></a> lint fix</li> <li><a href="https://github.com/i18next/i18next/commit/c972af2cd0702c7c5dcc71d8afd9c6b1a68ee1d5"><code>c972af2</code></a> feat(types): export <code>SelectorParam\<Ns, KPrefix></code> helper type — a stable, read...</li> <li><a href="https://github.com/i18next/i18next/commit/2b5313d855a5a77b4eeaa12764e3aa7bbf4f4b3e"><code>2b5313d</code></a> jsr update</li> <li><a href="https://github.com/i18next/i18next/commit/c11655ffb2026c7d8f8904e6ea34c161b209e68f"><code>c11655f</code></a> 25.10.8</li> <li><a href="https://github.com/i18next/i18next/commit/5bb5665ac4486dcf814e32b5ad85c6bc19b36c69"><code>5bb5665</code></a> fix(types): reorder <code>TFunctionSelector</code> overloads so <code>Parameters\<TFunction></code> ...</li> <li><a href="https://github.com/i18next/i18next/commit/db8f9690fed42366617cee08e86d2ff9ab0e3611"><code>db8f969</code></a> jsr update</li> <li><a href="https://github.com/i18next/i18next/commit/3d830d53e251c34fa027379098f23109dade7dc0"><code>3d830d5</code></a> 25.10.7</li> <li><a href="https://github.com/i18next/i18next/commit/f4fbcffe0b752f6240c56f3948df99aa8c507f12"><code>f4fbcff</code></a> fix typo in my last commit</li> <li><a href="https://github.com/i18next/i18next/commit/de33cbdc7bf9f19bd1e25f149d0347c668d68a97"><code>de33cbd</code></a> jsr update</li> <li>Additional commits viewable in <a href="https://github.com/i18next/i18next/compare/v25.10.5...v25.10.9">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
13b96c2589 |
chore(deps): Bump react-i18next from 16.6.2 to 16.6.5 (#1752)
Bumps [react-i18next](https://github.com/i18next/react-i18next) from 16.6.2 to 16.6.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/react-i18next/blob/master/CHANGELOG.md">react-i18next's changelog</a>.</em></p> <blockquote> <h3>16.6.5</h3> <ul> <li>fix(types): selector keyPrefix overload in <code>useTranslation</code> no longer matches when <code>keyPrefix</code> is absent, fixing <code>defaultNS: false</code> with explicit <code>ns</code> option <a href="https://redirect.github.com/i18next/i18next/issues/2412">2412</a></li> </ul> <h3>16.6.4</h3> <ul> <li>allow TypeScript 6 as peer dependency <a href="https://redirect.github.com/i18next/react-i18next/issues/1910">1910</a></li> </ul> <h3>16.6.3</h3> <ul> <li>fix(types): merge <code>TransSelector</code> overloads into a single signature so <code>typeof Trans</code> remains extendable <a href="https://redirect.github.com/i18next/react-i18next/issues/1909">1909</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/react-i18next/commit/9f830e1df1f12e77365579ba0c25a814aa988493"><code>9f830e1</code></a> 16.6.5</li> <li><a href="https://github.com/i18next/react-i18next/commit/9f0005f8585b2132c69f706d6fe4adf6da1d5025"><code>9f0005f</code></a> fix(types): selector keyPrefix overload in <code>useTranslation</code> no longer matches...</li> <li><a href="https://github.com/i18next/react-i18next/commit/f820b806d793f9a5bfe9c79adb6dd52527975cfa"><code>f820b80</code></a> 16.6.4</li> <li><a href="https://github.com/i18next/react-i18next/commit/339aaa20075027965ecbb59babf41b7c02b868a5"><code>339aaa2</code></a> allow TypeScript 6 as peer dependency <a href="https://redirect.github.com/i18next/react-i18next/issues/1910">#1910</a></li> <li><a href="https://github.com/i18next/react-i18next/commit/10912d531d5a6f0089c56f1f4c55bf6b0ffb1bac"><code>10912d5</code></a> 16.6.3</li> <li><a href="https://github.com/i18next/react-i18next/commit/18369a395983c3b387249ca9fecf2403852c8d81"><code>18369a3</code></a> fix <a href="https://redirect.github.com/i18next/react-i18next/issues/1909">#1909</a></li> <li>See full diff in <a href="https://github.com/i18next/react-i18next/compare/v16.6.2...v16.6.5">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
d3ec4e8ec5 |
chore(deps-dev): Bump the vitest group with 2 updates (#1750)
Bumps the vitest group with 2 updates: [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `@vitest/coverage-v8` from 4.1.0 to 4.1.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitest-dev/vitest/releases"><code>@vitest/coverage-v8</code>'s releases</a>.</em></p> <blockquote> <h2>v4.1.1</h2> <h3> 🚀 Features</h3> <ul> <li><strong>experimental</strong>: <ul> <li>Expose <code>matchesTags</code> to test if the current filter matches tags - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9913">vitest-dev/vitest#9913</a> <a href="https://github.com/vitest-dev/vitest/commit/eec53d9f5"><!-- raw HTML omitted -->(eec53)<!-- raw HTML omitted --></a></li> <li>Introduce <code>experimental.vcsProvider</code> - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9928">vitest-dev/vitest#9928</a> <a href="https://github.com/vitest-dev/vitest/commit/561150036"><!-- raw HTML omitted -->(56115)<!-- raw HTML omitted --></a></li> </ul> </li> </ul> <h3> 🐞 Bug Fixes</h3> <ul> <li>Mark <code>TestProject.testFilesList</code> internal properly - by <a href="https://github.com/sapphi-red"><code>@sapphi-red</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9867">vitest-dev/vitest#9867</a> <a href="https://github.com/vitest-dev/vitest/commit/54f2660f5"><!-- raw HTML omitted -->(54f26)<!-- raw HTML omitted --></a></li> <li>Detect fixture that returns without calling <code>use</code> - by <a href="https://github.com/oilater"><code>@oilater</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9831">vitest-dev/vitest#9831</a> and <a href="https://redirect.github.com/vitest-dev/vitest/issues/9861">vitest-dev/vitest#9861</a> <a href="https://github.com/vitest-dev/vitest/commit/633ae2303"><!-- raw HTML omitted -->(633ae)<!-- raw HTML omitted --></a></li> <li>Drop vite 8.beta support - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9862">vitest-dev/vitest#9862</a> <a href="https://github.com/vitest-dev/vitest/commit/b78f5389d"><!-- raw HTML omitted -->(b78f5)<!-- raw HTML omitted --></a></li> <li>Type regression in vi.mocked() static class methods - by <a href="https://github.com/purepear"><code>@purepear</code></a> and <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9857">vitest-dev/vitest#9857</a> <a href="https://github.com/vitest-dev/vitest/commit/90926641b"><!-- raw HTML omitted -->(90926)<!-- raw HTML omitted --></a></li> <li>Properly re-evaluate actual modules of mocked external - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9898">vitest-dev/vitest#9898</a> <a href="https://github.com/vitest-dev/vitest/commit/ae5ec03ef"><!-- raw HTML omitted -->(ae5ec)<!-- raw HTML omitted --></a></li> <li>Preserve coverage report when html reporter overlaps - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9889">vitest-dev/vitest#9889</a> <a href="https://github.com/vitest-dev/vitest/commit/2d81ad897"><!-- raw HTML omitted -->(2d81a)<!-- raw HTML omitted --></a></li> <li>Provide <code>vi.advanceTimers</code> to the preview provider - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9891">vitest-dev/vitest#9891</a> <a href="https://github.com/vitest-dev/vitest/commit/1bc3e63be"><!-- raw HTML omitted -->(1bc3e)<!-- raw HTML omitted --></a></li> <li>Don't leak event listener in playwright provider - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9910">vitest-dev/vitest#9910</a> <a href="https://github.com/vitest-dev/vitest/commit/d93550ff7"><!-- raw HTML omitted -->(d9355)<!-- raw HTML omitted --></a></li> <li>Open browser in <code>--standalone</code> mode without running tests - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9911">vitest-dev/vitest#9911</a> <a href="https://github.com/vitest-dev/vitest/commit/e78adcf97"><!-- raw HTML omitted -->(e78ad)<!-- raw HTML omitted --></a></li> <li>Guard disposable and optional <code>body</code> - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9912">vitest-dev/vitest#9912</a> <a href="https://github.com/vitest-dev/vitest/commit/6fdb2ba61"><!-- raw HTML omitted -->(6fdb2)<!-- raw HTML omitted --></a></li> <li>Resolve <code>retry.condition</code> RegExp serialization issue - by <a href="https://github.com/nstepien"><code>@nstepien</code></a> and <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9942">vitest-dev/vitest#9942</a> <a href="https://github.com/vitest-dev/vitest/commit/7b6054328"><!-- raw HTML omitted -->(7b605)<!-- raw HTML omitted --></a></li> <li><strong>collect</strong>: <ul> <li>Don't treat extra props on <code>test</code> return as tests - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9871">vitest-dev/vitest#9871</a> <a href="https://github.com/vitest-dev/vitest/commit/141e72aa1"><!-- raw HTML omitted -->(141e7)<!-- raw HTML omitted --></a></li> </ul> </li> <li><strong>coverage</strong>: <ul> <li>Simplify provider types - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9931">vitest-dev/vitest#9931</a> <a href="https://github.com/vitest-dev/vitest/commit/aaf9f18ae"><!-- raw HTML omitted -->(aaf9f)<!-- raw HTML omitted --></a></li> <li>Load built-in provider without module runner - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9939">vitest-dev/vitest#9939</a> <a href="https://github.com/vitest-dev/vitest/commit/bf8920817"><!-- raw HTML omitted -->(bf892)<!-- raw HTML omitted --></a></li> </ul> </li> <li><strong>expect</strong>: <ul> <li>Soft assertions continue after .resolves/.rejects promise errors - by <a href="https://github.com/mixelburg"><code>@mixelburg</code></a>, <strong>Maks Pikov</strong>, <strong>Claude Opus 4.6 (1M context)</strong> and <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9843">vitest-dev/vitest#9843</a> <a href="https://github.com/vitest-dev/vitest/commit/6d74b4948"><!-- raw HTML omitted -->(6d74b)<!-- raw HTML omitted --></a></li> <li>Fix sinon-chai style API - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9943">vitest-dev/vitest#9943</a> <a href="https://github.com/vitest-dev/vitest/commit/0f08dda2c"><!-- raw HTML omitted -->(0f08d)<!-- raw HTML omitted --></a></li> </ul> </li> <li><strong>pretty-format</strong>: <ul> <li>Limit output for large object - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> and <strong>Claude Opus 4.6 (1M context)</strong> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9949">vitest-dev/vitest#9949</a> <a href="https://github.com/vitest-dev/vitest/commit/0d5f9d6ef"><!-- raw HTML omitted -->(0d5f9)<!-- raw HTML omitted --></a></li> </ul> </li> </ul> <h5> <a href="https://github.com/vitest-dev/vitest/compare/v4.1.0...v4.1.1">View changes on GitHub</a></h5> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitest-dev/vitest/commit/1f2d318493363855b66a22caaf7c1c10579029d5"><code>1f2d318</code></a> chore: release v4.1.1</li> <li><a href="https://github.com/vitest-dev/vitest/commit/aaf9f18ae70e52b6e67aaf85f7f784d9dabd0acc"><code>aaf9f18</code></a> fix(coverage): simplify provider types (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8/issues/9931">#9931</a>)</li> <li>See full diff in <a href="https://github.com/vitest-dev/vitest/commits/v4.1.1/packages/coverage-v8">compare view</a></li> </ul> </details> <br /> Updates `vitest` from 4.1.0 to 4.1.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitest-dev/vitest/releases">vitest's releases</a>.</em></p> <blockquote> <h2>v4.1.1</h2> <h3> 🚀 Features</h3> <ul> <li><strong>experimental</strong>: <ul> <li>Expose <code>matchesTags</code> to test if the current filter matches tags - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9913">vitest-dev/vitest#9913</a> <a href="https://github.com/vitest-dev/vitest/commit/eec53d9f5"><!-- raw HTML omitted -->(eec53)<!-- raw HTML omitted --></a></li> <li>Introduce <code>experimental.vcsProvider</code> - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9928">vitest-dev/vitest#9928</a> <a href="https://github.com/vitest-dev/vitest/commit/561150036"><!-- raw HTML omitted -->(56115)<!-- raw HTML omitted --></a></li> </ul> </li> </ul> <h3> 🐞 Bug Fixes</h3> <ul> <li>Mark <code>TestProject.testFilesList</code> internal properly - by <a href="https://github.com/sapphi-red"><code>@sapphi-red</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9867">vitest-dev/vitest#9867</a> <a href="https://github.com/vitest-dev/vitest/commit/54f2660f5"><!-- raw HTML omitted -->(54f26)<!-- raw HTML omitted --></a></li> <li>Detect fixture that returns without calling <code>use</code> - by <a href="https://github.com/oilater"><code>@oilater</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9831">vitest-dev/vitest#9831</a> and <a href="https://redirect.github.com/vitest-dev/vitest/issues/9861">vitest-dev/vitest#9861</a> <a href="https://github.com/vitest-dev/vitest/commit/633ae2303"><!-- raw HTML omitted -->(633ae)<!-- raw HTML omitted --></a></li> <li>Drop vite 8.beta support - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9862">vitest-dev/vitest#9862</a> <a href="https://github.com/vitest-dev/vitest/commit/b78f5389d"><!-- raw HTML omitted -->(b78f5)<!-- raw HTML omitted --></a></li> <li>Type regression in vi.mocked() static class methods - by <a href="https://github.com/purepear"><code>@purepear</code></a> and <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9857">vitest-dev/vitest#9857</a> <a href="https://github.com/vitest-dev/vitest/commit/90926641b"><!-- raw HTML omitted -->(90926)<!-- raw HTML omitted --></a></li> <li>Properly re-evaluate actual modules of mocked external - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9898">vitest-dev/vitest#9898</a> <a href="https://github.com/vitest-dev/vitest/commit/ae5ec03ef"><!-- raw HTML omitted -->(ae5ec)<!-- raw HTML omitted --></a></li> <li>Preserve coverage report when html reporter overlaps - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9889">vitest-dev/vitest#9889</a> <a href="https://github.com/vitest-dev/vitest/commit/2d81ad897"><!-- raw HTML omitted -->(2d81a)<!-- raw HTML omitted --></a></li> <li>Provide <code>vi.advanceTimers</code> to the preview provider - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9891">vitest-dev/vitest#9891</a> <a href="https://github.com/vitest-dev/vitest/commit/1bc3e63be"><!-- raw HTML omitted -->(1bc3e)<!-- raw HTML omitted --></a></li> <li>Don't leak event listener in playwright provider - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9910">vitest-dev/vitest#9910</a> <a href="https://github.com/vitest-dev/vitest/commit/d93550ff7"><!-- raw HTML omitted -->(d9355)<!-- raw HTML omitted --></a></li> <li>Open browser in <code>--standalone</code> mode without running tests - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9911">vitest-dev/vitest#9911</a> <a href="https://github.com/vitest-dev/vitest/commit/e78adcf97"><!-- raw HTML omitted -->(e78ad)<!-- raw HTML omitted --></a></li> <li>Guard disposable and optional <code>body</code> - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9912">vitest-dev/vitest#9912</a> <a href="https://github.com/vitest-dev/vitest/commit/6fdb2ba61"><!-- raw HTML omitted -->(6fdb2)<!-- raw HTML omitted --></a></li> <li>Resolve <code>retry.condition</code> RegExp serialization issue - by <a href="https://github.com/nstepien"><code>@nstepien</code></a> and <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9942">vitest-dev/vitest#9942</a> <a href="https://github.com/vitest-dev/vitest/commit/7b6054328"><!-- raw HTML omitted -->(7b605)<!-- raw HTML omitted --></a></li> <li><strong>collect</strong>: <ul> <li>Don't treat extra props on <code>test</code> return as tests - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9871">vitest-dev/vitest#9871</a> <a href="https://github.com/vitest-dev/vitest/commit/141e72aa1"><!-- raw HTML omitted -->(141e7)<!-- raw HTML omitted --></a></li> </ul> </li> <li><strong>coverage</strong>: <ul> <li>Simplify provider types - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9931">vitest-dev/vitest#9931</a> <a href="https://github.com/vitest-dev/vitest/commit/aaf9f18ae"><!-- raw HTML omitted -->(aaf9f)<!-- raw HTML omitted --></a></li> <li>Load built-in provider without module runner - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9939">vitest-dev/vitest#9939</a> <a href="https://github.com/vitest-dev/vitest/commit/bf8920817"><!-- raw HTML omitted -->(bf892)<!-- raw HTML omitted --></a></li> </ul> </li> <li><strong>expect</strong>: <ul> <li>Soft assertions continue after .resolves/.rejects promise errors - by <a href="https://github.com/mixelburg"><code>@mixelburg</code></a>, <strong>Maks Pikov</strong>, <strong>Claude Opus 4.6 (1M context)</strong> and <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9843">vitest-dev/vitest#9843</a> <a href="https://github.com/vitest-dev/vitest/commit/6d74b4948"><!-- raw HTML omitted -->(6d74b)<!-- raw HTML omitted --></a></li> <li>Fix sinon-chai style API - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9943">vitest-dev/vitest#9943</a> <a href="https://github.com/vitest-dev/vitest/commit/0f08dda2c"><!-- raw HTML omitted -->(0f08d)<!-- raw HTML omitted --></a></li> </ul> </li> <li><strong>pretty-format</strong>: <ul> <li>Limit output for large object - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> and <strong>Claude Opus 4.6 (1M context)</strong> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/9949">vitest-dev/vitest#9949</a> <a href="https://github.com/vitest-dev/vitest/commit/0d5f9d6ef"><!-- raw HTML omitted -->(0d5f9)<!-- raw HTML omitted --></a></li> </ul> </li> </ul> <h5> <a href="https://github.com/vitest-dev/vitest/compare/v4.1.0...v4.1.1">View changes on GitHub</a></h5> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitest-dev/vitest/commit/1f2d318493363855b66a22caaf7c1c10579029d5"><code>1f2d318</code></a> chore: release v4.1.1</li> <li><a href="https://github.com/vitest-dev/vitest/commit/ebfde798fbaeeb1fc7542d734dff216f39272201"><code>ebfde79</code></a> refactor: rename <code>matchesTagsFilter</code> to <code>matchesTags</code> (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9956">#9956</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/561150036f5784039020b1c1e767e78e1088e16c"><code>5611500</code></a> feat(experimental): introduce <code>experimental.vcsProvider</code> (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9928">#9928</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/eec53d9f592717ebb6febec517bbc1d1f2af250a"><code>eec53d9</code></a> feat(experimental): expose <code>matchesTagsFilter</code> to test if the current filter ...</li> <li><a href="https://github.com/vitest-dev/vitest/commit/bf89208177e65af72cdc1e4db85c8200cf6c2721"><code>bf89208</code></a> fix(coverage): load built-in provider without module runner (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9939">#9939</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/5a6086856e76d908dee8aa0b6a702e242db3ef62"><code>5a60868</code></a> refactor: fix typos (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9950">#9950</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/aaf9f18ae70e52b6e67aaf85f7f784d9dabd0acc"><code>aaf9f18</code></a> fix(coverage): simplify provider types (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9931">#9931</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/6fdb2ba614bc654d0b48f49bc153778b5d12f4b3"><code>6fdb2ba</code></a> fix: guard disposable and optional <code>body</code> (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9912">#9912</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/e78adcf9761bb2d1634f77b007fca43b34637ac9"><code>e78adcf</code></a> fix: open browser in <code>--standalone</code> mode without running tests (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9911">#9911</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/ae5ec03ef98097aed2851f287a76d595582fe578"><code>ae5ec03</code></a> fix: properly re-evaluate actual modules of mocked external (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9898">#9898</a>)</li> <li>Additional commits viewable in <a href="https://github.com/vitest-dev/vitest/commits/v4.1.1/packages/vitest">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
94668bebea |
chore(deps-dev): Bump handlebars from 4.7.8 to 4.7.9 (#1749)
