Skip to content

Bump the prod-deps group across 1 directory with 4 updates#954

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/prod-deps-ba7d2b4714
Closed

Bump the prod-deps group across 1 directory with 4 updates#954
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/prod-deps-ba7d2b4714

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Feb 23, 2026
edited
Loading

Bumps the prod-deps group with 3 updates in the / directory: @oclif/core, @oclif/plugin-help and make-fetch-happen.

Updates @oclif/core from 4.8.0 to 4.8.1

Release notes

Sourced from @​oclif/core's releases.

4.8.1

Bug Fixes

  • deps: bump minimatch from 9.0.5 to 10.2.1 (2815e37)
Changelog

Sourced from @​oclif/core's changelog.

4.8.1 (2026-02-22)

Bug Fixes

  • deps: bump minimatch from 9.0.5 to 10.2.1 (2815e37)
Commits
  • 5072476 chore(release): 4.8.1 [skip ci]
  • ce25dae Merge pull request #1539 from oclif/dependabot-npm_and_yarn-minimatch-10.2.1
  • 2815e37 fix(deps): bump minimatch from 9.0.5 to 10.2.1
  • bcfc7d0 Merge pull request #1540 from oclif/dependabot-npm_and_yarn-eslint-9.39.3
  • d399e77 chore(dev-deps): bump eslint from 9.39.2 to 9.39.3
  • 6929b32 Merge pull request #1541 from oclif/dependabot-npm_and_yarn-eslint-config-ocl...
  • 72cf503 chore(dev-deps): bump eslint-config-oclif from 6.0.137 to 6.0.140
  • e32b9b3 Merge pull request #1534 from oclif/dependabot-npm_and_yarn-oclif-plugin-plug...
  • a8489da Merge pull request #1535 from oclif/dependabot-npm_and_yarn-eslint-config-ocl...
  • 3e95a26 chore(dev-deps): bump eslint-config-oclif from 6.0.135 to 6.0.137
  • Additional commits viewable in compare view

Updates @oclif/plugin-help from 6.2.36 to 6.2.37

Release notes

Sourced from @​oclif/plugin-help's releases.

6.2.37

Bug Fixes

  • deps: bump lodash from 4.17.21 to 4.17.23 (#1081) (4a4b1e9)
Changelog

Sourced from @​oclif/plugin-help's changelog.

6.2.37 (2026-01-22)

Bug Fixes

  • deps: bump lodash from 4.17.21 to 4.17.23 (#1081) (4a4b1e9)
Commits
  • 56902e1 chore(release): 6.2.37 [skip ci]
  • 4a4b1e9 fix(deps): bump lodash from 4.17.21 to 4.17.23 (#1081)
  • b4043c4 chore(dev-deps): bump oclif from 4.22.63 to 4.22.65 (#1078)
  • 995f34a chore(dev-deps): bump eslint-config-oclif from 6.0.129 to 6.0.130 (#1079)
  • 2136aea chore(dev-deps): bump prettier from 3.7.4 to 3.8.0 (#1080)
  • 1d7e212 chore(dev-deps): bump oclif from 4.22.61 to 4.22.63 (#1076)
  • 5cd16e0 chore(dev-deps): bump eslint-config-oclif from 6.0.128 to 6.0.129 (#1077)
  • bef84f4 chore(dev-deps): bump oclif from 4.22.59 to 4.22.61 (#1074)
  • 80b7053 chore(dev-deps): bump eslint-config-oclif from 6.0.127 to 6.0.128 (#1075)
  • f73d712 chore(dev-deps): bump eslint-config-oclif from 6.0.126 to 6.0.127 (#1072)
  • Additional commits viewable in compare view

Updates make-fetch-happen from 15.0.1 to 15.0.3

Release notes

Sourced from make-fetch-happen's releases.

v15.0.3

15.0.3 (2025-11-13)

Dependencies

v15.0.2

15.0.2 (2025-09-18)

Dependencies

Changelog

Sourced from make-fetch-happen's changelog.

15.0.3 (2025-11-13)

Dependencies

15.0.2 (2025-09-18)

Dependencies

Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for make-fetch-happen since your current version.


Updates minimatch from 10.1.1 to 10.2.2

Changelog

Sourced from minimatch's changelog.

change log

10.2

  • Add braceExpandMax option

10.1

  • Add magicalBraces option for escape
  • Fix makeRe when partial: true is set.
  • Fix makeRe when pattern ends in a final ** path part.

10.0

  • Require node 20 or 22 and higher

9.0

  • No default export, only named exports.

8.0

  • Recursive descent parser for extglob, allowing correct support for arbitrarily nested extglob expressions
  • Bump required Node.js version

7.4

  • Add escape() method
  • Add unescape() method
  • Add Minimatch.hasMagic() method

7.3

  • Add support for posix character classes in a unicode-aware way.

7.2

  • Add windowsNoMagicRoot option

7.1

  • Add optimizationLevel configuration option, and revert the default back to the 6.2 style minimal optimizations, making the advanced transforms introduced in 7.0 opt-in. Also, process provided file paths in the same way in optimizationLevel:2 mode, so most things that matched with optimizationLevel 1 or 0 should match with level 2 as well. However, level 1 is the default, out of an abundance of caution.

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the prod-deps group across 1 directory with 4 updates
19f27ab 
Bumps the prod-deps group with 3 updates in the / directory: [@oclif/core](https://github.com/oclif/core), [@oclif/plugin-help](https://github.com/oclif/plugin-help) and [make-fetch-happen](https://github.com/npm/make-fetch-happen).


Updates `@oclif/core` from 4.8.0 to 4.8.1
- [Release notes](https://github.com/oclif/core/releases)
- [Changelog](https://github.com/oclif/core/blob/main/CHANGELOG.md)
- [Commits](oclif/core@4.8.0...4.8.1)

Updates `@oclif/plugin-help` from 6.2.36 to 6.2.37
- [Release notes](https://github.com/oclif/plugin-help/releases)
- [Changelog](https://github.com/oclif/plugin-help/blob/main/CHANGELOG.md)
- [Commits](oclif/plugin-help@6.2.36...6.2.37)

Updates `make-fetch-happen` from 15.0.1 to 15.0.3
- [Release notes](https://github.com/npm/make-fetch-happen/releases)
- [Changelog](https://github.com/npm/make-fetch-happen/blob/main/CHANGELOG.md)
- [Commits](npm/make-fetch-happen@v15.0.1...v15.0.3)

Updates `minimatch` from 10.1.1 to 10.2.2
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v10.1.1...v10.2.2)

---
updated-dependencies:
- dependency-name: "@oclif/core"
  dependency-version: 4.8.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-deps
- dependency-name: "@oclif/plugin-help"
  dependency-version: 6.2.37
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-deps
- dependency-name: make-fetch-happen
  dependency-version: 15.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-deps
- dependency-name: minimatch
  dependency-version: 10.2.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 23, 2026
@dependabot dependabot Bot requested a review from a team as a code owner February 23, 2026 13:51
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 23, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Mar 12, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Mar 12, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/prod-deps-ba7d2b4714 branch March 12, 2026 22:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants