[Deps] Safe dependency updates (2026-02-25)#1027
Draft
github-actions[bot] wants to merge 1 commit intomainfrom
Draft
[Deps] Safe dependency updates (2026-02-25)#1027github-actions[bot] wants to merge 1 commit intomainfrom
github-actions[bot] wants to merge 1 commit intomainfrom
Conversation
Updated packages (all within semver ranges): - @commitlint/cli: 20.4.1 -> 20.4.2 - @commitlint/config-conventional: 20.4.1 -> 20.4.2 - @types/node: 25.2.3 -> 25.3.0 - @typescript-eslint/eslint-plugin: 8.55.0 -> 8.56.1 - @typescript-eslint/parser: 8.55.0 -> 8.56.1 - eslint: 10.0.0 -> 10.0.2 - glob: 13.0.1 -> 13.0.6 - typescript-eslint: 8.55.0 -> 8.56.1 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
github-actions
bot
added
automated
dependencies
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Automated Safe Dependency Updates
This PR contains safe patch-level dependency updates verified to pass all existing tests.
Updated Dependencies
@commitlint/cli@commitlint/config-conventional@types/node@typescript-eslint/eslint-plugin@typescript-eslint/parsereslintglobtypescript-eslintSecurity Fixes Included
No HIGH/CRITICAL vulnerabilities were found. One MODERATE vulnerability (ajv ReDoS, GHSA-2g4f-4pwh-qvx6) was identified in a transitive dev dependency — not directly fixable without major version bumps.
Skipped Updates (Major Version Changes)
The following packages have newer major versions with breaking changes and were excluded:
chalk: 4.x → 5.x (ESM-only breaking change)commander: 12.x → 14.x (major)eslint-plugin-security: 3.x → 4.x (major)execa: 5.x → 9.x (major)Verification
package.jsonGenerated by Dependency Security Monitor Workflow