Bumps [handlebars](https://github.com/handlebars-lang/handlebars.js) from 4.7.8 to 4.7.9. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/handlebars-lang/handlebars.js/releases">handlebars's releases</a>.</em></p> <blockquote> <h2>v4.7.9</h2> <ul> <li>fix: enable shell mode for spawn to resolve Windows EINVAL issue - e0137c2</li> <li>fix type "RuntimeOptions" also accepting string partials - eab1d14</li> <li>feat(types): set <code>hash</code> to be a <code>Record<string, any></code> - de4414d</li> <li>fix non-contiguous program indices - 4512766</li> <li>refactor: rename i to startPartIndex - e497a35</li> <li>security: fix security issues - 68d8df5 <ul> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-2w6w-674q-4c4q">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-2w6w-674q-4c4q</a></li> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-3mfm-83xf-c92r">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-3mfm-83xf-c92r</a></li> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-xhpv-hc6g-r9c6">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-xhpv-hc6g-r9c6</a></li> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-xjpj-3mr7-gcpf">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-xjpj-3mr7-gcpf</a></li> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-9cx6-37pm-9jff">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-9cx6-37pm-9jff</a></li> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-2qvq-rjwj-gvw9">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-2qvq-rjwj-gvw9</a></li> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-7rx3-28cr-v5wh">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-7rx3-28cr-v5wh</a></li> <li><a href="https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-442j-39wm-28r2">https://github.com/handlebars-lang/handlebars.js/security/advisories/GHSA-442j-39wm-28r2</a></li> </ul> </li> </ul> <p><a href="https://github.com/handlebars-lang/handlebars.js/compare/v4.7.8...v4.7.9">Commits</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/handlebars-lang/handlebars.js/blob/v4.7.9/release-notes.md">handlebars's changelog</a>.</em></p> <blockquote> <h2>v4.7.9 - March 26th, 2026</h2> <ul> <li>fix: enable shell mode for spawn to resolve Windows EINVAL issue - e0137c2</li> <li>fix type "RuntimeOptions" also accepting string partials - eab1d14</li> <li>feat(types): set <code>hash</code> to be a <code>Record<string, any></code> - de4414d</li> <li>fix non-contiguous program indices - 4512766</li> <li>refactor: rename i to startPartIndex - e497a35</li> <li>security: fix security issues - 68d8df5</li> </ul> <p><a href="https://github.com/handlebars-lang/handlebars.js/compare/v4.7.8...v4.7.9">Commits</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/dce542c9a660048d31f0981ac8a45c08b919bddb"><code>dce542c</code></a> v4.7.9</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/8a41389ba5b2624b6f43a5463d8e2533b843a562"><code>8a41389</code></a> Update release notes</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/68d8df5a88e0a26fe9e6084c5c6aaebe67b07da2"><code>68d8df5</code></a> Fix security issues</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/b2a083136b11e1da9f0f47a11f749a9830a49328"><code>b2a0831</code></a> Fix browser tests</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/9f98c1629834abf8de5a127caff8a2eab03d2c12"><code>9f98c16</code></a> Fix release script</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/45443b4290475dfb7cec32a85d344f12ab345eb9"><code>45443b4</code></a> Revert "Improve partial indenting performance"</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/8841a5f6d35096aee95d68e1e49636a4cb5c661e"><code>8841a5f</code></a> Fix CI errors with linting</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/e0137c26f2202593bca7cc25184e733e87d54709"><code>e0137c2</code></a> fix: enable shell mode for spawn to resolve Windows EINVAL issue</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/e914d6037ffb0dd371f7e4823cdb019732ae66d7"><code>e914d60</code></a> Improve rendering performance</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/7de4b41c344a5d702edca93d1841b59642fa32bd"><code>7de4b41</code></a> Upgrade GitHub Actions checkout and setup-node on 4.x branch</li> <li>Additional commits viewable in <a href="https://github.com/handlebars-lang/handlebars.js/compare/v4.7.8...v4.7.9">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/maputnik/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
a681608641 |
chore(deps): Bump react-i18next from 16.6.1 to 16.6.2 (#1747)
Bumps [react-i18next](https://github.com/i18next/react-i18next) from 16.6.1 to 16.6.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/react-i18next/blob/master/CHANGELOG.md">react-i18next's changelog</a>.</em></p> <blockquote> <h3>16.6.2</h3> <ul> <li>feat(types): <code>useTranslation</code> now accepts selector functions as <code>keyPrefix</code> with full type-safe key narrowing when <code>enableSelector</code> is enabled <a href="https://redirect.github.com/i18next/i18next/issues/2367">2367</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/react-i18next/commit/5190452b9954915a5e62dde6ed8b0ee5591fe8ac"><code>5190452</code></a> 16.6.2</li> <li><a href="https://github.com/i18next/react-i18next/commit/598dd8e0d7c9bf3b20d903acbb46cfa5302f9d26"><code>598dd8e</code></a> address: <a href="https://redirect.github.com/i18next/i18next/issues/2367">i18next/i18next#2367</a></li> <li>See full diff in <a href="https://github.com/i18next/react-i18next/compare/v16.6.1...v16.6.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
f5dd1e4039 |
chore(deps): Bump @mapbox/mapbox-gl-rtl-text from 0.3.0 to 0.4.0 (#1748)
Bumps [@mapbox/mapbox-gl-rtl-text](https://github.com/mapbox/mapbox-gl-rtl-text) from 0.3.0 to 0.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mapbox/mapbox-gl-rtl-text/releases"><code>@mapbox/mapbox-gl-rtl-text</code>'s releases</a>.</em></p> <blockquote> <h2>v0.4.0</h2> <ul> <li>Modernized the code <a href="https://redirect.github.com/mapbox/mapbox-gl-rtl-text/issues/38">#38</a>: <ul> <li>Reduced plugin bundle size by ~15%</li> <li>Significantly reduced memory usage (from 16 MB to 256 kB)</li> <li>Improved performance by reducing small allocations</li> <li>Modernized development tooling</li> </ul> </li> <li>Fixed a bug with empty text handling (h/t <a href="https://github.com/Omkarthipparthi"><code>@Omkarthipparthi</code></a> <a href="https://redirect.github.com/mapbox/mapbox-gl-rtl-text/issues/36">#36</a>)</li> </ul> <p>⚠️ This is the last version distributed as single UMD file. The next one will be released as a combination of a tiny ESM JS bundle and a separate WASM file.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mapbox/mapbox-gl-rtl-text/commit/cf49b7dceb39066db3af02c46cb33e06768bfc99"><code>cf49b7d</code></a> 0.4.0</li> <li><a href="https://github.com/mapbox/mapbox-gl-rtl-text/commit/86ad838ba099772394aa1242205ccb9f2644fdf9"><code>86ad838</code></a> Optimize memory usage, modernize & simplify tooling (<a href="https://redirect.github.com/mapbox/mapbox-gl-rtl-text/issues/38">#38</a>)</li> <li><a href="https://github.com/mapbox/mapbox-gl-rtl-text/commit/ad0f8bc14f607a01fe61425dab4d75341924c10c"><code>ad0f8bc</code></a> Add test for empty text handling in styled bidirectional processing (<a href="https://redirect.github.com/mapbox/mapbox-gl-rtl-text/issues/36">#36</a>)</li> <li><a href="https://github.com/mapbox/mapbox-gl-rtl-text/commit/1f9e4ea847cf0fe87cd37170eb3e218eba03a885"><code>1f9e4ea</code></a> Create codeql-analysis.yml</li> <li><a href="https://github.com/mapbox/mapbox-gl-rtl-text/commit/800d8d7803a395c3986b2d67db8e9800e4eb2bcc"><code>800d8d7</code></a> SECANDCOMP-1321: deleting CodeQL across the org; will be replaced with Prisma...</li> <li>See full diff in <a href="https://github.com/mapbox/mapbox-gl-rtl-text/compare/v0.3.0...v0.4.0">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mbx-npm-07-production">mbx-npm-07-production</a>, a new releaser for <code>@mapbox/mapbox-gl-rtl-text</code> since your current version.</p> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
7568f67180 |
chore(deps): Bump i18next from 25.10.4 to 25.10.5 (#1746)
[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [i18next](https://github.com/i18next/i18next) from 25.10.4 to 25.10.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/releases">i18next's releases</a>.</em></p> <blockquote> <h2>v25.10.5</h2> <ul> <li>feat(types): selector functions as <code>keyPrefix</code> in <code>getFixedT</code> now provide full type-safe key narrowing — the returned <code>t</code> function is scoped to the prefix subtree <a href="https://redirect.github.com/i18next/i18next/issues/2367">2367</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md">i18next's changelog</a>.</em></p> <blockquote> <h2>25.10.5</h2> <ul> <li>feat(types): selector functions as <code>keyPrefix</code> in <code>getFixedT</code> now provide full type-safe key narrowing — the returned <code>t</code> function is scoped to the prefix subtree <a href="https://redirect.github.com/i18next/i18next/issues/2367">2367</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next/commit/83230b8f485b416931cbb8a2a0b6bc9290eaff66"><code>83230b8</code></a> 25.10.5</li> <li><a href="https://github.com/i18next/i18next/commit/79aa4d624510004bd45f6277f967d248a53921a4"><code>79aa4d6</code></a> address <a href="https://redirect.github.com/i18next/i18next/issues/2367">#2367</a></li> <li><a href="https://github.com/i18next/i18next/commit/06f4ef70f242be8fa207f274f7fcadc3bd4d6457"><code>06f4ef7</code></a> address <a href="https://redirect.github.com/i18next/i18next/issues/2367">#2367</a></li> <li><a href="https://github.com/i18next/i18next/commit/7902915328a899a6dc7680cc2563631b315ec8bc"><code>7902915</code></a> fix changelog</li> <li><a href="https://github.com/i18next/i18next/commit/640ae9a2b2d8d3291889ce1576b43fffbfb874ee"><code>640ae9a</code></a> jsr update</li> <li>See full diff in <a href="https://github.com/i18next/i18next/compare/v25.10.4...v25.10.5">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
76144ed5e4 |
chore(deps): Bump EndBug/version-check from 2 to 3 (#1745)
Bumps [EndBug/version-check](https://github.com/endbug/version-check) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/endbug/version-check/releases">EndBug/version-check's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <h2>What's Changed</h2> <ul> <li>chore(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/EndBug/version-check/pull/317">EndBug/version-check#317</a></li> <li>chore(deps-dev): bump lodash from 4.17.21 to 4.17.23 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/EndBug/version-check/pull/318">EndBug/version-check#318</a></li> <li>chore(deps): bump minimatch, <code>@typescript-eslint/eslint-plugin</code> and <code>@typescript-eslint/parser</code> by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/EndBug/version-check/pull/319">EndBug/version-check#319</a></li> <li>chore(deps-dev): bump flatted from 3.1.1 to 3.4.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/EndBug/version-check/pull/321">EndBug/version-check#321</a></li> <li>updated node version, actions versions and dependencies by <a href="https://github.com/Tpleme"><code>@Tpleme</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/320">EndBug/version-check#320</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/EndBug/version-check/compare/v2.1.7...v3.0.0">https://github.com/EndBug/version-check/compare/v2.1.7...v3.0.0</a></p> <h2>v2.1.7</h2> <h2>What's Changed</h2> <ul> <li>docs: add guillaume-docquier-vention as a contributor for bug by <a href="https://github.com/allcontributors"><code>@allcontributors</code></a>[bot] in <a href="https://redirect.github.com/EndBug/version-check/pull/316">EndBug/version-check#316</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/EndBug/version-check/compare/v2.1.6...v2.1.7">https://github.com/EndBug/version-check/compare/v2.1.6...v2.1.7</a></p> <h2>v2.1.6</h2> <h2>What's Changed</h2> <ul> <li>docs: add patrickschroeter as a contributor for bug by <a href="https://github.com/allcontributors"><code>@allcontributors</code></a>[bot] in <a href="https://redirect.github.com/EndBug/version-check/pull/314">EndBug/version-check#314</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/EndBug/version-check/compare/v2.1.5...v2.1.6">https://github.com/EndBug/version-check/compare/v2.1.5...v2.1.6</a></p> <h2>v2.1.5</h2> <h2>What's Changed</h2> <ul> <li>chore(deps-dev): bump typescript from 5.4.3 to 5.4.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/286">EndBug/version-check#286</a></li> <li>chore(deps-dev): bump braces from 3.0.2 to 3.0.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/292">EndBug/version-check#292</a></li> <li>chore(deps-dev): bump prettier from 3.2.5 to 3.3.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/295">EndBug/version-check#295</a></li> <li>chore(deps-dev): bump eslint-plugin-prettier from 5.1.3 to 5.2.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/297">EndBug/version-check#297</a></li> <li>chore(deps-dev): bump prettier from 3.3.2 to 3.3.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/300">EndBug/version-check#300</a></li> <li>chore(deps-dev): bump husky from 9.0.11 to 9.1.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/299">EndBug/version-check#299</a></li> <li>chore(deps-dev): bump husky from 9.1.4 to 9.1.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/302">EndBug/version-check#302</a></li> <li>chore(deps-dev): bump husky from 9.1.5 to 9.1.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/307">EndBug/version-check#307</a></li> <li>chore(deps-dev): bump <code>@vercel/ncc</code> from 0.38.1 to 0.38.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/305">EndBug/version-check#305</a></li> <li>Send token in readJson if using raw github url as file-url by <a href="https://github.com/christulin"><code>@christulin</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/283">EndBug/version-check#283</a></li> <li>docs: add christulin as a contributor for code by <a href="https://github.com/allcontributors"><code>@allcontributors</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/308">EndBug/version-check#308</a></li> <li>docs: add khurrambilalaurecon as a contributor for bug by <a href="https://github.com/allcontributors"><code>@allcontributors</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/309">EndBug/version-check#309</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/christulin"><code>@christulin</code></a> made their first contribution in <a href="https://redirect.github.com/EndBug/version-check/pull/283">EndBug/version-check#283</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/EndBug/version-check/compare/v2.1.4...v2.1.5">https://github.com/EndBug/version-check/compare/v2.1.4...v2.1.5</a></p> <h2>v2.1.4</h2> <h2>What's Changed</h2> <ul> <li>chore(deps-dev): bump husky from 8.0.3 to 9.0.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/271">EndBug/version-check#271</a></li> <li>chore(deps-dev): bump <code>@typescript-eslint/parser</code> from 6.16.0 to 6.20.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/273">EndBug/version-check#273</a></li> <li>chore(deps-dev): bump prettier from 3.1.1 to 3.2.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/EndBug/version-check/pull/272">EndBug/version-check#272</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/EndBug/version-check/commit/095362f3cd50f690c8fa0e6afeea81834bd8d320"><code>095362f</code></a> 3.0.0</li> <li><a href="https://github.com/EndBug/version-check/commit/d972a82eaee283aa7cd4a83bdf82418284c3d385"><code>d972a82</code></a> docs: prepare for v3</li> <li><a href="https://github.com/EndBug/version-check/commit/f6af013a5b790a04a20b131b3eb531e4aeb5730d"><code>f6af013</code></a> chore!: updated node version, actions versions and dependencies (<a href="https://redirect.github.com/endbug/version-check/issues/320">#320</a>)</li> <li><a href="https://github.com/EndBug/version-check/commit/0ce27ab3bb2959b20a243b2d2efd3f2ca7befa11"><code>0ce27ab</code></a> chore(deps-dev): bump flatted from 3.1.1 to 3.4.2 (<a href="https://redirect.github.com/endbug/version-check/issues/321">#321</a>)</li> <li><a href="https://github.com/EndBug/version-check/commit/64e0bcf20c144430d86339e527034ff8399c7d53"><code>64e0bcf</code></a> [auto] build: update compiled version</li> <li><a href="https://github.com/EndBug/version-check/commit/21adeec490acaf0d816aceedace4c605016352b9"><code>21adeec</code></a> chore(deps): bump minimatch, <code>@typescript-eslint/eslint-plugin</code> and <a href="https://github.com/typescript"><code>@typescript</code></a>...</li> <li><a href="https://github.com/EndBug/version-check/commit/75936fdb6cc2b3d6a95c4283dd534402f74b0347"><code>75936fd</code></a> chore(deps-dev): bump lodash from 4.17.21 to 4.17.23 (<a href="https://redirect.github.com/endbug/version-check/issues/318">#318</a>)</li> <li><a href="https://github.com/EndBug/version-check/commit/a4db3dc8368cb5e052fd2976b5984ca9ef69fa25"><code>a4db3dc</code></a> chore(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 (<a href="https://redirect.github.com/endbug/version-check/issues/317">#317</a>)</li> <li>See full diff in <a href="https://github.com/endbug/version-check/compare/d17247dd94ca7b39d0b0691399be8d7c510622c9...095362f3cd50f690c8fa0e6afeea81834bd8d320">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
d2b0c4cabf |
chore(deps-dev): Bump i18next-cli from 1.50.3 to 1.50.4 (#1744)
Bumps [i18next-cli](https://github.com/i18next/i18next-cli) from 1.50.3 to 1.50.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md">i18next-cli's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.3...v1.50.4">1.50.4</a> - 2026-03-22</h2> <ul> <li>Fix namespaces containing spaces (e.g. <code>useTranslation(['Generic category'])</code> or <code>{ ns: 'Example two' }</code>) being incorrectly rejected by the natural-language heuristic and merged back into the key. The check now only applies when the namespace was derived from splitting a key string by <code>nsSeparator</code>, not when it was explicitly provided. Fixes <a href="https://redirect.github.com/i18next/i18next-cli/issues/221">#221</a>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next-cli/commit/4ff748e26f85fe833deec27bdfbbc8b6d5c9fa13"><code>4ff748e</code></a> 1.50.4</li> <li><a href="https://github.com/i18next/i18next-cli/commit/5691e24b5cdab6122da3af3848367f902bb089e0"><code>5691e24</code></a> Fix namespaces containing spaces <a href="https://redirect.github.com/i18next/i18next-cli/issues/221">#221</a></li> <li>See full diff in <a href="https://github.com/i18next/i18next-cli/compare/v1.50.3...v1.50.4">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
9a3f90cb25 |
chore(deps): Bump picomatch (#1743)
Bumps and [picomatch](https://github.com/micromatch/picomatch). These dependencies needed to be updated together. Updates `picomatch` from 4.0.3 to 4.0.4 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/micromatch/picomatch/releases">picomatch's releases</a>.</em></p> <blockquote> <h2>4.0.4</h2> <p>This is a security release fixing several security relevant issues.</p> <h2>What's Changed</h2> <ul> <li>Fix for <a href="https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj">CVE-2026-33671</a></li> <li>Fix for <a href="https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p">CVE-2026-33672</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4">https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/micromatch/picomatch/commit/e5474fc1a4d7991870058170407dda8a42be5334"><code>e5474fc</code></a> Publish 4.0.4</li> <li><a href="https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903"><code>4516eb5</code></a> Merge commit from fork</li> <li><a href="https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d"><code>5eceecd</code></a> Merge commit from fork</li> <li><a href="https://github.com/micromatch/picomatch/commit/0db7dd70651ca7c8265601c0442a996ed32e3238"><code>0db7dd7</code></a> Run benchmark again against latest minimatch version (<a href="https://redirect.github.com/micromatch/picomatch/issues/161">#161</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/95003777eb1c60dec09495a8231fa2ba4054d76a"><code>9500377</code></a> docs: clarify what brace expansion syntax is and isn't supported (<a href="https://redirect.github.com/micromatch/picomatch/issues/134">#134</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/2661f23eca86c8b4a2b14815b9b2b3b74bd5a171"><code>2661f23</code></a> fix typo in globstars.js test name (<a href="https://redirect.github.com/micromatch/picomatch/issues/138">#138</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/1798b07e9df59500b9cf567294d44d559032f4c7"><code>1798b07</code></a> docs: fix <code>makeRe</code> example (<a href="https://redirect.github.com/micromatch/picomatch/issues/143">#143</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/9d76bc57a03b7f57cc4ca516c8071daf632bafd8"><code>9d76bc5</code></a> chore: undocument removed options (<a href="https://redirect.github.com/micromatch/picomatch/issues/146">#146</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/e4d718bbfb47e4f030ab2612b5b04a9297fe272d"><code>e4d718b</code></a> Remove unused time-require (<a href="https://redirect.github.com/micromatch/picomatch/issues/160">#160</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/38dffeb16221cc8eb8981524fb6895dd2aaaba76"><code>38dffeb</code></a> chore(deps): pin dependencies (<a href="https://redirect.github.com/micromatch/picomatch/issues/158">#158</a>)</li> <li>Additional commits viewable in <a href="https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4">compare view</a></li> </ul> </details> <br /> Updates `picomatch` from 2.3.1 to 2.3.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/micromatch/picomatch/releases">picomatch's releases</a>.</em></p> <blockquote> <h2>4.0.4</h2> <p>This is a security release fixing several security relevant issues.</p> <h2>What's Changed</h2> <ul> <li>Fix for <a href="https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj">CVE-2026-33671</a></li> <li>Fix for <a href="https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p">CVE-2026-33672</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4">https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/micromatch/picomatch/commit/e5474fc1a4d7991870058170407dda8a42be5334"><code>e5474fc</code></a> Publish 4.0.4</li> <li><a href="https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903"><code>4516eb5</code></a> Merge commit from fork</li> <li><a href="https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d"><code>5eceecd</code></a> Merge commit from fork</li> <li><a href="https://github.com/micromatch/picomatch/commit/0db7dd70651ca7c8265601c0442a996ed32e3238"><code>0db7dd7</code></a> Run benchmark again against latest minimatch version (<a href="https://redirect.github.com/micromatch/picomatch/issues/161">#161</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/95003777eb1c60dec09495a8231fa2ba4054d76a"><code>9500377</code></a> docs: clarify what brace expansion syntax is and isn't supported (<a href="https://redirect.github.com/micromatch/picomatch/issues/134">#134</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/2661f23eca86c8b4a2b14815b9b2b3b74bd5a171"><code>2661f23</code></a> fix typo in globstars.js test name (<a href="https://redirect.github.com/micromatch/picomatch/issues/138">#138</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/1798b07e9df59500b9cf567294d44d559032f4c7"><code>1798b07</code></a> docs: fix <code>makeRe</code> example (<a href="https://redirect.github.com/micromatch/picomatch/issues/143">#143</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/9d76bc57a03b7f57cc4ca516c8071daf632bafd8"><code>9d76bc5</code></a> chore: undocument removed options (<a href="https://redirect.github.com/micromatch/picomatch/issues/146">#146</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/e4d718bbfb47e4f030ab2612b5b04a9297fe272d"><code>e4d718b</code></a> Remove unused time-require (<a href="https://redirect.github.com/micromatch/picomatch/issues/160">#160</a>)</li> <li><a href="https://github.com/micromatch/picomatch/commit/38dffeb16221cc8eb8981524fb6895dd2aaaba76"><code>38dffeb</code></a> chore(deps): pin dependencies (<a href="https://redirect.github.com/micromatch/picomatch/issues/158">#158</a>)</li> <li>Additional commits viewable in <a href="https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/maputnik/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
9a5356b428 |
chore(deps): Bump react-i18next from 16.5.8 to 16.6.1 (#1742)
Bumps [react-i18next](https://github.com/i18next/react-i18next) from 16.5.8 to 16.6.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/react-i18next/blob/master/CHANGELOG.md">react-i18next's changelog</a>.</em></p> <blockquote> <h3>16.6.1</h3> <ul> <li>feat(types): i18nKey of <code><Trans i18nKey={sk} /></code> to accept a <code>SelectorKey</code> <a href="https://redirect.github.com/i18next/i18next/issues/2364">2364</a></li> </ul> <h3>16.6.0</h3> <ul> <li>warn when <code>t</code> is called before <code>ready</code> with <code>useSuspense: false</code> <a href="https://redirect.github.com/i18next/react-i18next/issues/1896">1896</a></li> <li>type-safe <code>values</code> prop on <code><Trans /></code> component — interpolation variables are now inferred from the translation string when custom types are configured <a href="https://redirect.github.com/i18next/react-i18next/issues/1772">1772</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/react-i18next/commit/683156b25cd7bb94be4132b96b73fe27562ba618"><code>683156b</code></a> 16.6.1</li> <li><a href="https://github.com/i18next/react-i18next/commit/723d84bbcbc152f3b2e07f3aa704859978860335"><code>723d84b</code></a> feat(types): i18nKey of <code>\<Trans i18nKey={sk} /></code> to accept a <code>SelectorKey</code></li> <li><a href="https://github.com/i18next/react-i18next/commit/5c9f9f04e2ac665f2575c2bc7f783a368ab83c52"><code>5c9f9f0</code></a> update i18next dep</li> <li><a href="https://github.com/i18next/react-i18next/commit/3a68a0bcc0a61fc21cec8762acdfcab9025d9ba4"><code>3a68a0b</code></a> 16.6.0</li> <li><a href="https://github.com/i18next/react-i18next/commit/87eac5f84b79819fb268ee936fe9d9e282c6543f"><code>87eac5f</code></a> type-safe <code>values</code> prop on <code>\<Trans /></code> component — interpolation variables ar...</li> <li><a href="https://github.com/i18next/react-i18next/commit/522885581d57ea481a40bce22239d550aaa3f426"><code>5228855</code></a> warn when <code>t</code> is called before <code>ready</code> with <code>useSuspense: false</code> <a href="https://redirect.github.com/i18next/react-i18next/issues/1896">#1896</a></li> <li><a href="https://github.com/i18next/react-i18next/commit/a75ef78d50ba4643575c2d0f48e73d6e2d9961dc"><code>a75ef78</code></a> update deps and adjust tests</li> <li>See full diff in <a href="https://github.com/i18next/react-i18next/compare/v16.5.8...v16.6.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
c98ec60db8 |
chore(deps): Bump i18next from 25.10.0 to 25.10.4 (#1741)
Bumps [i18next](https://github.com/i18next/i18next) from 25.10.0 to 25.10.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/releases">i18next's releases</a>.</em></p> <blockquote> <h2>v25.10.4</h2> <ul> <li>feat(types): i18nKey of <code><Trans i18nKey={sk} /></code> to accept a <code>SelectorKey</code> <a href="https://redirect.github.com/i18next/i18next/issues/2364">2364</a></li> </ul> <h2>v25.10.3</h2> <ul> <li>check also for I18NEXT_NO_SUPPORT_NOTICE env variable</li> </ul> <h2>v25.10.2</h2> <ul> <li>feat(types): <code>keyFromSelector</code> is now type-safe — the selector callback is constrained against your resource definitions, catching invalid keys at compile time. Supports optional <code>ns</code> and <code>keyPrefix</code> options for non-default namespace/prefix contexts <a href="https://redirect.github.com/i18next/i18next/issues/2364">2364</a></li> </ul> <h2>v25.10.1</h2> <ul> <li>fix(types): <code>FilterKeys</code> now correctly excludes base keys that have context variants when the provided context doesn't match any of them (e.g. key <code>some</code> with variant <code>some_me</code> is no longer accessible with <code>context="one"</code>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md">i18next's changelog</a>.</em></p> <blockquote> <h2>25.10.4</h2> <ul> <li>feat(types): <code>exists()</code> is now a type guard that narrows the key to <code>SelectorKey</code>, so a validated key can be passed directly to <code>t()</code> <a href="https://redirect.github.com/i18next/i18next/issues/2364">2364</a></li> </ul> <h2>25.10.3</h2> <ul> <li>check also for I18NEXT_NO_SUPPORT_NOTICE env variable</li> </ul> <h2>25.10.2</h2> <ul> <li>feat(types): <code>keyFromSelector</code> is now type-safe — the selector callback is constrained against your resource definitions, catching invalid keys at compile time. Supports optional <code>ns</code> and <code>keyPrefix</code> options for non-default namespace/prefix contexts <a href="https://redirect.github.com/i18next/i18next/issues/2364">2364</a></li> </ul> <h2>25.10.1</h2> <ul> <li>fix(types): <code>FilterKeys</code> now correctly excludes base keys that have context variants when the provided context doesn't match any of them (e.g. key <code>some</code> with variant <code>some_me</code> is no longer accessible with <code>context="one"</code>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next/commit/de429ab17d9dbb230aef89996adc5a0b3ebd0436"><code>de429ab</code></a> 25.10.4</li> <li><a href="https://github.com/i18next/i18next/commit/3eb1b35b912bd8a656affa787b6d95ebf44c9d16"><code>3eb1b35</code></a> feat(types): i18nKey of <code>\<Trans i18nKey={sk} /></code> to accept a <code>SelectorKey</code> <a href="https://redirect.github.com/i18next/i18next/issues/2364">#2364</a></li> <li><a href="https://github.com/i18next/i18next/commit/53220b7fb80cbe22275c3b7cdbab6d91f12d2ceb"><code>53220b7</code></a> jsr update</li> <li><a href="https://github.com/i18next/i18next/commit/908d0376bb72f731df9d65a219c7fc472db01b66"><code>908d037</code></a> 25.10.3</li> <li><a href="https://github.com/i18next/i18next/commit/4e0b5da2971d404f85cf45a618dc249864b5243a"><code>4e0b5da</code></a> check also for I18NEXT_NO_SUPPORT_NOTICE env variable <a href="https://redirect.github.com/i18next/i18next/issues/2407">#2407</a></li> <li><a href="https://github.com/i18next/i18next/commit/4767835124e0b35bc3bf53223793dcc8fdffca6b"><code>4767835</code></a> cosmetics</li> <li><a href="https://github.com/i18next/i18next/commit/a55aa675081ba74ab3a5c1398ee19ec259ed3d64"><code>a55aa67</code></a> jsr update</li> <li><a href="https://github.com/i18next/i18next/commit/e5dbafe3c26b7ee1f5cf47dd41dd90082ff438bf"><code>e5dbafe</code></a> 25.10.2</li> <li><a href="https://github.com/i18next/i18next/commit/166ce5abd83b8f53d2d05fe7b04f7b970c6d7096"><code>166ce5a</code></a> feat(types): <code>keyFromSelector</code> is now type-safe — the selector callback is co...</li> <li><a href="https://github.com/i18next/i18next/commit/40f17d88ff2593e75fc44de90b0aa71bf7f37adb"><code>40f17d8</code></a> jsr update</li> <li>Additional commits viewable in <a href="https://github.com/i18next/i18next/compare/v25.10.0...v25.10.4">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
44ec1c01aa |
chore(deps-dev): Bump cypress from 15.11.0 to 15.12.0 (#1718)
Bumps [cypress](https://github.com/cypress-io/cypress) from 15.11.0 to 15.12.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/cypress/releases">cypress's releases</a>.</em></p> <blockquote> <h2>v15.12.0</h2> <p>Changelog: <a href="https://docs.cypress.io/app/references/changelog#15-12-0">https://docs.cypress.io/app/references/changelog#15-12-0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cypress-io/cypress/commit/dbb806af7cb2e657ad659675bc9b38a65a3d4a18"><code>dbb806a</code></a> chore: release v15.12.0 (<a href="https://redirect.github.com/cypress-io/cypress/issues/33459">#33459</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/4931cf06ff7dadfe27d839f80ebb2ac8b8792087"><code>4931cf0</code></a> chore: bootstrap AI agent context files (AGENTS.md + CLAUDE.md) (<a href="https://redirect.github.com/cypress-io/cypress/issues/33429">#33429</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/9546ee8e2633e3d1e7800cdcbf4ef2d99ad74ece"><code>9546ee8</code></a> chore: removes changelog entries for sigint-related fixes that are still unre...</li> <li><a href="https://github.com/cypress-io/cypress/commit/fec7088aacecf0603ff4a611fccc7a7b6652e49b"><code>fec7088</code></a> chore: updating v8 snapshot cache (<a href="https://redirect.github.com/cypress-io/cypress/issues/33453">#33453</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/9b7ac44d3bb1c34ce053b146849e630bfbf52f18"><code>9b7ac44</code></a> chore: Update v8 snapshot cache - darwin (<a href="https://redirect.github.com/cypress-io/cypress/issues/33452">#33452</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/9c8afaa9113668071357d37710ab2922cf6fce91"><code>9c8afaa</code></a> chore: updating v8 snapshot cache (<a href="https://redirect.github.com/cypress-io/cypress/issues/33449">#33449</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/3d2ca8a0e0c86ce03eb109b1e91c39fd2365cfd4"><code>3d2ca8a</code></a> chore: Update Chrome (beta) to 146.0.7680.65 (<a href="https://redirect.github.com/cypress-io/cypress/issues/33443">#33443</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/abc6b2b8eff09dc54c188787e70ae462d44b3400"><code>abc6b2b</code></a> fix: prevent hang when waiting on multiple intercepts and navigating (<a href="https://redirect.github.com/cypress-io/cypress/issues/33446">#33446</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/32e95edeb66b35ce5fd623e912d0314e5eb71f4c"><code>32e95ed</code></a> test: update coming soon test from app (<a href="https://redirect.github.com/cypress-io/cypress/issues/33448">#33448</a>)</li> <li><a href="https://github.com/cypress-io/cypress/commit/aa56256b62b3a986290d85968ac5ed9347560152"><code>aa56256</code></a> dependency: update fast-xml-parser to 4.5.4 (<a href="https://redirect.github.com/cypress-io/cypress/issues/33435">#33435</a>)</li> <li>Additional commits viewable in <a href="https://github.com/cypress-io/cypress/compare/v15.11.0...v15.12.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
a482538eaf |
chore(deps): Bump github/codeql-action from 4.33.0 to 4.34.1 (#1740)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.33.0 to 4.34.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/releases">github/codeql-action's releases</a>.</em></p> <blockquote> <h2>v4.34.1</h2> <ul> <li>Downgrade default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3">2.24.3</a> due to issues with a small percentage of Actions and JavaScript analyses. <a href="https://redirect.github.com/github/codeql-action/pull/3762">#3762</a></li> </ul> <h2>v4.34.0</h2> <ul> <li>Added an experimental change which disables TRAP caching when <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3569">#3569</a></li> <li>We are rolling out improved incremental analysis to C/C++ analyses that use build mode <code>none</code>. We expect this rollout to be complete by the end of April 2026. <a href="https://redirect.github.com/github/codeql-action/pull/3584">#3584</a></li> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0">2.25.0</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3585">#3585</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>[UNRELEASED]</h2> <ul> <li>Reduced the minimum Git version required for <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> from 2.38.0 to 2.11.0. <a href="https://redirect.github.com/github/codeql-action/pull/3767">#3767</a></li> </ul> <h2>4.34.1 - 20 Mar 2026</h2> <ul> <li>Downgrade default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3">2.24.3</a> due to issues with a small percentage of Actions and JavaScript analyses. <a href="https://redirect.github.com/github/codeql-action/pull/3762">#3762</a></li> </ul> <h2>4.34.0 - 20 Mar 2026</h2> <ul> <li>Added an experimental change which disables TRAP caching when <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3569">#3569</a></li> <li>We are rolling out improved incremental analysis to C/C++ analyses that use build mode <code>none</code>. We expect this rollout to be complete by the end of April 2026. <a href="https://redirect.github.com/github/codeql-action/pull/3584">#3584</a></li> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0">2.25.0</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3585">#3585</a></li> </ul> <h2>4.33.0 - 16 Mar 2026</h2> <ul> <li> <p>Upcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. <a href="https://redirect.github.com/github/codeql-action/pull/3562">#3562</a></p> <p>To opt out of this change:</p> <ul> <li><strong>Repositories owned by an organization:</strong> Create a custom repository property with the name <code>github-codeql-file-coverage-on-prs</code> and the type "True/false", then set this property to <code>true</code> in the repository's settings. For more information, see <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">Managing custom properties for repositories in your organization</a>. Alternatively, if you are using an advanced setup workflow, you can set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using default setup:</strong> Switch to an advanced setup workflow and set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using advanced setup:</strong> Set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> </ul> </li> <li> <p>Fixed <a href="https://redirect.github.com/github/codeql-action/issues/3555">a bug</a> which caused the CodeQL Action to fail loading repository properties if a "Multi select" repository property was configured for the repository. <a href="https://redirect.github.com/github/codeql-action/pull/3557">#3557</a></p> </li> <li> <p>The CodeQL Action now loads <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">custom repository properties</a> on GitHub Enterprise Server, enabling the customization of features such as <code>github-codeql-disable-overlay</code> that was previously only available on GitHub.com. <a href="https://redirect.github.com/github/codeql-action/pull/3559">#3559</a></p> </li> <li> <p>Once <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries</a> can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. <a href="https://redirect.github.com/github/codeql-action/pull/3563">#3563</a></p> </li> <li> <p>Fixed the retry mechanism for database uploads. Previously this would fail with the error "Response body object should not be disturbed or locked". <a href="https://redirect.github.com/github/codeql-action/pull/3564">#3564</a></p> </li> <li> <p>A warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. <a href="https://redirect.github.com/github/codeql-action/pull/3570">#3570</a></p> </li> </ul> <h2>4.32.6 - 05 Mar 2026</h2> <ul> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3">2.24.3</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3548">#3548</a></li> </ul> <h2>4.32.5 - 02 Mar 2026</h2> <ul> <li>Repositories owned by an organization can now set up the <code>github-codeql-disable-overlay</code> custom repository property to disable <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis for CodeQL</a>. First, create a custom repository property with the name <code>github-codeql-disable-overlay</code> and the type "True/false" in the organization's settings. Then in the repository's settings, set this property to <code>true</code> to disable improved incremental analysis. For more information, see <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">Managing custom properties for repositories in your organization</a>. This feature is not yet available on GitHub Enterprise Server. <a href="https://redirect.github.com/github/codeql-action/pull/3507">#3507</a></li> <li>Added an experimental change so that when <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> fails on a runner — potentially due to insufficient disk space — the failure is recorded in the Actions cache so that subsequent runs will automatically skip improved incremental analysis until something changes (e.g. a larger runner is provisioned or a new CodeQL version is released). We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3487">#3487</a></li> <li>The minimum memory check for improved incremental analysis is now skipped for CodeQL 2.24.3 and later, which has reduced peak RAM usage. <a href="https://redirect.github.com/github/codeql-action/pull/3515">#3515</a></li> <li>Reduced log levels for best-effort private package registry connection check failures to reduce noise from workflow annotations. <a href="https://redirect.github.com/github/codeql-action/pull/3516">#3516</a></li> <li>Added an experimental change which lowers the minimum disk space requirement for <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a>, enabling it to run on standard GitHub Actions runners. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3498">#3498</a></li> <li>Added an experimental change which allows the <code>start-proxy</code> action to resolve the CodeQL CLI version from feature flags instead of using the linked CLI bundle version. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3512">#3512</a></li> <li>The previously experimental changes from versions 4.32.3, 4.32.4, 3.32.3 and 3.32.4 are now enabled by default. <a href="https://redirect.github.com/github/codeql-action/pull/3503">#3503</a>, <a href="https://redirect.github.com/github/codeql-action/pull/3504">#3504</a></li> </ul> <h2>4.32.4 - 20 Feb 2026</h2> <ul> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.2">2.24.2</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3493">#3493</a></li> <li>Added an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries are configured</a>. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. <a href="https://redirect.github.com/github/codeql-action/pull/3473">#3473</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/github/codeql-action/commit/38697555549f1db7851b81482ff19f1fa5c4fedc"><code>3869755</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3763">#3763</a> from github/update-v4.34.1-095e0fe50</li> <li><a href="https://github.com/github/codeql-action/commit/20e68ac12bc8d1eb16a56d3ef4e78263197d2e47"><code>20e68ac</code></a> Update changelog for v4.34.1</li> <li><a href="https://github.com/github/codeql-action/commit/095e0fe505bb5ab6198675d021352632c2c69a46"><code>095e0fe</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3762">#3762</a> from github/henrymercer/downgrade-default-bundle</li> <li><a href="https://github.com/github/codeql-action/commit/47b94fe61cd788995769140a7a8adffec0738aa1"><code>47b94fe</code></a> Add changelog note</li> <li><a href="https://github.com/github/codeql-action/commit/51a1d6917f5d33f400200c675401974da443b2ea"><code>51a1d69</code></a> Downgrade default bundle to codeql-bundle-v2.24.3</li> <li><a href="https://github.com/github/codeql-action/commit/510cf736e330d7eb9bc471636d65aaa180118824"><code>510cf73</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3589">#3589</a> from github/mergeback/v4.34.0-to-main-c6f93110</li> <li><a href="https://github.com/github/codeql-action/commit/89f0c86efa3acf01faeff510383f0c4a4152760a"><code>89f0c86</code></a> Rebuild</li> <li><a href="https://github.com/github/codeql-action/commit/c3f90ba975e427c1913b529a89ef97a2442493f2"><code>c3f90ba</code></a> Update changelog and version after v4.34.0</li> <li><a href="https://github.com/github/codeql-action/commit/c6f931105cb2c34c8f901cc885ba1e2e259cf745"><code>c6f9311</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3588">#3588</a> from github/update-v4.34.0-30c555a52</li> <li><a href="https://github.com/github/codeql-action/commit/eeb9b3f4244c2945a20b9761dfa77f19d468d35f"><code>eeb9b3f</code></a> Update changelog for v4.34.0</li> <li>Additional commits viewable in <a href="https://github.com/github/codeql-action/compare/b1bff81932f5cdfc8695c7752dcee935dcd061c8...38697555549f1db7851b81482ff19f1fa5c4fedc">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
b6fef823f3 |
chore(deps): Bump cypress-io/github-action from 7.1.5 to 7.1.8 (#1737)
Bumps [cypress-io/github-action](https://github.com/cypress-io/github-action) from 7.1.5 to 7.1.8. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cypress-io/github-action/releases">cypress-io/github-action's releases</a>.</em></p> <blockquote> <h2>v7.1.8</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v7.1.7...v7.1.8">7.1.8</a> (2026-03-20)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update fast-xml-parser to 5.5.7 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1703">#1703</a>) (<a href="https://github.com/cypress-io/github-action/commit/4c06c48f3ffea349b7189aa06dfcda47a9fa7b92">4c06c48</a>)</li> </ul> <h2>v7.1.7</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v7.1.6...v7.1.7">7.1.7</a> (2026-03-18)</h2> <h3>Bug Fixes</h3> <ul> <li>update fast-xml-parser to 5.5.6 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1688">#1688</a>) (<a href="https://github.com/cypress-io/github-action/commit/ed2d88ccbbf936c5aac087dd43e10425abc3534f">ed2d88c</a>)</li> </ul> <h2>v7.1.6</h2> <h2><a href="https://github.com/cypress-io/github-action/compare/v7.1.5...v7.1.6">7.1.6</a> (2026-03-16)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> update transient dependencies flatted & undici (<a href="https://redirect.github.com/cypress-io/github-action/issues/1683">#1683</a>) (<a href="https://github.com/cypress-io/github-action/commit/82482149c343a5dee155d22104111b9319f9dd45">8248214</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cypress-io/github-action/commit/4c06c48f3ffea349b7189aa06dfcda47a9fa7b92"><code>4c06c48</code></a> fix(deps): update fast-xml-parser to 5.5.7 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1703">#1703</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/5c5ae407ddd27d1131faf4f3c1b21a467cbdf026"><code>5c5ae40</code></a> test(deps): harmonize image-size to 2.0.2 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1702">#1702</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/c0addff725573abecffebf4898ac2ea36084f2be"><code>c0addff</code></a> chore(deps): update dependency image-size to ^1.2.1 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1699">#1699</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/ce3bd0318c9f7f24f9244e721bd336edc76741ba"><code>ce3bd03</code></a> chore(deps): update tailwindcss monorepo to ^4.2.2 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1697">#1697</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/bc497bde529850c63e81f8385e75671d1654b5ab"><code>bc497bd</code></a> chore(deps): update dependency <code>@vitejs/plugin-react</code> to ^5.2.0 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1698">#1698</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/ce92cec8a3cc68ece278e50582913a23e736dc7d"><code>ce92cec</code></a> chore: group webpack* dependencies for Renovate (<a href="https://redirect.github.com/cypress-io/github-action/issues/1696">#1696</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/b38e1f75b50f1bee86d34143bde6eab162537f2e"><code>b38e1f7</code></a> chore(deps): update dependency webpack to ^5.105.4 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1694">#1694</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/b9f98de169dc8fb20077b6dce4eba144a0036451"><code>b9f98de</code></a> chore: set Renovate rangeStrategy to bump (<a href="https://redirect.github.com/cypress-io/github-action/issues/1693">#1693</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/a54417f608070346438843812d4c1b2f217cc565"><code>a54417f</code></a> chore: enable examples updates with Renovate (<a href="https://redirect.github.com/cypress-io/github-action/issues/1691">#1691</a>)</li> <li><a href="https://github.com/cypress-io/github-action/commit/38c6a67b0b53e301d4b1db51170d250471f97551"><code>38c6a67</code></a> test(deps): update next to 16.1.7 (<a href="https://redirect.github.com/cypress-io/github-action/issues/1689">#1689</a>)</li> <li>Additional commits viewable in <a href="https://github.com/cypress-io/github-action/compare/bc22e01685c56e89e7813fd8e26f33dc47f87e15...4c06c48f3ffea349b7189aa06dfcda47a9fa7b92">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
120bf26d11 |
chore(deps): Bump i18next from 25.8.20 to 25.10.0 (#1739)
Bumps [i18next](https://github.com/i18next/i18next) from 25.8.20 to 25.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/releases">i18next's releases</a>.</em></p> <blockquote> <h2>v25.10.0</h2> <ul> <li>feat(types): <code>keyFromSelector</code> now returns a branded <code>SelectorKey</code> type that <code>t()</code> accepts directly, enabling pre-computed and reusable translation keys <a href="https://redirect.github.com/i18next/i18next/issues/2364">2364</a></li> <li>feat: support selector syntax for <code>keyPrefix</code> in <code>getFixedT</code> and per-call options <a href="https://redirect.github.com/i18next/i18next/issues/2367">2367</a></li> <li>feat(types): interpolation values are now automatically typed based on built-in format specifiers — <code>{{val, number}}</code> requires <code>number</code>, <code>{{val, datetime}}</code> requires <code>Date</code>, <code>{{name}}</code> requires <code>string</code>, etc. Custom formatters can be typed via <code>interpolationFormatTypeMap</code> in <code>CustomTypeOptions</code> <a href="https://redirect.github.com/i18next/i18next/issues/2378">2378</a></li> <li>fix(types): <code>FilterKeys</code> in selector mode now preserves non-context, non-plural leaf keys when <code>context</code> is provided, fixing incorrect type narrowing when combining <code>returnObjects: true</code> with <code>context</code> <a href="https://redirect.github.com/i18next/i18next/issues/2398">2398</a></li> </ul> <h2>v25.9.0</h2> <ul> <li>feat(types): selector API now enforces <code>{ count: number }</code> when a key resolves to plural forms <a href="https://redirect.github.com/i18next/i18next/issues/2373">2373</a></li> <li>fix(types): string unions with invalid members are now correctly detected as type errors when used as context option <a href="https://redirect.github.com/i18next/i18next/issues/2172">2172</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md">i18next's changelog</a>.</em></p> <blockquote> <h2>25.10.0</h2> <ul> <li>feat(types): <code>keyFromSelector</code> now returns a branded <code>SelectorKey</code> type that <code>t()</code> accepts directly, enabling pre-computed and reusable translation keys <a href="https://redirect.github.com/i18next/i18next/issues/2364">2364</a></li> <li>feat: support selector syntax for <code>keyPrefix</code> in <code>getFixedT</code> and per-call options <a href="https://redirect.github.com/i18next/i18next/issues/2367">2367</a></li> <li>feat(types): interpolation values are now automatically typed based on built-in format specifiers — <code>{{val, number}}</code> requires <code>number</code>, <code>{{val, datetime}}</code> requires <code>Date</code>, <code>{{name}}</code> requires <code>string</code>, etc. Custom formatters can be typed via <code>interpolationFormatTypeMap</code> in <code>CustomTypeOptions</code> <a href="https://redirect.github.com/i18next/i18next/issues/2378">2378</a></li> <li>fix(types): <code>FilterKeys</code> in selector mode now preserves non-context, non-plural leaf keys when <code>context</code> is provided, fixing incorrect type narrowing when combining <code>returnObjects: true</code> with <code>context</code> <a href="https://redirect.github.com/i18next/i18next/issues/2398">2398</a></li> </ul> <h2>25.9.0</h2> <ul> <li>feat(types): selector API now enforces <code>{ count: number }</code> when a key resolves to plural forms <a href="https://redirect.github.com/i18next/i18next/issues/2373">2373</a></li> <li>fix(types): string unions with invalid members are now correctly detected as type errors when used as context option <a href="https://redirect.github.com/i18next/i18next/issues/2172">2172</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next/commit/96f89c6ddbe1629ee799a62354bb01cdd5b59a3f"><code>96f89c6</code></a> 25.10.0</li> <li><a href="https://github.com/i18next/i18next/commit/2f7833c6a8bc728d95aef0ae9f4a337a17d0b287"><code>2f7833c</code></a> remove debug.test</li> <li><a href="https://github.com/i18next/i18next/commit/4b6a3f9965f89428942d8d1f2cd608ce8739ce96"><code>4b6a3f9</code></a> prepare release</li> <li><a href="https://github.com/i18next/i18next/commit/c1958a235ba76e0503b4e11a34c20043c90c1a1e"><code>c1958a2</code></a> feat(types): interpolation values are now automatically typed based on built-...</li> <li><a href="https://github.com/i18next/i18next/commit/f2c76d96dedad6d205b007189935c61cdd98ef8a"><code>f2c76d9</code></a> feat(types): try to address <a href="https://redirect.github.com/i18next/i18next/issues/2378">#2378</a> and <a href="https://redirect.github.com/i18next/i18next/issues/2398">#2398</a></li> <li><a href="https://github.com/i18next/i18next/commit/9469766b4a8eec401f793305726367bddbfef2a2"><code>9469766</code></a> feat: support selector syntax for <code>keyPrefix</code> in <code>getFixedT</code> and per-call opt...</li> <li><a href="https://github.com/i18next/i18next/commit/26af5ee5c8d3611a9ee590f1315988dbd7353a7c"><code>26af5ee</code></a> branded SelectorKey <a href="https://redirect.github.com/i18next/i18next/issues/2364">#2364</a></li> <li><a href="https://github.com/i18next/i18next/commit/1163a799c23d15fba4bc456e3d6d9ae10c793584"><code>1163a79</code></a> jsr update</li> <li><a href="https://github.com/i18next/i18next/commit/da3dc6d27747834a9709b926f91387c623944e09"><code>da3dc6d</code></a> 25.9.0</li> <li><a href="https://github.com/i18next/i18next/commit/05c326a7260bda00354ecf17eeddd75d59970158"><code>05c326a</code></a> format styling</li> <li>Additional commits viewable in <a href="https://github.com/i18next/i18next/compare/v25.8.20...v25.10.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
d242bd0dfa |
chore(deps-dev): Bump eslint from 10.0.3 to 10.1.0 (#1736)
Bumps [eslint](https://github.com/eslint/eslint) from 10.0.3 to 10.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/eslint/eslint/releases">eslint's releases</a>.</em></p> <blockquote> <h2>v10.1.0</h2> <h2>Features</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/ff4382be349035acdb170627a2dc92828e134562"><code>ff4382b</code></a> feat: apply fix for <code>no-var</code> in <code>TSModuleBlock</code> (<a href="https://redirect.github.com/eslint/eslint/issues/20638">#20638</a>) (Tanuj Kanti)</li> <li><a href="https://github.com/eslint/eslint/commit/0916995b51528872b15ba4fedb24172cf25fcb3f"><code>0916995</code></a> feat: Implement api support for bulk-suppressions (<a href="https://redirect.github.com/eslint/eslint/issues/20565">#20565</a>) (Blake Sager)</li> </ul> <h2>Bug Fixes</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/2b8824e6be4223980e929a20025602df20d05ea2"><code>2b8824e</code></a> fix: Prevent <code>no-var</code> autofix when a variable is used before declaration (<a href="https://redirect.github.com/eslint/eslint/issues/20464">#20464</a>) (Amaresh S M)</li> <li><a href="https://github.com/eslint/eslint/commit/e58b4bff167e79afd067d1b0ee9360bec2d3393e"><code>e58b4bf</code></a> fix: update eslint (<a href="https://redirect.github.com/eslint/eslint/issues/20597">#20597</a>) (renovate[bot])</li> </ul> <h2>Documentation</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/b7b57fe9942c572ff651230f1f96cefed787ca52"><code>b7b57fe</code></a> docs: use correct JSDoc link in require-jsdoc.md (<a href="https://redirect.github.com/eslint/eslint/issues/20641">#20641</a>) (mkemna-clb)</li> <li><a href="https://github.com/eslint/eslint/commit/58e4cfc7dbf0fe40c73f09bf0ff94ad944d0ba0e"><code>58e4cfc</code></a> docs: add deprecation notice partial (<a href="https://redirect.github.com/eslint/eslint/issues/20639">#20639</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/7143dbf99df27c61edf1552da981794e99a0b2f2"><code>7143dbf</code></a> docs: update v9 migration guide for <code>@eslint/js</code> usage (<a href="https://redirect.github.com/eslint/eslint/issues/20540">#20540</a>) (fnx)</li> <li><a href="https://github.com/eslint/eslint/commit/035fc4fbe506e3e4524882cf50db37a4e430adf4"><code>035fc4f</code></a> docs: note that <code>globalReturn</code> applies only with <code>sourceType: "script"</code> (<a href="https://redirect.github.com/eslint/eslint/issues/20630">#20630</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/e972c88ab7474a74191ee99ac2558b00d0427a8a"><code>e972c88</code></a> docs: merge ESLint option descriptions into type definitions (<a href="https://redirect.github.com/eslint/eslint/issues/20608">#20608</a>) (Francesco Trotta)</li> <li><a href="https://github.com/eslint/eslint/commit/7f10d8440137f0cfd75f18f4746ba6a1c621b953"><code>7f10d84</code></a> docs: Update README (GitHub Actions Bot)</li> <li><a href="https://github.com/eslint/eslint/commit/aeed0078ca2f73d4744cc522102178d45b5be64e"><code>aeed007</code></a> docs: open playground link in new tab (<a href="https://redirect.github.com/eslint/eslint/issues/20602">#20602</a>) (Tanuj Kanti)</li> <li><a href="https://github.com/eslint/eslint/commit/a0d1a3772679d3d74bb860fc65b5b58678acd452"><code>a0d1a37</code></a> docs: Add AI Usage Policy (<a href="https://redirect.github.com/eslint/eslint/issues/20510">#20510</a>) (Nicholas C. Zakas)</li> </ul> <h2>Chores</h2> <ul> <li><a href="https://github.com/eslint/eslint/commit/a9f9cce82d80b540a0e3549d0e91c16df28740d8"><code>a9f9cce</code></a> chore: update dependency eslint-plugin-unicorn to ^63.0.0 (<a href="https://redirect.github.com/eslint/eslint/issues/20584">#20584</a>) (Milos Djermanovic)</li> <li><a href="https://github.com/eslint/eslint/commit/1f42bd7876ae4192cf7f7f4faf73b4ef3d2563cb"><code>1f42bd7</code></a> chore: update <code>prettier</code> to 3.8.1 (<a href="https://redirect.github.com/eslint/eslint/issues/20651">#20651</a>) (루밀LuMir)</li> <li><a href="https://github.com/eslint/eslint/commit/c0a6f4a2b4169edeca2a81bf7b47783e39ade366"><code>c0a6f4a</code></a> chore: update dependency <code>@eslint/json</code> to ^1.2.0 (<a href="https://redirect.github.com/eslint/eslint/issues/20652">#20652</a>) (renovate[bot])</li> <li><a href="https://github.com/eslint/eslint/commit/cc43f795c42e5ec2f19bb43b1f6d534ef2e469f3"><code>cc43f79</code></a> chore: update dependency c8 to v11 (<a href="https://redirect.github.com/eslint/eslint/issues/20650">#20650</a>) (renovate[bot])</li> <li><a href="https://github.com/eslint/eslint/commit/2ce4635b036ff2665c7009afddf9c0fb2274dceb"><code>2ce4635</code></a> chore: update dependency <code>@eslint/json</code> to v1 (<a href="https://redirect.github.com/eslint/eslint/issues/20649">#20649</a>) (renovate[bot])</li> <li><a href="https://github.com/eslint/eslint/commit/f0406eedcc3dc415babbbf6bbdb5db1eebfd487b"><code>f0406ee</code></a> chore: update dependency markdownlint-cli2 to ^0.21.0 (<a href="https://redirect.github.com/eslint/eslint/issues/20646">#20646</a>) (renovate[bot])</li> <li><a href="https://github.com/eslint/eslint/commit/dbb4c9582a00bac604d5c6ac671bb7111468a846"><code>dbb4c95</code></a> chore: remove trunk (<a href="https://redirect.github.com/eslint/eslint/issues/20478">#20478</a>) (sethamus)</li> <li><a href="https://github.com/eslint/eslint/commit/c672a2a70579fddf1c6ce33dfa712d705726e1c9"><code>c672a2a</code></a> test: fix CLI test for empty output file (<a href="https://redirect.github.com/eslint/eslint/issues/20640">#20640</a>) (kuldeep kumar)</li> <li><a href="https://github.com/eslint/eslint/commit/c7ada2455680036bbfc42fcb1511ff28afe3c587"><code>c7ada24</code></a> ci: bump pnpm/action-setup from 4.3.0 to 4.4.0 (<a href="https://redirect.github.com/eslint/eslint/issues/20636">#20636</a>) (dependabot[bot])</li> <li><a href="https://github.com/eslint/eslint/commit/07c4b8b4a9f49145e60a3448dd57853213ed4de3"><code>07c4b8b</code></a> test: fix <code>RuleTester</code> test without test runners (<a href="https://redirect.github.com/eslint/eslint/issues/20631">#20631</a>) (Francesco Trotta)</li> <li><a href="https://github.com/eslint/eslint/commit/079bba7ff17d0a99fdffe32bf991d005ba797fae"><code>079bba7</code></a> test: Add tests for <code>isValidWithUnicodeFlag</code> (<a href="https://redirect.github.com/eslint/eslint/issues/20601">#20601</a>) (Manish chaudhary)</li> <li><a href="https://github.com/eslint/eslint/commit/5885ae66216bcee9310bbf73786b7d7d5774aeaf"><code>5885ae6</code></a> ci: unpin Node.js 25.x in CI (<a href="https://redirect.github.com/eslint/eslint/issues/20615">#20615</a>) (Copilot)</li> <li><a href="https://github.com/eslint/eslint/commit/f65e5d3c0df65fdb317ad6d23f7ae113c5f4b6d7"><code>f65e5d3</code></a> chore: update pnpm/action-setup digest to b906aff (<a href="https://redirect.github.com/eslint/eslint/issues/20610">#20610</a>) (renovate[bot])</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/eslint/eslint/commit/8351ec7aaa0f7d4753ff39bb9d6260f2ac9e1f1a"><code>8351ec7</code></a> 10.1.0</li> <li><a href="https://github.com/eslint/eslint/commit/3270bc12165d62646fd0edaab2c28809302663a1"><code>3270bc1</code></a> Build: changelog update for 10.1.0</li> <li><a href="https://github.com/eslint/eslint/commit/a9f9cce82d80b540a0e3549d0e91c16df28740d8"><code>a9f9cce</code></a> chore: update dependency eslint-plugin-unicorn to ^63.0.0 (<a href="https://redirect.github.com/eslint/eslint/issues/20584">#20584</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/1f42bd7876ae4192cf7f7f4faf73b4ef3d2563cb"><code>1f42bd7</code></a> chore: update <code>prettier</code> to 3.8.1 (<a href="https://redirect.github.com/eslint/eslint/issues/20651">#20651</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/c0a6f4a2b4169edeca2a81bf7b47783e39ade366"><code>c0a6f4a</code></a> chore: update dependency <code>@eslint/json</code> to ^1.2.0 (<a href="https://redirect.github.com/eslint/eslint/issues/20652">#20652</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/cc43f795c42e5ec2f19bb43b1f6d534ef2e469f3"><code>cc43f79</code></a> chore: update dependency c8 to v11 (<a href="https://redirect.github.com/eslint/eslint/issues/20650">#20650</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/2ce4635b036ff2665c7009afddf9c0fb2274dceb"><code>2ce4635</code></a> chore: update dependency <code>@eslint/json</code> to v1 (<a href="https://redirect.github.com/eslint/eslint/issues/20649">#20649</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/f0406eedcc3dc415babbbf6bbdb5db1eebfd487b"><code>f0406ee</code></a> chore: update dependency markdownlint-cli2 to ^0.21.0 (<a href="https://redirect.github.com/eslint/eslint/issues/20646">#20646</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/dbb4c9582a00bac604d5c6ac671bb7111468a846"><code>dbb4c95</code></a> chore: remove trunk (<a href="https://redirect.github.com/eslint/eslint/issues/20478">#20478</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/ff4382be349035acdb170627a2dc92828e134562"><code>ff4382b</code></a> feat: apply fix for <code>no-var</code> in <code>TSModuleBlock</code> (<a href="https://redirect.github.com/eslint/eslint/issues/20638">#20638</a>)</li> <li>Additional commits viewable in <a href="https://github.com/eslint/eslint/compare/v10.0.3...v10.1.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
250a480626 |
chore(deps): Bump maplibre-gl from 5.20.2 to 5.21.0 (#1730)
Bumps [maplibre-gl](https://github.com/maplibre/maplibre-gl-js) from 5.20.2 to 5.21.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/maplibre/maplibre-gl-js/releases">maplibre-gl's releases</a>.</em></p> <blockquote> <h2>v5.21.0</h2> <h3>✨ Features and improvements</h3> <ul> <li>Add compatibility for ES2020 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7283">#7283</a>) (by <a href="https://github.com/claudiobgit"><code>@claudiobgit</code></a>)</li> <li>Add <code>referrerPolicy</code> option to <code>RequestParameters</code> to allow controlling the referrer policy for tile requests (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7278">#7278</a>) (by <a href="https://github.com/Bingtagui404"><code>@Bingtagui404</code></a>)</li> <li>Wait for the GPU to finish its callstack for rendering benchmarks (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7285">#7285</a>) (by <a href="https://github.com/xavierjs"><code>@xavierjs</code></a>)</li> <li>Remove Edge 18 WebP detection workaround; always send <code>Accept: image/webp</code> header for image requests (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7293">#7293</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Remove legacy browser compatibility code targeting IE11 and pre-2016 browsers (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7294">#7294</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Remove legacy <code>DOM.remove()</code> and <code>DOM.mouseButton()</code> wrappers; use native APIs directly (baseline 2015) (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7295">#7295</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Make <code>setTransformRequest</code> accept an async function in addition to a sync function. (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7184">#7184</a>) (by <a href="https://github.com/kikuomax"><code>@kikuomax</code> </a>)</li> </ul> <h3>🐞 Bug fixes</h3> <ul> <li>Fix incorrect popup location in case of terrain and <code>jumpTo</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7267">#7267</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> <li>Fix memory leak in VideoSource: remove <code>playing</code> event listener and pause video on source removal (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7279">#7279</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix memory leak where typed array views retained StructArray buffers after GPU upload, preventing garbage collection (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7280">#7280</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix raster DEM tiles getting stuck in <code>"reloading"</code> state (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7284">#7284</a>) (by <a href="https://github.com/katemihalikova"><code>@katemihalikova</code></a>)</li> <li>Fix <code>GeolocateControl</code> leaking a <code>movestart</code> listener on the map after removal, which could also crash if the control was in active tracking state when removed (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7286">#7286</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Cap tile texture reuse pool to prevent unbounded VRAM growth during rapid zoom/pan (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7289">#7289</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix Marker <code>click</code> listener not removed on <code>remove()</code>, leaking the handler added in <a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7028">#7028</a> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7287">#7287</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix Terrain GPU resource leak: free FBO, textures, and meshes when terrain is disabled via <code>setTerrain(null)</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7288">#7288</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix guard against partial layout in <code>PauseablePlacement</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7079">#7079</a>) (by <a href="https://github.com/garethbowker"><code>@garethbowker</code></a>)</li> <li>Fix missing tile encoding for MLT queryRenderedFeatures (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7056">#7056</a>) (by <a href="https://github.com/dannote"><code>@dannote</code></a> and <a href="https://github.com/ted-piotrowski"><code>@ted-piotrowski</code></a>)</li> <li>Fix 3D Tiles example (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7275">#7275</a>) (by <a href="https://github.com/hh-hang"><code>@hh-hang</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/maplibre/maplibre-gl-js/blob/main/CHANGELOG.md">maplibre-gl's changelog</a>.</em></p> <blockquote> <h2>5.21.0</h2> <h3>✨ Features and improvements</h3> <ul> <li>Add compatibility for ES2020 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7283">#7283</a>) (by <a href="https://github.com/claudiobgit"><code>@claudiobgit</code></a>)</li> <li>Add <code>referrerPolicy</code> option to <code>RequestParameters</code> to allow controlling the referrer policy for tile requests (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7278">#7278</a>) (by <a href="https://github.com/Bingtagui404"><code>@Bingtagui404</code></a>)</li> <li>Wait for the GPU to finish its callstack for rendering benchmarks (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7285">#7285</a>) (by <a href="https://github.com/xavierjs"><code>@xavierjs</code></a>)</li> <li>Remove Edge 18 WebP detection workaround; always send <code>Accept: image/webp</code> header for image requests (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7293">#7293</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Remove legacy browser compatibility code targeting IE11 and pre-2016 browsers (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7294">#7294</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Remove legacy <code>DOM.remove()</code> and <code>DOM.mouseButton()</code> wrappers; use native APIs directly (baseline 2015) (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7295">#7295</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Make <code>setTransformRequest</code> accept an async function in addition to a sync function. (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7184">#7184</a>) (by <a href="https://github.com/kikuomax"><code>@kikuomax</code> </a>)</li> </ul> <h3>🐞 Bug fixes</h3> <ul> <li>Fix incorrect popup location in case of terrain and <code>jumpTo</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7267">#7267</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> <li>Fix memory leak in VideoSource: remove <code>playing</code> event listener and pause video on source removal (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7279">#7279</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix memory leak where typed array views retained StructArray buffers after GPU upload, preventing garbage collection (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7280">#7280</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix raster DEM tiles getting stuck in <code>"reloading"</code> state (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7284">#7284</a>) (by <a href="https://github.com/katemihalikova"><code>@katemihalikova</code></a>)</li> <li>Fix <code>GeolocateControl</code> leaking a <code>movestart</code> listener on the map after removal, which could also crash if the control was in active tracking state when removed (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7286">#7286</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Cap tile texture reuse pool to prevent unbounded VRAM growth during rapid zoom/pan (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7289">#7289</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix Marker <code>click</code> listener not removed on <code>remove()</code>, leaking the handler added in <a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7028">#7028</a> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7287">#7287</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix Terrain GPU resource leak: free FBO, textures, and meshes when terrain is disabled via <code>setTerrain(null)</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7288">#7288</a>) (by <a href="https://github.com/johanrd"><code>@johanrd</code></a>)</li> <li>Fix guard against partial layout in <code>PauseablePlacement</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7079">#7079</a>) (by <a href="https://github.com/garethbowker"><code>@garethbowker</code></a>)</li> <li>Fix missing tile encoding for MLT queryRenderedFeatures (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7056">#7056</a>) (by <a href="https://github.com/dannote"><code>@dannote</code></a> and <a href="https://github.com/ted-piotrowski"><code>@ted-piotrowski</code></a>)</li> <li>Fix 3D Tiles example (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7275">#7275</a>) (by <a href="https://github.com/hh-hang"><code>@hh-hang</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/44a48f868c973aaa486d96cf899f15cb474257c9"><code>44a48f8</code></a> Bump js version to 5.21.0 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7304">#7304</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/7aae2263eae689b7b47b9db7a38dfa6823b6dd8e"><code>7aae226</code></a> feat: async RequestTransformFunction (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7184">#7184</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/901b3af07e0bbb6f656664166d2b3cd546caa378"><code>901b3af</code></a> fix: guard against unhydrated layout in PauseablePlacement (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7079">#7079</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/bab57d5a449e169b32006cbb6f5cb1cdb2d6b9e3"><code>bab57d5</code></a> fix: store encoding when caching raw tile data for MLT queryRenderedFeatures ...</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/bf4735e8f7bfb73a0be2859a2994d246eadc4c1f"><code>bf4735e</code></a> chore(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7302">#7302</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/ff37d1f79f693b5fe8b07b9702a1b4a8ada5b770"><code>ff37d1f</code></a> chore(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7261">#7261</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/80a862845e01a84f756f61cf63bf42faff66536c"><code>80a8628</code></a> chore(deps-dev): bump <code>@types/murmurhash-js</code> from 1.0.6 to 1.0.7 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7300">#7300</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/4e21c3fe090c3033484966b9ea8b2ef640a7e92a"><code>4e21c3f</code></a> chore(deps-dev): bump <code>@typescript-eslint/parser</code> from 8.57.0 to 8.57.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7301">#7301</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/16bde408247bc57a58b676325272af2da01da202"><code>16bde40</code></a> chore(deps-dev): bump nise from 6.1.3 to 6.1.4 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7297">#7297</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/c1c4252e5b8568d4a56c56f3b56d8ee9d6d107d1"><code>c1c4252</code></a> chore(deps-dev): bump jsdom from 28.1.0 to 29.0.0 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7298">#7298</a>)</li> <li>Additional commits viewable in <a href="https://github.com/maplibre/maplibre-gl-js/compare/v5.20.2...v5.21.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
c94c995f4c |
chore(deps-dev): Bump sass from 1.97.3 to 1.98.0 (#1716)
Bumps [sass](https://github.com/sass/dart-sass) from 1.97.3 to 1.98.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sass/dart-sass/releases">sass's releases</a>.</em></p> <blockquote> <h2>Dart Sass 1.98.0</h2> <p>To install Sass 1.98.0, download one of the packages below and <a href="https://katiek2.github.io/path-doc/">add it to your PATH</a>, or see <a href="https://sass-lang.com/install">the Sass website</a> for full installation instructions.</p> <h1>Changes</h1> <h3>Command-Line Interface</h3> <ul> <li>Gracefully handle dependency loops in <code>--watch</code> mode.</li> </ul> <h3>Dart API</h3> <ul> <li>Add a <code>const Logger.defaultLogger</code> field. This provides a logger that emits to standard error or the browser console, but automatically chooses whether to use terminal colors.</li> </ul> <h3>JavaScript API</h3> <ul> <li> <p>Fix a crash when manually constructing a <code>SassCalculation</code> for <code>'calc'</code> with an argument that can't be simplified.</p> </li> <li> <p>Properly emit deprecation warnings as text rather than <code>StringBuffer</code> objects when running in a browser.</p> </li> <li> <p>Emit colored warnings and other messages on the console when running in a browser.</p> </li> </ul> <p>See the <a href="https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1980">full changelog</a> for changes in earlier releases.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sass/dart-sass/blob/main/CHANGELOG.md">sass's changelog</a>.</em></p> <blockquote> <h2>1.98.0</h2> <h3>Command-Line Interface</h3> <ul> <li>Gracefully handle dependency loops in <code>--watch</code> mode.</li> </ul> <h3>Dart API</h3> <ul> <li>Add a <code>const Logger.defaultLogger</code> field. This provides a logger that emits to standard error or the browser console, but automatically chooses whether to use terminal colors.</li> </ul> <h3>JavaScript API</h3> <ul> <li> <p>Fix a crash when manually constructing a <code>SassCalculation</code> for <code>'calc'</code> with an argument that can't be simplified.</p> </li> <li> <p>Properly emit deprecation warnings as text rather than <code>StringBuffer</code> objects when running in a browser.</p> </li> <li> <p>Emit colored warnings and other messages on the console when running in a browser.</p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sass/dart-sass/commit/5a81ae3348caab2131ee08c8c0141337420372b5"><code>5a81ae3</code></a> Bump version to 1.98.0 (<a href="https://redirect.github.com/sass/dart-sass/issues/2754">#2754</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/e25e71ddd86b29b6a91f189a1211656081d1932a"><code>e25e71d</code></a> Update immutable to v5.1.5 (<a href="https://redirect.github.com/sass/dart-sass/issues/2753">#2753</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/43fac1a989ce2a9ee66d95d99f739881462ee3a8"><code>43fac1a</code></a> Bump actions/upload-artifact from 6 to 7 (<a href="https://redirect.github.com/sass/dart-sass/issues/2747">#2747</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/8b85c9aae6af8cb4bd3f6717ed3aae5c1065fe6d"><code>8b85c9a</code></a> Bump actions/download-artifact from 7 to 8 (<a href="https://redirect.github.com/sass/dart-sass/issues/2749">#2749</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/00f83f0c12318e48d7f0f77e2f22e2b59966093c"><code>00f83f0</code></a> Bump postcss from 8.5.6 to 8.5.8 in /pkg/sass-parser (<a href="https://redirect.github.com/sass/dart-sass/issues/2752">#2752</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/0a325a46a76c6a1d312aaab5a6b1f9a80d453594"><code>0a325a4</code></a> Bump actions/attest-build-provenance from 3 to 4 (<a href="https://redirect.github.com/sass/dart-sass/issues/2748">#2748</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/7fb3c0f61adaa73be963408fbce29bdc596297c3"><code>7fb3c0f</code></a> Gracefully handle dependency loops in watch mode (<a href="https://redirect.github.com/sass/dart-sass/issues/2746">#2746</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/e86d0445ecc82687b29ff4784d8d6a86c1ca92f2"><code>e86d044</code></a> Bump eslint from 9.39.3 to 10.0.1 in /pkg/sass-parser (<a href="https://redirect.github.com/sass/dart-sass/issues/2743">#2743</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/4bcd256f99df392d3e54a96692a991a1f287bd05"><code>4bcd256</code></a> Add Logger.defaultLogger to automatically choose whether to use colors (<a href="https://redirect.github.com/sass/dart-sass/issues/2742">#2742</a>)</li> <li><a href="https://github.com/sass/dart-sass/commit/c3f8ff0f6cc43f194c2989eaaf5b720f34943ec4"><code>c3f8ff0</code></a> Always convert printed objects to strings in JS (<a href="https://redirect.github.com/sass/dart-sass/issues/2741">#2741</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sass/dart-sass/compare/1.97.3...1.98.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
085b3ff0d0 |
chore(deps): Bump codecov/codecov-action from 5.5.2 to 5.5.3 (#1735)
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 5.5.2 to 5.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v5.5.3</h2> <h2>What's Changed</h2> <ul> <li>build(deps): bump actions/github-script from 7.0.1 to 8.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/codecov/codecov-action/pull/1874">codecov/codecov-action#1874</a></li> <li>chore(release): bump to 5.5.3 by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1922">codecov/codecov-action#1922</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3">https://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md">codecov/codecov-action's changelog</a>.</em></p> <blockquote> <h2>v5.5.2</h2> <h3>What's Changed</h3> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2">https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2</a></p> <h2>v5.5.1</h2> <h3>What's Changed</h3> <ul> <li>fix: overwrite pr number on fork by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1871">codecov/codecov-action#1871</a></li> <li>build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1868">codecov/codecov-action#1868</a></li> <li>build(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1867">codecov/codecov-action#1867</a></li> <li>fix: update to use local app/ dir by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1872">codecov/codecov-action#1872</a></li> <li>docs: fix typo in README by <a href="https://github.com/datalater"><code>@datalater</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1866">codecov/codecov-action#1866</a></li> <li>Document a <code>codecov-cli</code> version reference example by <a href="https://github.com/webknjaz"><code>@webknjaz</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1774">codecov/codecov-action#1774</a></li> <li>build(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1861">codecov/codecov-action#1861</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1833">codecov/codecov-action#1833</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1">https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1</a></p> <h2>v5.5.0</h2> <h3>What's Changed</h3> <ul> <li>feat: upgrade wrapper to 0.2.4 by <a href="https://github.com/jviall"><code>@jviall</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1864">codecov/codecov-action#1864</a></li> <li>Pin actions/github-script by Git SHA by <a href="https://github.com/martincostello"><code>@martincostello</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1859">codecov/codecov-action#1859</a></li> <li>fix: check reqs exist by <a href="https://github.com/joseph-sentry"><code>@joseph-sentry</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1835">codecov/codecov-action#1835</a></li> <li>fix: Typo in README by <a href="https://github.com/spalmurray"><code>@spalmurray</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1838">codecov/codecov-action#1838</a></li> <li>docs: Refine OIDC docs by <a href="https://github.com/spalmurray"><code>@spalmurray</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1837">codecov/codecov-action#1837</a></li> <li>build(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1829">codecov/codecov-action#1829</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0">https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0</a></p> <h2>v5.4.3</h2> <h3>What's Changed</h3> <ul> <li>build(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by <code>@app/dependabot</code> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1822">codecov/codecov-action#1822</a></li> <li>fix: OIDC on forks by <a href="https://github.com/joseph-sentry"><code>@joseph-sentry</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1823">codecov/codecov-action#1823</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3">https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3</a></p> <h2>v5.4.2</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codecov/codecov-action/commit/1af58845a975a7985b0beb0cbe6fbbb71a41dbad"><code>1af5884</code></a> chore(release): bump to 5.5.3 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1922">#1922</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/c143300dea6c9a730986ff862c5bf4d458927ef8"><code>c143300</code></a> build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1874">#1874</a>)</li> <li>See full diff in <a href="https://github.com/codecov/codecov-action/compare/671740ac38dd9b0130fbe1cec585b89eea48d3de...1af58845a975a7985b0beb0cbe6fbbb71a41dbad">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
853f815767 |
chore(deps-dev): Bump @types/color from 4.2.0 to 4.2.1 (#1734)
Bumps [@types/color](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/color) from 4.2.0 to 4.2.1. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/color">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
fb37f88f79 |
chore(deps): Bump ol-mapbox-style from 13.3.0 to 13.4.0 (#1733)
Bumps [ol-mapbox-style](https://github.com/openlayers/ol-mapbox-style) from 13.3.0 to 13.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/openlayers/ol-mapbox-style/releases">ol-mapbox-style's releases</a>.</em></p> <blockquote> <h2>v13.4.0</h2> <h2>Summary</h2> <ul> <li>New hillshading options</li> <li>Support for the <code>line-offset</code> paint property</li> </ul> <h2>What's Changed</h2> <ul> <li>Changes for v13.2.0 by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1387">openlayers/ol-mapbox-style#1387</a></li> <li>feat: prevent redundant font loading requests with font-weight ranges by <a href="https://github.com/spliffone"><code>@spliffone</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1398">openlayers/ol-mapbox-style#1398</a></li> <li>Bump lodash from 4.17.21 to 4.17.23 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1399">openlayers/ol-mapbox-style#1399</a></li> <li>Fix background layer source reuse breaking vector layers by <a href="https://github.com/dleone13-terp"><code>@dleone13-terp</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1400">openlayers/ol-mapbox-style#1400</a></li> <li>Bump qs, body-parser and express by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1393">openlayers/ol-mapbox-style#1393</a></li> <li>Bump typedoc from 0.28.14 to 0.28.15 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1389">openlayers/ol-mapbox-style#1389</a></li> <li>Bump puppeteer from 24.33.1 to 24.34.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1390">openlayers/ol-mapbox-style#1390</a></li> <li>Bump html-webpack-plugin from 5.6.4 to 5.6.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1391">openlayers/ol-mapbox-style#1391</a></li> <li>Bump <code>@maplibre/maplibre-gl-style-spec</code> from 23.3.0 to 24.4.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1388">openlayers/ol-mapbox-style#1388</a></li> <li>Bump <code>@rollup/plugin-node-resolve</code> from 16.0.1 to 16.0.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1392">openlayers/ol-mapbox-style#1392</a></li> <li>Bump webpack from 5.102.1 to 5.105.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1406">openlayers/ol-mapbox-style#1406</a></li> <li>Bump puppeteer from 24.34.0 to 24.36.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1401">openlayers/ol-mapbox-style#1401</a></li> <li>Bump html-webpack-plugin from 5.6.5 to 5.6.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1403">openlayers/ol-mapbox-style#1403</a></li> <li>Bump mini-css-extract-plugin from 2.9.4 to 2.10.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1405">openlayers/ol-mapbox-style#1405</a></li> <li>Bump rollup from 4.46.2 to 4.56.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1402">openlayers/ol-mapbox-style#1402</a></li> <li>Bump webpack-dev-server from 5.2.2 to 5.2.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1404">openlayers/ol-mapbox-style#1404</a></li> <li>Changes for 13.2.1 by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1407">openlayers/ol-mapbox-style#1407</a></li> <li>Better match the visual hillshade appearance of MapLibre by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1409">openlayers/ol-mapbox-style#1409</a></li> <li>Updates for Mapbox compatibility by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1415">openlayers/ol-mapbox-style#1415</a></li> <li>Bump qs from 6.14.1 to 6.14.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1410">openlayers/ol-mapbox-style#1410</a></li> <li>Bump sinon from 21.0.0 to 21.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1411">openlayers/ol-mapbox-style#1411</a></li> <li>Bump css-loader from 7.1.2 to 7.1.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1412">openlayers/ol-mapbox-style#1412</a></li> <li>Bump puppeteer from 24.36.0 to 24.37.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1413">openlayers/ol-mapbox-style#1413</a></li> <li>Bump globals from 16.5.0 to 17.3.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1414">openlayers/ol-mapbox-style#1414</a></li> <li>Changes for 13.3.0 by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1416">openlayers/ol-mapbox-style#1416</a></li> <li>Raster contrast and alpha fixes; add zoom exaggeration for DEM by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1424">openlayers/ol-mapbox-style#1424</a></li> <li>New hillshading options by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1425">openlayers/ol-mapbox-style#1425</a></li> <li>Isolate text color and halo by <a href="https://github.com/ahocevar"><code>@ahocevar</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1428">openlayers/ol-mapbox-style#1428</a></li> <li>Bump webpack from 5.105.0 to 5.105.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1418">openlayers/ol-mapbox-style#1418</a></li> <li>feat: added line-offset by <a href="https://github.com/ElGreeno"><code>@ElGreeno</code></a> in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1430">openlayers/ol-mapbox-style#1430</a></li> <li>Bump css-loader from 7.1.3 to 7.1.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1419">openlayers/ol-mapbox-style#1419</a></li> <li>Bump proj4 from 2.19.10 to 2.20.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1420">openlayers/ol-mapbox-style#1420</a></li> <li>Bump puppeteer from 24.37.3 to 24.37.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1421">openlayers/ol-mapbox-style#1421</a></li> <li>Bump basic-ftp from 5.1.0 to 5.2.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1422">openlayers/ol-mapbox-style#1422</a></li> <li>Bump minimatch by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1423">openlayers/ol-mapbox-style#1423</a></li> <li>Bump rollup from 4.57.1 to 4.59.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1426">openlayers/ol-mapbox-style#1426</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/spliffone"><code>@spliffone</code></a> made their first contribution in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1398">openlayers/ol-mapbox-style#1398</a></li> <li><a href="https://github.com/dleone13-terp"><code>@dleone13-terp</code></a> made their first contribution in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1400">openlayers/ol-mapbox-style#1400</a></li> <li><a href="https://github.com/ElGreeno"><code>@ElGreeno</code></a> made their first contribution in <a href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1430">openlayers/ol-mapbox-style#1430</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/openlayers/ol-mapbox-style/compare/v13.2.0...v13.4.0">https://github.com/openlayers/ol-mapbox-style/compare/v13.2.0...v13.4.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/openlayers/ol-mapbox-style/blob/main/CHANGELOG.md">ol-mapbox-style's changelog</a>.</em></p> <blockquote> <h2>13.4.0</h2> <ul> <li>New hillshading options</li> <li>Support for the <code>line-offset</code> paint property</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/0c53469f003afd099acabee1a74c114d09f5bfc1"><code>0c53469</code></a> Add dist for v13.4.0</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/83733d0b913f0bdb153432adb2f6d9fbef81c018"><code>83733d0</code></a> Changes for 13.4.0</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/662df98125db130dc1da627da2dfaa201be30228"><code>662df98</code></a> Merge pull request <a href="https://redirect.github.com/openlayers/ol-mapbox-style/issues/1426">#1426</a> from openlayers/dependabot/npm_and_yarn/rollup-4.59.0</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/9d416bbcd474947ab1ed6de1318d0be34cb4bd92"><code>9d416bb</code></a> Merge pull request <a href="https://redirect.github.com/openlayers/ol-mapbox-style/issues/1423">#1423</a> from openlayers/dependabot/npm_and_yarn/multi-bcbe54...</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/45d75ddfc8270faf6008b403d00719390e112919"><code>45d75dd</code></a> Merge pull request <a href="https://redirect.github.com/openlayers/ol-mapbox-style/issues/1422">#1422</a> from openlayers/dependabot/npm_and_yarn/basic-ftp-5.2.0</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/b46de6350fe30a102410f0b8a6d5436f6d8ba833"><code>b46de63</code></a> Merge pull request <a href="https://redirect.github.com/openlayers/ol-mapbox-style/issues/1421">#1421</a> from openlayers/dependabot/npm_and_yarn/puppeteer-24...</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/8683d0a04e804ee06262e74ff840ecd6b881809f"><code>8683d0a</code></a> Merge pull request <a href="https://redirect.github.com/openlayers/ol-mapbox-style/issues/1420">#1420</a> from openlayers/dependabot/npm_and_yarn/proj4-2.20.2</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/3681972017804e9bba7200c57a32e8edd14c4b75"><code>3681972</code></a> Merge pull request <a href="https://redirect.github.com/openlayers/ol-mapbox-style/issues/1419">#1419</a> from openlayers/dependabot/npm_and_yarn/css-loader-7...</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/831993b8a9d8aefe83c91d58c2ab02979875fde1"><code>831993b</code></a> Merge pull request <a href="https://redirect.github.com/openlayers/ol-mapbox-style/issues/1430">#1430</a> from ElGreeno/add-line-offset</li> <li><a href="https://github.com/openlayers/ol-mapbox-style/commit/bfb2c342b5c317812baf0a12b442fcaae04badf9"><code>bfb2c34</code></a> feat: added line-offset</li> <li>Additional commits viewable in <a href="https://github.com/openlayers/ol-mapbox-style/compare/v13.3.0...v13.4.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
9d690ba977 |
chore(deps): Bump i18next from 25.8.18 to 25.8.20 (#1731)
Bumps [i18next](https://github.com/i18next/i18next) from 25.8.18 to 25.8.20. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/releases">i18next's releases</a>.</em></p> <blockquote> <h2>v25.8.20</h2> <ul> <li> <ul> <li>fix: <code>getFixedT()</code> selector now resolves namespaces against the effective <code>ns</code> rather than the global init options <a href="https://redirect.github.com/i18next/i18next/issues/2406">#2406</a></li> </ul> </li> </ul> <h2>v25.8.19</h2> <ul> <li>fix: selector API namespace resolution regression for single-string <code>ns</code> and primary namespace in array <a href="https://redirect.github.com/i18next/i18next/issues/2405">#2405</a>. Reverts the broad namespace-prefix rewrite from v25.8.15 and replaces it with a targeted fix that only rewrites paths starting with a secondary namespace in a multi-namespace array, matching the type-level contract of <code>GetSource</code></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md">i18next's changelog</a>.</em></p> <blockquote> <h2>25.8.20</h2> <ul> <li> <ul> <li>fix: <code>getFixedT()</code> selector now resolves namespaces against the effective <code>ns</code> rather than the global init options <a href="https://redirect.github.com/i18next/i18next/issues/2406">2406</a></li> </ul> </li> </ul> <h2>25.8.19</h2> <ul> <li>fix: selector API namespace resolution regression for single-string <code>ns</code> and primary namespace in array <a href="https://redirect.github.com/i18next/i18next/issues/2405">2405</a>. Reverts the broad namespace-prefix rewrite from v25.8.15 and replaces it with a targeted fix that only rewrites paths starting with a secondary namespace in a multi-namespace array, matching the type-level contract of <code>GetSource</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next/commit/037e978f33a2bf8f232bdbbc029a296ca89c4288"><code>037e978</code></a> 25.8.20</li> <li><a href="https://github.com/i18next/i18next/commit/8750f7165c70834774501dab2902d5fc89a49ad6"><code>8750f71</code></a> fix: <code>getFixedT()</code> selector now resolves namespaces against the effective `ns...</li> <li><a href="https://github.com/i18next/i18next/commit/4736b20b16ee08ff38e0bd939ee95e92994a3c2d"><code>4736b20</code></a> jsr update</li> <li><a href="https://github.com/i18next/i18next/commit/160cde565cc9d72997f1575ede32d94e7230a22c"><code>160cde5</code></a> 25.8.19</li> <li><a href="https://github.com/i18next/i18next/commit/88d5145131be3fe98b90567ed26d0d08cd01b2c8"><code>88d5145</code></a> fix <a href="https://redirect.github.com/i18next/i18next/issues/2405">#2405</a> by reverting changes in v25.8.15</li> <li><a href="https://github.com/i18next/i18next/commit/938fd1c8492ff8078af5ee2e5c35c630da12aeb8"><code>938fd1c</code></a> jsr update</li> <li>See full diff in <a href="https://github.com/i18next/i18next/compare/v25.8.18...v25.8.20">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
e54bf949fc |
chore(deps-dev): Bump stylelint from 17.4.0 to 17.5.0 (#1732)
Bumps [stylelint](https://github.com/stylelint/stylelint) from 17.4.0 to 17.5.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/stylelint/stylelint/releases">stylelint's releases</a>.</em></p> <blockquote> <h2>17.5.0</h2> <p>It deprecates two rule options, adds 1 rule option and fixes 7 bugs. We've also released <a href="https://github.com/stylelint/vscode-stylelint/releases/tag/2.1.0"><code>2.1.0</code></a> of <a href="https://marketplace.visualstudio.com/items?itemName=stylelint.vscode-stylelint">our VS Code extension</a>, which adds 8 new requested features, and our <a href="https://www.npmjs.com/package/@stylelint/language-server">first release</a> of the Stylelint Language Server.</p> <ul> <li>Deprecated: <code>*syntax</code> options from <code>declaration-property-value-no-unknown</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9102">#9102</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Added: <code>ignoreMediaFeatureNameValues: {}</code> to <code>media-feature-name-value-no-unknown</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/8976">#8976</a>) (<a href="https://github.com/kovsu"><code>@kovsu</code></a>).</li> <li>Fixed: <code>node_modules</code> not ignored when using <code>codeFilename</code> in Node.js API (<a href="https://redirect.github.com/stylelint/stylelint/issues/9130">#9130</a>) (<a href="https://github.com/adalinesimonian"><code>@adalinesimonian</code></a>).</li> <li>Fixed: <code>Error TS7016</code> for imported <code>css-tree</code> types (<a href="https://redirect.github.com/stylelint/stylelint/issues/9133">#9133</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Fixed: <code>declaration-property-value-keyword-no-deprecated</code> false positives for function arguments (<a href="https://redirect.github.com/stylelint/stylelint/issues/9116">#9116</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Fixed: <code>declaration-property-value-no-unknown</code> false positives for <code>calc-size()</code> containing <code>size</code> keyword (<a href="https://redirect.github.com/stylelint/stylelint/issues/9105">#9105</a>) (<a href="https://github.com/hriztam"><code>@hriztam</code></a>).</li> <li>Fixed: <code>no-descending-specificity</code> & <code>no-duplicate-selectors</code> false negatives for equivalent compound selectors (<a href="https://redirect.github.com/stylelint/stylelint/issues/8977">#8977</a>) (<a href="https://github.com/kovsu"><code>@kovsu</code></a>).</li> <li>Fixed: <code>no-invalid-position-declaration</code> false positives for <code>@mixin</code> and <code>@scope</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9120">#9120</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Fixed: <code>property-no-unknown</code> false negatives for <code>types</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9117">#9117</a>) (<a href="https://github.com/Mouvedia"><code>@Mouvedia</code></a>).</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md">stylelint's changelog</a>.</em></p> <blockquote> <h2>17.5.0 - 2026-03-19</h2> <p>It deprecates two rule options, adds 1 rule option and fixes 7 bugs. We've also released <a href="https://github.com/stylelint/vscode-stylelint/releases/tag/2.1.0"><code>2.1.0</code></a> of <a href="https://marketplace.visualstudio.com/items?itemName=stylelint.vscode-stylelint">our VS Code extension</a>, which adds 8 new requested features, and our <a href="https://www.npmjs.com/package/@stylelint/language-server">first release</a> of the Stylelint Language Server.</p> <ul> <li>Deprecated: <code>*syntax</code> options from <code>declaration-property-value-no-unknown</code> (<a href="https://redirect.github.com/stylelint/stylelint/pull/9102">#9102</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Added: <code>ignoreMediaFeatureNameValues: {}</code> to <code>media-feature-name-value-no-unknown</code> (<a href="https://redirect.github.com/stylelint/stylelint/pull/8976">#8976</a>) (<a href="https://github.com/kovsu"><code>@kovsu</code></a>).</li> <li>Fixed: <code>node_modules</code> not ignored when using <code>codeFilename</code> in Node.js API (<a href="https://redirect.github.com/stylelint/stylelint/pull/9130">#9130</a>) (<a href="https://github.com/adalinesimonian"><code>@adalinesimonian</code></a>).</li> <li>Fixed: <code>Error TS7016</code> for imported <code>css-tree</code> types (<a href="https://redirect.github.com/stylelint/stylelint/pull/9133">#9133</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Fixed: <code>declaration-property-value-keyword-no-deprecated</code> false positives for function arguments (<a href="https://redirect.github.com/stylelint/stylelint/pull/9116">#9116</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Fixed: <code>declaration-property-value-no-unknown</code> false positives for <code>calc-size()</code> containing <code>size</code> keyword (<a href="https://redirect.github.com/stylelint/stylelint/pull/9105">#9105</a>) (<a href="https://github.com/hriztam"><code>@hriztam</code></a>).</li> <li>Fixed: <code>no-descending-specificity</code> & <code>no-duplicate-selectors</code> false negatives for equivalent compound selectors (<a href="https://redirect.github.com/stylelint/stylelint/pull/8977">#8977</a>) (<a href="https://github.com/kovsu"><code>@kovsu</code></a>).</li> <li>Fixed: <code>no-invalid-position-declaration</code> false positives for <code>@mixin</code> and <code>@scope</code> (<a href="https://redirect.github.com/stylelint/stylelint/pull/9120">#9120</a>) (<a href="https://github.com/ragini-pandey"><code>@ragini-pandey</code></a>).</li> <li>Fixed: <code>property-no-unknown</code> false negatives for <code>types</code> (<a href="https://redirect.github.com/stylelint/stylelint/pull/9117">#9117</a>) (<a href="https://github.com/Mouvedia"><code>@Mouvedia</code></a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/stylelint/stylelint/commit/8d0198af1bfb6a144d8fce9a094754e41c148237"><code>8d0198a</code></a> Release 17.5.0 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9160">#9160</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/3ba50ac3e6e915774a587ff119c0b609b506705e"><code>3ba50ac</code></a> Add <code>ignoreMediaFeatureNameValues: {}</code> to `media-feature-name-value-no-unknow...</li> <li><a href="https://github.com/stylelint/stylelint/commit/77dfd01d01d38711e35e8dead4440df179698808"><code>77dfd01</code></a> Fix <code>no-invalid-position-declaration</code> false positives for <code>@mixin</code> and `@scop...</li> <li><a href="https://github.com/stylelint/stylelint/commit/7cde2d0ccf5547a28a8f7a6be56e505441a6f437"><code>7cde2d0</code></a> Fix <code>declaration-property-value-keyword-no-deprecated</code> false positives for fu...</li> <li><a href="https://github.com/stylelint/stylelint/commit/7b10658abb77a2ab309adca2f077062d80467f3a"><code>7b10658</code></a> Fix <code>declaration-property-value-no-unknown</code> false positives for <code>calc-size()</code>...</li> <li><a href="https://github.com/stylelint/stylelint/commit/e5b9ec7ad4437eae9dd9b2a7677b785dd25c51a3"><code>e5b9ec7</code></a> Deprecate <code>*syntax</code> options from <code>declaration-property-value-no-unknown</code> (<a href="https://redirect.github.com/stylelint/stylelint/issues/9102">#9102</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/5bd2d21e8a6b47f529314284d162e6dcb37ef681"><code>5bd2d21</code></a> Bump css-tree from 3.1.0 to 3.2.1 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9158">#9158</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/995caf4ea7c7fd0e352cdec026a3edd9af6b665f"><code>995caf4</code></a> Bump eslint from 10.0.2 to 10.0.3 in the eslint group (<a href="https://redirect.github.com/stylelint/stylelint/issues/9156">#9156</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/f5f6dddc6b1b4e11dfc701dc40ee4b496252e848"><code>f5f6ddd</code></a> Bump lint-staged from 16.2.7 to 16.3.3 (<a href="https://redirect.github.com/stylelint/stylelint/issues/9159">#9159</a>)</li> <li><a href="https://github.com/stylelint/stylelint/commit/68948180cd615f91baf2bc19d5999be814102f2b"><code>6894818</code></a> Bump the jest group with 2 updates (<a href="https://redirect.github.com/stylelint/stylelint/issues/9157">#9157</a>)</li> <li>Additional commits viewable in <a href="https://github.com/stylelint/stylelint/compare/17.4.0...17.5.0">compare view</a></li> </ul> </details> <details> <summary>Install script changes</summary> <p>This version modifies <code>prepare</code> script that runs during installation. Review the package contents before updating.</p> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
be1723d275 |
chore(deps-dev): Bump flatted from 3.3.3 to 3.4.2 (#1729)
Bumps [flatted](https://github.com/WebReflection/flatted) from 3.3.3 to 3.4.2. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7"><code>3bf0909</code></a> 3.4.2</li> <li><a href="https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802"><code>885ddcc</code></a> fix CWE-1321</li> <li><a href="https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3"><code>0bdba70</code></a> added flatted-view to the benchmark</li> <li><a href="https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20"><code>2a02dce</code></a> 3.4.1</li> <li><a href="https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416"><code>fba4e8f</code></a> Merge pull request <a href="https://redirect.github.com/WebReflection/flatted/issues/89">#89</a> from WebReflection/python-fix</li> <li><a href="https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7"><code>5fe8648</code></a> added "when in Rome" also a test for PHP</li> <li><a href="https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0"><code>53517ad</code></a> some minor improvement</li> <li><a href="https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f"><code>b3e2a0c</code></a> Fixing recursion issue in Python too</li> <li><a href="https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad"><code>c4b46db</code></a> Add SECURITY.md for security policy and reporting</li> <li><a href="https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988"><code>f86d071</code></a> Create dependabot.yml for version updates</li> <li>Additional commits viewable in <a href="https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/maplibre/maputnik/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
da98c58df0 |
chore(deps-dev): Bump typescript-eslint from 8.57.0 to 8.57.1 (#1728)
Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 8.57.0 to 8.57.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases">typescript-eslint's releases</a>.</em></p> <blockquote> <h2>v8.57.1</h2> <h2>8.57.1 (2026-03-16)</h2> <h3>🩹 Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [prefer-optional-chain] no report for property on intersection type (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12126">#12126</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Newton Yuan <a href="https://github.com/NewtonYuan"><code>@NewtonYuan</code></a></li> </ul> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.1">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md">typescript-eslint's changelog</a>.</em></p> <blockquote> <h2>8.57.1 (2026-03-16)</h2> <p>This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.</p> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.1">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/c7c38aa252d7bf6708a225aebedc57686ac33dcd"><code>c7c38aa</code></a> chore(release): publish 8.57.1</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v8.57.1/packages/typescript-eslint">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
1aaae625eb |
chore(deps): Bump maplibre-gl from 5.19.0 to 5.20.2 (#1726)
Bumps [maplibre-gl](https://github.com/maplibre/maplibre-gl-js) from 5.19.0 to 5.20.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/maplibre/maplibre-gl-js/releases">maplibre-gl's releases</a>.</em></p> <blockquote> <h2>v5.20.2</h2> <h3>🐞 Bug fixes</h3> <ul> <li>Fix update GeoJSON when using diff update by updating geojson-vt package (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7257">#7257</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> </ul> <h2>v5.20.1</h2> <h3>🐞 Bug fixes</h3> <ul> <li>Fix cannot read properties of undefined (reading 'range') by updating geojson-vt package (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7245">#7245</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> <li>Fix a bug where <code>raster-resampling: nearest</code> was not applied as expected (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7247">#7247</a>) (by <a href="https://github.com/yano-h"><code>@yano-h</code></a>)</li> </ul> <h2>v5.20.0</h2> <h3>✨ Features and improvements</h3> <ul> <li>Add Etag unmodified support to optimize vector tile reloading (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7074">#7074</a>) (by [<a href="https://github.com/rivkamatan"><code>@rivkamatan</code></a>](<a href="https://github.com/rivkamatan">https://github.com/rivkamatan</a> and <a href="https://github.com/wayofthefuture"><code>@wayofthefuture</code></a>)</li> <li>Add <code>boxZoom.boxZoomEnd</code> option to customize the action after Shift-drag box selection (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/6397">#6397</a>) (by <a href="https://github.com/itisyb"><code>@itisyb</code></a>)</li> <li>Implement <code>resampling</code> paint property for raster, hillshade, and color-relief layers (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7194">#7074</a>) (by <a href="https://github.com/larsmaxfield"><code>@larsmaxfield</code></a>)</li> <li>Add updateable support for GeoJSON-VT (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7172">#7172</a>) (by <a href="https://github.com/wayofthefuture"><code>@wayofthefuture</code></a> and <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> <li>Add example for 3D Tiles using three.js (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7198">#7198</a>) (by <a href="https://github.com/hh-hang"><code>@hh-hang</code></a>)</li> </ul> <h3>🐞 Bug fixes</h3> <ul> <li>Fix: Distance to tile is calculated incorrectly in globe projection for high pitch angles (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7219">#7219</a>) (by <a href="https://github.com/jtfedd"><code>@jtfedd</code></a>)</li> <li>Fix: Tiles are not cleared when using vector tile source <code>setUrl/setTiles</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7185">#7185</a>) (by <a href="https://github.com/madoci"><code>@madoci</code></a>)</li> <li>Fix: Allow opaque origins ("null") in Actor message filtering (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7047">#7047</a>) (by <a href="https://github.com/pcardinal"><code>@pcardinal</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/maplibre/maplibre-gl-js/blob/main/CHANGELOG.md">maplibre-gl's changelog</a>.</em></p> <blockquote> <h2>5.20.2</h2> <h3>🐞 Bug fixes</h3> <ul> <li>Fix update GeoJSON when using diff update by updating geojson-vt package (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7257">#7257</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> </ul> <h2>5.20.1</h2> <h3>🐞 Bug fixes</h3> <ul> <li>Fix cannot read properties of undefined (reading 'range') by updating geojson-vt package (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7245">#7245</a>) (by <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> <li>Fix a bug where <code>raster-resampling: nearest</code> was not applied as expected (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7247">#7247</a>) (by <a href="https://github.com/yano-h"><code>@yano-h</code></a>)</li> </ul> <h2>5.20.0</h2> <h3>✨ Features and improvements</h3> <ul> <li>Add Etag unmodified support to optimize vector tile reloading (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7074">#7074</a>) (by [<a href="https://github.com/rivkamatan"><code>@rivkamatan</code></a>](<a href="https://github.com/rivkamatan">https://github.com/rivkamatan</a> and <a href="https://github.com/wayofthefuture"><code>@wayofthefuture</code></a>)</li> <li>Add <code>boxZoom.boxZoomEnd</code> option to customize the action after Shift-drag box selection (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/6397">#6397</a>) (by <a href="https://github.com/itisyb"><code>@itisyb</code></a>)</li> <li>Implement <code>resampling</code> paint property for raster, hillshade, and color-relief layers (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7194">#7074</a>) (by <a href="https://github.com/larsmaxfield"><code>@larsmaxfield</code></a>)</li> <li>Add updateable support for GeoJSON-VT (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7172">#7172</a>) (by <a href="https://github.com/wayofthefuture"><code>@wayofthefuture</code></a> and <a href="https://github.com/HarelM"><code>@HarelM</code></a>)</li> <li>Add example for 3D Tiles using three.js (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7198">#7198</a>) (by <a href="https://github.com/hh-hang"><code>@hh-hang</code></a>)</li> </ul> <h3>🐞 Bug fixes</h3> <ul> <li>Fix: Distance to tile is calculated incorrectly in globe projection for high pitch angles (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7219">#7219</a>) (by <a href="https://github.com/jtfedd"><code>@jtfedd</code></a>)</li> <li>Fix: Tiles are not cleared when using vector tile source <code>setUrl/setTiles</code> (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7185">#7185</a>) (by <a href="https://github.com/madoci"><code>@madoci</code></a>)</li> <li>Fix: Allow opaque origins ("null") in Actor message filtering (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7047">#7047</a>) (by <a href="https://github.com/pcardinal"><code>@pcardinal</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/109fa99ea55c16a26cf8ce294d96bf4b0b93524a"><code>109fa99</code></a> Bump js version to 5.20.2 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7274">#7274</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/44a70ea41ebc5fb08460dd2d6f32fda45277da28"><code>44a70ea</code></a> chore(deps-dev): bump puppeteer from 24.39.0 to 24.39.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7269">#7269</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/34afdcaed628319a015aef59682272b0b81f0d38"><code>34afdca</code></a> chore(deps): bump <code>@maplibre/geojson-vt</code> from 6.0.2 to 6.0.3 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7270">#7270</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/8dce8fbce0a8d7ef05c1727f821e3db5f8c3079b"><code>8dce8fb</code></a> chore(deps-dev): bump <code>@vitest/eslint-plugin</code> in the vitest group (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7268">#7268</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/ed6aa7159b682fb0269f4ec108c08b8893615fb9"><code>ed6aa71</code></a> Remove unused import 'vi' from raster_style_layer test (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7266">#7266</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/eb88b98ddb9ed88b427f4637a4507f8a548ad48e"><code>eb88b98</code></a> chore(deps-dev): bump puppeteer from 24.38.0 to 24.39.0 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7264">#7264</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/4dcf61778a72ca2d2aa66faa261185cb730cb5ef"><code>4dcf617</code></a> chore(deps-dev): bump <code>@types/node</code> from 25.4.0 to 25.5.0 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7263">#7263</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/52e6738ea5000bca68266e8876e4e2de7491fc80"><code>52e6738</code></a> chore(deps-dev): bump the vitest group with 4 updates (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7262">#7262</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/38e2bc073b63c02a7826e4a5b5dc1214e255d5bc"><code>38e2bc0</code></a> chore(deps-dev): bump undici from 7.21.0 to 7.24.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7259">#7259</a>)</li> <li><a href="https://github.com/maplibre/maplibre-gl-js/commit/f293c20bb7317d0c4704434d21d581c2a2a454ba"><code>f293c20</code></a> Bump js version to 5.20.1 (<a href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7256">#7256</a>)</li> <li>Additional commits viewable in <a href="https://github.com/maplibre/maplibre-gl-js/compare/v5.19.0...v5.20.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
ea415611a4 |
chore(deps-dev): Bump i18next-cli from 1.50.1 to 1.50.3 (#1725)
Bumps [i18next-cli](https://github.com/i18next/i18next-cli) from 1.50.1 to 1.50.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md">i18next-cli's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.2...v1.50.3">1.50.3</a> - 2026-03-16</h2> <ul> <li>Improve <code>status</code> output to distinguish between <strong>untranslated</strong> keys (present in the file with an empty value — needs translation) and <strong>absent</strong> keys (missing from the file entirely — probably structural problem). Both still cause a non-zero exit. Addresses <a href="https://redirect.github.com/i18next/i18next-cli/issues/220">#220</a>.</li> </ul> <h2><a href="https://github.com/i18next/i18next-cli/compare/v1.50.1...v1.50.2">1.50.2</a> - 2026-03-16</h2> <ul> <li>try to address <a href="https://redirect.github.com/i18next/i18next-cli/issues/218">#218</a> by updating <code>i18next-resources-for-ts</code> dependency</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/i18next/i18next-cli/commit/1770d8c7616e4d328adbe8a980e1862f5414a1ec"><code>1770d8c</code></a> 1.50.3</li> <li><a href="https://github.com/i18next/i18next-cli/commit/77936ea38014335d60ff276e2d73756cd340a70b"><code>77936ea</code></a> improve status output to help distinguish <a href="https://redirect.github.com/i18next/i18next-cli/issues/220">#220</a></li> <li><a href="https://github.com/i18next/i18next-cli/commit/6ea3b097f3a4976e9da59247516f5b302d1388d7"><code>6ea3b09</code></a> 1.50.2</li> <li><a href="https://github.com/i18next/i18next-cli/commit/ee054be255c8bfca54129f026d99aec077c81ef9"><code>ee054be</code></a> try to address <a href="https://redirect.github.com/i18next/i18next-cli/issues/218">#218</a> by updating <code>i18next-resources-for-ts</code> dependency</li> <li>See full diff in <a href="https://github.com/i18next/i18next-cli/compare/v1.50.1...v1.50.3">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
9be7f9dfb2 |
chore(deps): Bump github/codeql-action from 4.32.6 to 4.33.0 (#1724)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.6 to 4.33.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/releases">github/codeql-action's releases</a>.</em></p> <blockquote> <h2>v4.33.0</h2> <ul> <li> <p>Upcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. <a href="https://redirect.github.com/github/codeql-action/pull/3562">#3562</a></p> <p>To opt out of this change:</p> <ul> <li><strong>Repositories owned by an organization:</strong> Create a custom repository property with the name <code>github-codeql-file-coverage-on-prs</code> and the type "True/false", then set this property to <code>true</code> in the repository's settings. For more information, see <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">Managing custom properties for repositories in your organization</a>. Alternatively, if you are using an advanced setup workflow, you can set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using default setup:</strong> Switch to an advanced setup workflow and set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using advanced setup:</strong> Set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> </ul> </li> <li> <p>Fixed <a href="https://redirect.github.com/github/codeql-action/issues/3555">a bug</a> which caused the CodeQL Action to fail loading repository properties if a "Multi select" repository property was configured for the repository. <a href="https://redirect.github.com/github/codeql-action/pull/3557">#3557</a></p> </li> <li> <p>The CodeQL Action now loads <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">custom repository properties</a> on GitHub Enterprise Server, enabling the customization of features such as <code>github-codeql-disable-overlay</code> that was previously only available on GitHub.com. <a href="https://redirect.github.com/github/codeql-action/pull/3559">#3559</a></p> </li> <li> <p>Once <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries</a> can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. <a href="https://redirect.github.com/github/codeql-action/pull/3563">#3563</a></p> </li> <li> <p>Fixed the retry mechanism for database uploads. Previously this would fail with the error "Response body object should not be disturbed or locked". <a href="https://redirect.github.com/github/codeql-action/pull/3564">#3564</a></p> </li> <li> <p>A warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. <a href="https://redirect.github.com/github/codeql-action/pull/3570">#3570</a></p> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>[UNRELEASED]</h2> <ul> <li>Added an experimental change which disables TRAP caching when <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3569">#3569</a></li> </ul> <h2>4.33.0 - 16 Mar 2026</h2> <ul> <li> <p>Upcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. <a href="https://redirect.github.com/github/codeql-action/pull/3562">#3562</a></p> <p>To opt out of this change:</p> <ul> <li><strong>Repositories owned by an organization:</strong> Create a custom repository property with the name <code>github-codeql-file-coverage-on-prs</code> and the type "True/false", then set this property to <code>true</code> in the repository's settings. For more information, see <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">Managing custom properties for repositories in your organization</a>. Alternatively, if you are using an advanced setup workflow, you can set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using default setup:</strong> Switch to an advanced setup workflow and set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> <li><strong>User-owned repositories using advanced setup:</strong> Set the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to <code>true</code> in your workflow.</li> </ul> </li> <li> <p>Fixed <a href="https://redirect.github.com/github/codeql-action/issues/3555">a bug</a> which caused the CodeQL Action to fail loading repository properties if a "Multi select" repository property was configured for the repository. <a href="https://redirect.github.com/github/codeql-action/pull/3557">#3557</a></p> </li> <li> <p>The CodeQL Action now loads <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">custom repository properties</a> on GitHub Enterprise Server, enabling the customization of features such as <code>github-codeql-disable-overlay</code> that was previously only available on GitHub.com. <a href="https://redirect.github.com/github/codeql-action/pull/3559">#3559</a></p> </li> <li> <p>Once <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries</a> can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. <a href="https://redirect.github.com/github/codeql-action/pull/3563">#3563</a></p> </li> <li> <p>Fixed the retry mechanism for database uploads. Previously this would fail with the error "Response body object should not be disturbed or locked". <a href="https://redirect.github.com/github/codeql-action/pull/3564">#3564</a></p> </li> <li> <p>A warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. <a href="https://redirect.github.com/github/codeql-action/pull/3570">#3570</a></p> </li> </ul> <h2>4.32.6 - 05 Mar 2026</h2> <ul> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3">2.24.3</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3548">#3548</a></li> </ul> <h2>4.32.5 - 02 Mar 2026</h2> <ul> <li>Repositories owned by an organization can now set up the <code>github-codeql-disable-overlay</code> custom repository property to disable <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis for CodeQL</a>. First, create a custom repository property with the name <code>github-codeql-disable-overlay</code> and the type "True/false" in the organization's settings. Then in the repository's settings, set this property to <code>true</code> to disable improved incremental analysis. For more information, see <a href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization">Managing custom properties for repositories in your organization</a>. This feature is not yet available on GitHub Enterprise Server. <a href="https://redirect.github.com/github/codeql-action/pull/3507">#3507</a></li> <li>Added an experimental change so that when <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a> fails on a runner — potentially due to insufficient disk space — the failure is recorded in the Actions cache so that subsequent runs will automatically skip improved incremental analysis until something changes (e.g. a larger runner is provisioned or a new CodeQL version is released). We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3487">#3487</a></li> <li>The minimum memory check for improved incremental analysis is now skipped for CodeQL 2.24.3 and later, which has reduced peak RAM usage. <a href="https://redirect.github.com/github/codeql-action/pull/3515">#3515</a></li> <li>Reduced log levels for best-effort private package registry connection check failures to reduce noise from workflow annotations. <a href="https://redirect.github.com/github/codeql-action/pull/3516">#3516</a></li> <li>Added an experimental change which lowers the minimum disk space requirement for <a href="https://redirect.github.com/github/roadmap/issues/1158">improved incremental analysis</a>, enabling it to run on standard GitHub Actions runners. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3498">#3498</a></li> <li>Added an experimental change which allows the <code>start-proxy</code> action to resolve the CodeQL CLI version from feature flags instead of using the linked CLI bundle version. We expect to roll this change out to everyone in March. <a href="https://redirect.github.com/github/codeql-action/pull/3512">#3512</a></li> <li>The previously experimental changes from versions 4.32.3, 4.32.4, 3.32.3 and 3.32.4 are now enabled by default. <a href="https://redirect.github.com/github/codeql-action/pull/3503">#3503</a>, <a href="https://redirect.github.com/github/codeql-action/pull/3504">#3504</a></li> </ul> <h2>4.32.4 - 20 Feb 2026</h2> <ul> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.2">2.24.2</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3493">#3493</a></li> <li>Added an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries are configured</a>. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. <a href="https://redirect.github.com/github/codeql-action/pull/3473">#3473</a></li> <li>When the CodeQL Action is run <a href="https://docs.github.com/en/code-security/how-tos/scan-code-for-vulnerabilities/troubleshooting/troubleshooting-analysis-errors/logs-not-detailed-enough#creating-codeql-debugging-artifacts-for-codeql-default-setup">with debugging enabled in Default Setup</a> and <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries are configured</a>, the "Setup proxy for registries" step will output additional diagnostic information that can be used for troubleshooting. <a href="https://redirect.github.com/github/codeql-action/pull/3486">#3486</a></li> <li>Added a setting which allows the CodeQL Action to enable network debugging for Java programs. This will help GitHub staff support customers with troubleshooting issues in GitHub-managed CodeQL workflows, such as Default Setup. This setting can only be enabled by GitHub staff. <a href="https://redirect.github.com/github/codeql-action/pull/3485">#3485</a></li> <li>Added a setting which enables GitHub-managed workflows, such as Default Setup, to use a <a href="https://github.com/dsp-testing/codeql-cli-nightlies">nightly CodeQL CLI release</a> instead of the latest, stable release that is used by default. This will help GitHub staff support customers whose analyses for a given repository or organization require early access to a change in an upcoming CodeQL CLI release. This setting can only be enabled by GitHub staff. <a href="https://redirect.github.com/github/codeql-action/pull/3484">#3484</a></li> </ul> <h2>4.32.3 - 13 Feb 2026</h2> <ul> <li>Added experimental support for testing connections to <a href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries">private package registries</a>. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for Default Setup. <a href="https://redirect.github.com/github/codeql-action/pull/3466">#3466</a></li> </ul> <h2>4.32.2 - 05 Feb 2026</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/github/codeql-action/commit/b1bff81932f5cdfc8695c7752dcee935dcd061c8"><code>b1bff81</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3574">#3574</a> from github/update-v4.32.7-7dd76e6bf</li> <li><a href="https://github.com/github/codeql-action/commit/e682234222f60d9549e37004a04a8f097bbd5798"><code>e682234</code></a> Add changelog entry for <a href="https://redirect.github.com/github/codeql-action/issues/3570">#3570</a></li> <li><a href="https://github.com/github/codeql-action/commit/95be291f41a39216811b3ce1a63a8df71d40d405"><code>95be291</code></a> Bump minor version</li> <li><a href="https://github.com/github/codeql-action/commit/59bcb6025e4788109a6bb8f7ac4ad9c6a8d6beeb"><code>59bcb60</code></a> Update changelog for v4.32.7</li> <li><a href="https://github.com/github/codeql-action/commit/7dd76e6bf79d24133aa649887a6ee01d8b063816"><code>7dd76e6</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3572">#3572</a> from github/mbg/pr-checks/eslint</li> <li><a href="https://github.com/github/codeql-action/commit/e3200e331bf51e47d45a8a5645d2a125c8a8a643"><code>e3200e3</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3563">#3563</a> from github/mbg/private-registry/oidc</li> <li><a href="https://github.com/github/codeql-action/commit/4c356c71a28eb968dbcf4fb717211e82f406874f"><code>4c356c7</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/3570">#3570</a> from github/mbg/repo-props/warn-on-unexpected-props</li> <li><a href="https://github.com/github/codeql-action/commit/b4937c19e53d395cc647fe16c4e00788a4e7ded3"><code>b4937c1</code></a> Only emit one message with accumulated property names</li> <li><a href="https://github.com/github/codeql-action/commit/136b8ab3777165e3ec7a19faa7ef9732ace305da"><code>136b8ab</code></a> Remove <code>cache-dependency-path</code> options as well</li> <li><a href="https://github.com/github/codeql-action/commit/a5aba5952cd5add76ec9f971654d61461a3ac2bd"><code>a5aba59</code></a> Remove <code>package-lock.json</code> that's no longer needed</li> <li>Additional commits viewable in <a href="https://github.com/github/codeql-action/compare/0d579ffd059c29b07949a3cce3983f0780820c98...b1bff81932f5cdfc8695c7752dcee935dcd061c8">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
bb8416791a |
chore(deps): Bump slugify from 1.6.6 to 1.6.8 (#1719)
Bumps [slugify](https://github.com/simov/slugify) from 1.6.6 to 1.6.8. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/simov/slugify/blob/master/CHANGELOG.md">slugify's changelog</a>.</em></p> <blockquote> <h2>Change Log</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/simov/slugify/commit/fbbb8ff5b8f04d6c8048675dd23a09d8343cf62c"><code>fbbb8ff</code></a> 1.6.8</li> <li><a href="https://github.com/simov/slugify/commit/a71a725abe37521d9fc233eb4053c5a19125a531"><code>a71a725</code></a> patch: fix package.json</li> <li><a href="https://github.com/simov/slugify/commit/21b2bfcee111f8b8892861414c9fb27d6b64f440"><code>21b2bfc</code></a> 1.6.7</li> <li><a href="https://github.com/simov/slugify/commit/f1b83a400839054bc16f4900806f7366267517a6"><code>f1b83a4</code></a> fix: change declare module to namespace in slugify.d.ts (<a href="https://redirect.github.com/simov/slugify/issues/206">#206</a>)</li> <li><a href="https://github.com/simov/slugify/commit/b94fedbf53411562aaf7f4d176a29e5669112c06"><code>b94fedb</code></a> CI: add Node 24 (<a href="https://redirect.github.com/simov/slugify/issues/202">#202</a>)</li> <li><a href="https://github.com/simov/slugify/commit/c99c574fcbd3468e380ecbda46a6d157da261d74"><code>c99c574</code></a> Add Node.js 22 to CI & update CI actions (<a href="https://redirect.github.com/simov/slugify/issues/193">#193</a>)</li> <li><a href="https://github.com/simov/slugify/commit/4860d7efd6734af8c716f26cd246aa5b1e503163"><code>4860d7e</code></a> Merge pull request <a href="https://redirect.github.com/simov/slugify/issues/188">#188</a> from stscoundrel/patch-1</li> <li><a href="https://github.com/simov/slugify/commit/6dc0bba401df6d2c4bf231ce79e46847b7f33fa6"><code>6dc0bba</code></a> Run CI in Node.js 20</li> <li><a href="https://github.com/simov/slugify/commit/daab9285fa8869c4b999f4ef50f0e3ca5b7a2129"><code>daab928</code></a> Update changelog</li> <li>See full diff in <a href="https://github.com/simov/slugify/compare/v1.6.6...v1.6.8">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
9f52e69c86 |
chore(deps): Bump react-icons from 5.5.0 to 5.6.0 (#1692)
Bumps [react-icons](https://github.com/react-icons/react-icons) from 5.5.0 to 5.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/react-icons/react-icons/releases">react-icons's releases</a>.</em></p> <blockquote> <h2>v5.6.0</h2> <h2>What's Changed</h2> <ul> <li>Bump prismjs from 1.29.0 to 1.30.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1033">react-icons/react-icons#1033</a></li> <li>Bump <code>@babel/helpers</code> from 7.23.2 to 7.26.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1036">react-icons/react-icons#1036</a></li> <li>Bump http-proxy-middleware from 2.0.7 to 2.0.9 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1041">react-icons/react-icons#1041</a></li> <li>Bump form-data from 3.0.1 to 3.0.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1058">react-icons/react-icons#1058</a></li> <li>Bump vite from 5.4.14 to 5.4.20 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1071">react-icons/react-icons#1071</a></li> <li>upgrade packages by <a href="https://github.com/kamijin-fanta"><code>@kamijin-fanta</code></a> in <a href="https://redirect.github.com/react-icons/react-icons/pull/1075">react-icons/react-icons#1075</a></li> <li>Bump tar from 6.2.0 to 6.2.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1078">react-icons/react-icons#1078</a></li> <li>Bump vite from 6.3.6 to 6.4.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1081">react-icons/react-icons#1081</a></li> <li>Bump tmp from 0.2.3 to 0.2.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1077">react-icons/react-icons#1077</a></li> <li>Bump glob from 11.0.3 to 11.1.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1089">react-icons/react-icons#1089</a></li> <li>Bump <code>@babel/runtime</code> from 7.23.2 to 7.28.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1073">react-icons/react-icons#1073</a></li> <li>Bump node-forge from 1.3.1 to 1.3.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1092">react-icons/react-icons#1092</a></li> <li>Bump mdast-util-to-hast from 13.0.2 to 13.2.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1094">react-icons/react-icons#1094</a></li> <li>Bump undici from 7.16.0 to 7.18.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1103">react-icons/react-icons#1103</a></li> <li>Bump devalue from 5.3.2 to 5.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1104">react-icons/react-icons#1104</a></li> <li>Bump h3 from 1.15.4 to 1.15.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1105">react-icons/react-icons#1105</a></li> <li>Bump diff from 5.2.0 to 5.2.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1107">react-icons/react-icons#1107</a></li> <li>Bump webpack from 5.94.0 to 5.104.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1110">react-icons/react-icons#1110</a></li> <li>Bump jsonpath from 1.1.1 to 1.2.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1113">react-icons/react-icons#1113</a></li> <li>Bump devalue from 5.6.2 to 5.6.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1115">react-icons/react-icons#1115</a></li> <li>Bump astro from 5.14.1 to 5.15.9 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1091">react-icons/react-icons#1091</a></li> <li>Bump ajv from 6.12.6 to 6.14.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/react-icons/react-icons/pull/1116">react-icons/react-icons#1116</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/react-icons/react-icons/compare/v5.5.0...v5.6.0">https://github.com/react-icons/react-icons/compare/v5.5.0...v5.6.0</a></p> <table> <thead> <tr> <th>Icon Library</th> <th>License</th> <th>Version</th> <th align="right">Count</th> </tr> </thead> <tbody> <tr> <td><a href="https://circumicons.com/">Circum Icons</a></td> <td><a href="https://github.com/Klarr-Agency/Circum-Icons/blob/main/LICENSE">MPL-2.0 license</a></td> <td>1.0.0</td> <td align="right">288</td> </tr> <tr> <td><a href="https://fontawesome.com/">Font Awesome 5</a></td> <td><a href="https://creativecommons.org/licenses/by/4.0/">CC BY 4.0 License</a></td> <td>5.15.4-3-gafecf2a</td> <td align="right">1612</td> </tr> <tr> <td><a href="https://fontawesome.com/">Font Awesome 6</a></td> <td><a href="https://creativecommons.org/licenses/by/4.0/">CC BY 4.0 License</a></td> <td>6.7.2-1-g840c215</td> <td align="right">2060</td> </tr> <tr> <td><a href="https://ionicons.com/">Ionicons 4</a></td> <td><a href="https://github.com/ionic-team/ionicons/blob/master/LICENSE">MIT</a></td> <td>4.6.3</td> <td align="right">696</td> </tr> <tr> <td><a href="https://ionicons.com/">Ionicons 5</a></td> <td><a href="https://github.com/ionic-team/ionicons/blob/master/LICENSE">MIT</a></td> <td>5.5.4</td> <td align="right">1332</td> </tr> <tr> <td><a href="http://google.github.io/material-design-icons/">Material Design icons</a></td> <td><a href="https://github.com/google/material-design-icons/blob/master/LICENSE">Apache License Version 2.0</a></td> <td>4.0.0-142-gbb04090f93</td> <td align="right">4341</td> </tr> <tr> <td><a href="http://s-ings.com/typicons/">Typicons</a></td> <td><a href="https://creativecommons.org/licenses/by-sa/3.0/">CC BY-SA 3.0</a></td> <td>2.1.2</td> <td align="right">336</td> </tr> <tr> <td><a href="https://octicons.github.com/">Github Octicons icons</a></td> <td><a href="https://github.com/primer/octicons/blob/master/LICENSE">MIT</a></td> <td>18.3.0</td> <td align="right">264</td> </tr> <tr> <td><a href="https://feathericons.com/">Feather</a></td> <td><a href="https://github.com/feathericons/feather/blob/master/LICENSE">MIT</a></td> <td>4.29.2</td> <td align="right">287</td> </tr> <tr> <td><a href="https://lucide.dev/">Lucide</a></td> <td><a href="https://github.com/lucide-icons/lucide/blob/main/LICENSE">ISC</a></td> <td>0.462.0</td> <td align="right">1541</td> </tr> <tr> <td><a href="https://game-icons.net/">Game Icons</a></td> <td><a href="https://creativecommons.org/licenses/by/3.0/">CC BY 3.0</a></td> <td>12920d6565588f0512542a3cb0cdfd36a497f910</td> <td align="right">4040</td> </tr> <tr> <td><a href="https://erikflowers.github.io/weather-icons/">Weather Icons</a></td> <td><a href="http://scripts.sil.org/OFL">SIL OFL 1.1</a></td> <td>2.0.12</td> <td align="right">219</td> </tr> <tr> <td><a href="https://vorillaz.github.io/devicons/">Devicons</a></td> <td><a href="https://opensource.org/licenses/MIT">MIT</a></td> <td>1.8.0</td> <td align="right">192</td> </tr> <tr> <td><a href="https://github.com/ant-design/ant-design-icons">Ant Design Icons</a></td> <td><a href="https://opensource.org/licenses/MIT">MIT</a></td> <td>4.4.2</td> <td align="right">831</td> </tr> <tr> <td><a href="https://github.com/twbs/icons">Bootstrap Icons</a></td> <td><a href="https://opensource.org/licenses/MIT">MIT</a></td> <td>1.13.1</td> <td align="right">2754</td> </tr> <tr> <td><a href="https://github.com/Remix-Design/RemixIcon">Remix Icon</a></td> <td><a href="http://www.apache.org/licenses/">Apache License Version 2.0</a></td> <td>4.6.0</td> <td align="right">3058</td> </tr> <tr> <td><a href="https://github.com/icons8/flat-color-icons">Flat Color Icons</a></td> <td><a href="https://opensource.org/licenses/MIT">MIT</a></td> <td>1.0.2</td> <td align="right">329</td> </tr> <tr> <td><a href="https://github.com/grommet/grommet-icons">Grommet-Icons</a></td> <td><a href="http://www.apache.org/licenses/">Apache License Version 2.0</a></td> <td>4.14.0</td> <td align="right">637</td> </tr> <tr> <td><a href="https://github.com/tailwindlabs/heroicons">Heroicons</a></td> <td><a href="https://opensource.org/licenses/MIT">MIT</a></td> <td>1.0.6</td> <td align="right">460</td> </tr> <tr> <td><a href="https://github.com/tailwindlabs/heroicons">Heroicons 2</a></td> <td><a href="https://opensource.org/licenses/MIT">MIT</a></td> <td>2.2.0</td> <td align="right">972</td> </tr> </tbody> </table> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/react-icons/react-icons/commit/6501a4156153b396d062deffed5ed2c8eb64a458"><code>6501a41</code></a> v5.6.0</li> <li><a href="https://github.com/react-icons/react-icons/commit/387e78027eeea4ef28df13b732e5906725ee3c2f"><code>387e780</code></a> update icons</li> <li><a href="https://github.com/react-icons/react-icons/commit/fb057e730c8f3bfb9b698ecf7f3f92ee3c43afd9"><code>fb057e7</code></a> 5.5.1-snapshot.0</li> <li><a href="https://github.com/react-icons/react-icons/commit/6f7475550af2cacfcfa87e4127b8803a3d5fee6c"><code>6f74755</code></a> update eslint</li> <li><a href="https://github.com/react-icons/react-icons/commit/73c281f3323d720a5cf8ff626ce4dd04e62afb88"><code>73c281f</code></a> Bump ajv from 6.12.6 to 6.14.0 (<a href="https://redirect.github.com/react-icons/react-icons/issues/1116">#1116</a>)</li> <li><a href="https://github.com/react-icons/react-icons/commit/3f2b26446f3943a2a11c083f2073e20c3f222c7b"><code>3f2b264</code></a> Bump astro from 5.14.1 to 5.15.9 (<a href="https://redirect.github.com/react-icons/react-icons/issues/1091">#1091</a>)</li> <li><a href="https://github.com/react-icons/react-icons/commit/04adc762186d4adc6428279cc6d9119f2894ae20"><code>04adc76</code></a> Bump devalue from 5.6.2 to 5.6.3 (<a href="https://redirect.github.com/react-icons/react-icons/issues/1115">#1115</a>)</li> <li><a href="https://github.com/react-icons/react-icons/commit/44a5e85bcc53a51950cb53f25f9f5ed8fdbdafb8"><code>44a5e85</code></a> Bump jsonpath from 1.1.1 to 1.2.1 (<a href="https://redirect.github.com/react-icons/react-icons/issues/1113">#1113</a>)</li> <li><a href="https://github.com/react-icons/react-icons/commit/e2c1d6ccc98ab477b7aa992bf1f9836b6eca80da"><code>e2c1d6c</code></a> Bump webpack from 5.94.0 to 5.104.1 (<a href="https://redirect.github.com/react-icons/react-icons/issues/1110">#1110</a>)</li> <li><a href="https://github.com/react-icons/react-icons/commit/f3dca028cec5bb6012b95dc03e3ff0efb71709b5"><code>f3dca02</code></a> Bump diff from 5.2.0 to 5.2.2 (<a href="https://redirect.github.com/react-icons/react-icons/issues/1107">#1107</a>)</li> <li>Additional commits viewable in <a href="https://github.com/react-icons/react-icons/compare/v5.5.0...v5.6.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
b319ffb41d |
chore(deps-dev): Bump typescript-eslint from 8.56.1 to 8.57.0 (#1707)
Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 8.56.1 to 8.57.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases">typescript-eslint's releases</a>.</em></p> <blockquote> <h2>v8.57.0</h2> <h2>8.57.0 (2026-03-09)</h2> <h3>🚀 Features</h3> <ul> <li><strong>eslint-plugin:</strong> [no-unnecessary-condition] allow literal loop conditions in for/do loops (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12080">#12080</a>)</li> </ul> <h3>🩹 Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [strict-void-return] false positives with overloads (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12055">#12055</a>)</li> <li><strong>eslint-plugin:</strong> handle statically analyzable computed keys in prefer-readonly (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12079">#12079</a>)</li> <li><strong>eslint-plugin:</strong> guard against negative paramIndex in no-useless-default-assignment (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12077">#12077</a>)</li> <li><strong>eslint-plugin:</strong> [prefer-promise-reject-errors] add allow <code>TypeOrValueSpecifier</code> to prefer-promise-reject-errors (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12094">#12094</a>)</li> <li><strong>eslint-plugin:</strong> [no-base-to-string] fix false positive for toString with overloads (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12089">#12089</a>)</li> <li><strong>typescript-estree:</strong> switch back to use <code>ts.getModifiers()</code> (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12034">#12034</a>)</li> <li><strong>typescript-estree:</strong> if the template literal is tagged and the text has an invalid escape, <code>cooked</code> will be <code>null</code> (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11355">#11355</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Brad Zacher <a href="https://github.com/bradzacher"><code>@bradzacher</code></a></li> <li>Brian Schlenker <a href="https://github.com/bschlenk"><code>@bschlenk</code></a></li> <li>Evyatar Daud <a href="https://github.com/StyleShit"><code>@StyleShit</code></a></li> <li>fisker Cheung <a href="https://github.com/fisker"><code>@fisker</code></a></li> <li>James Henry <a href="https://github.com/JamesHenry"><code>@JamesHenry</code></a></li> <li>Josh Goldberg</li> <li>Kirk Waiblinger <a href="https://github.com/kirkwaiblinger"><code>@kirkwaiblinger</code></a></li> <li>Moses Odutusin <a href="https://github.com/thebolarin"><code>@thebolarin</code></a></li> <li>Newton Yuan <a href="https://github.com/NewtonYuan"><code>@NewtonYuan</code></a></li> <li>SungHyun627 <a href="https://github.com/SungHyun627"><code>@SungHyun627</code></a></li> <li>Younsang Na <a href="https://github.com/nayounsang"><code>@nayounsang</code></a></li> </ul> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.0">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md">typescript-eslint's changelog</a>.</em></p> <blockquote> <h2>8.57.0 (2026-03-09)</h2> <p>This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.</p> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.0">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/2c6aeeec238dfea860b9f3c146a55f8f49f15cf5"><code>2c6aeee</code></a> chore(release): publish 8.57.0</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/f696dadfc37078efe4119ad2ab0609cde3e42766"><code>f696dad</code></a> chore: use pnpm catalog (<a href="https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint/issues/12047">#12047</a>)</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/a09921e2de2e8790e6a803016b825815ca9409d8"><code>a09921e</code></a> chore: update vitest to 4.x (<a href="https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint/issues/12071">#12071</a>)</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v8.57.0/packages/typescript-eslint">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
d3744615d7 |
chore(deps): Bump @codemirror/view from 6.39.17 to 6.40.0 (#1713)
Bumps [@codemirror/view](https://github.com/codemirror/view) from 6.39.17 to 6.40.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codemirror/view/blob/main/CHANGELOG.md"><code>@codemirror/view</code>'s changelog</a>.</em></p> <blockquote> <h2>6.40.0 (2026-03-12)</h2> <h3>Bug fixes</h3> <p>Fix a bug that caused Shift-Enter/Backspace/Delete on iOS to lose the shift modifier when delivered to key event handlers.</p> <p>Fix an issue where <code>EditorView.moveVertically</code> could move to the wrong place in wrapped lines with a large line height.</p> <p>Make sure the selection head associativity is properly set for mouse selections made with shift held down.</p> <h3>New features</h3> <p><code>WidgetType.updateDOM</code> is now called with the previous widget value as third argument.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codemirror/view/commit/4773b2e57860220c684bb0a2342b3a5efcf4d31a"><code>4773b2e</code></a> Mark version 6.40.0</li> <li><a href="https://github.com/codemirror/view/commit/773a0ee169a402fde2cabc3efc771c920344e667"><code>773a0ee</code></a> Properly track associativity for shift-click selections</li> <li><a href="https://github.com/codemirror/view/commit/3612d3f726f0182937c0260a32eae41460c6d4a7"><code>3612d3f</code></a> Bring back the vertical scan loop in moveVertically</li> <li><a href="https://github.com/codemirror/view/commit/bc583754aac90320fd8ca610d1e4cd2d01d69e18"><code>bc58375</code></a> Don't put Shift-Enter/Backspace/Del through the iOS pending key hack</li> <li><a href="https://github.com/codemirror/view/commit/fd252fada9523ced184b8db78c17211477062820"><code>fd252fa</code></a> Change WidgetType.updateDOM from type to this</li> <li><a href="https://github.com/codemirror/view/commit/9373f525a2aef0e7b2b7159470b8940f5b3d474a"><code>9373f52</code></a> Pass the old widget value to WidgetType.updateDOM</li> <li>See full diff in <a href="https://github.com/codemirror/view/compare/6.39.17...6.40.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |