Skip to content

chore(deps): bump the npm-patches group across 1 directory with 8 updates#23

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-patches-9848fcd58d
Open

chore(deps): bump the npm-patches group across 1 directory with 8 updates#23
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-patches-9848fcd58d

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the npm-patches group with 8 updates in the / directory:

Package From To
ignore 7.0.5 7.0.6
picomatch 4.0.4 4.0.5
ws 8.21.0 8.21.1
@electron/rebuild 4.0.4 4.0.6
ts-proto 2.11.8 2.11.10
@eslint/js 9.39.4 9.39.5
@types/eslint__js 8.42.3 9.14.0
eslint 9.39.4 9.39.5

Updates ignore from 7.0.5 to 7.0.6

Release notes

Sourced from ignore's releases.

6.x (== 5.3.2)

6.x

  • The release of 6.x is due to a mistake.
  • Making an upgrade from 5.x to 6.x for now actually changes nothing and does no harm, everyone could just upgrade or ignore the version.
    • Actually 6.0.2 is 5.3.2
  • The next major release will be 7.0.0
Commits
  • 3823b5f 7.0.6
  • f7520e2 test: adds tests for #153
  • 424a2bb Merge pull request #161 from spokodev/fix/consecutive-leading-globstar
  • e5cbe4a fix: consecutive leading **/ should match like a single **/
  • ac68603 Merge pull request #159 from spokodev/fix/negated-character-class
  • 5ba6b40 fix: negated character class [!...] should match like git
  • See full diff in compare view

Updates picomatch from 4.0.4 to 4.0.5

Release notes

Sourced from picomatch's releases.

4.0.5

What's Changed

New Contributors

Full Changelog: micromatch/picomatch@4.0.4...4.0.5

Commits
  • 4f41a8e 4.0.5
  • 02cfc1b Update .verb.md and run verb to generate README documentation
  • cc52ff6 Only run the upload code coverage step for 1 matrix permutation
  • 6d426d7 Allow workflow to continue if the code coverage step to fails
  • a00b954 Merge branch 'codeql-coverage'
  • 9680381 Merge pull request #183 from MerlijnW70/fix/matchbase-windows-basename
  • 648b4f2 Merge pull request #182 from MerlijnW70/fix/repeated-extglob-drops-branches
  • 70e6485 Configure code coverage upload for CodeQL
  • ab8bc4d fix: honor the windows option when matching basenames
  • 6289307 fix: preserve all branches when rewriting risky repeated extglobs
  • Additional commits viewable in compare view

Updates ws from 8.21.0 to 8.21.1

Release notes

Sourced from ws's releases.

8.21.1

Bug fixes

  • Empty fragments are now counted toward the limit (a2f4e7c0).
  • The default values of the maxBufferedChunks and maxFragments options have been reduced (f197ac65).
Commits
  • ae1de54 [dist] 8.21.1
  • 8e9511b [ci] Trust Coveralls Homebrew tap
  • f197ac6 [fix] Lower default values of maxBufferedChunks and maxFragments
  • 8df8265 [ci] Update actions/checkout action to v7
  • a2f4e7c [fix] Count empty fragments toward the limit (#2329)
  • e79f912 [pkg] Approve install scripts for bufferutil and utf-8-validate
  • 4ea355d [doc] Document 32-bit signed integer coercion for option values
  • 2120f4c [example] Remove uuid dependency
  • 4c534a6 [security] Add latest vulnerability to SECURITY.md
  • See full diff in compare view

Updates @electron/rebuild from 4.0.4 to 4.0.6

Release notes

Sourced from @​electron/rebuild's releases.

v4.0.6

4.0.6 (2026-06-28)

Bug Fixes

v4.0.5

4.0.5 (2026-06-27)

Bug Fixes

Commits
  • 8bc2a49 fix: honor explicit empty --prebuild-tag-prefix (#1284)
  • 3e73e57 fix: add --platform CLI argument (#1285)
  • da49ce1 chore(deps): bump tar from 7.5.13 to 7.5.16 in /test/fixture/napi-build-versi...
  • d3f0aea chore(deps): bump undici from 6.25.0 to 6.27.0 (#1282)
  • 7b74c30 chore(deps): bump undici from 6.26.0 to 6.27.0 in /test/fixture/workspace-tes...
  • b7c52f6 chore(deps): bump tar from 7.5.13 to 7.5.16 in /test/fixture/native-app1 (#1280)
  • c8edfa1 chore(deps): bump tar from 7.5.13 to 7.5.16 (#1279)
  • fc8ab3f chore(deps): bump vite from 8.0.5 to 8.0.16 (#1276)
  • 8ddca96 chore(deps): bump markdown-it from 14.1.1 to 14.2.0 (#1277)
  • 79b3554 test: bump fixture node-gyp versions to 12.3.0 (#1278)
  • Additional commits viewable in compare view
Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates ts-proto from 2.11.8 to 2.11.10

Release notes

Sourced from ts-proto's releases.

v2.11.10

2.11.10 (2026-06-30)

Bug Fixes

v2.11.9

2.11.9 (2026-06-27)

Bug Fixes

  • prevent code injection via string option/extension values in out… (#1261) (af15aff)
Changelog

Sourced from ts-proto's changelog.

2.11.10 (2026-06-30)

Bug Fixes

2.11.9 (2026-06-27)

Bug Fixes

  • prevent code injection via string option/extension values in out… (#1261) (af15aff)
Commits
  • faaba11 chore(release): 2.11.10 [skip ci]
  • 6ae3e40 fix: incorrect codegen when grpc-js & outputSchema is used (#1262)
  • 1799765 fix: Update js map check to include forceLong=bigInt as well (#1263)
  • 898251b chore(release): 2.11.9 [skip ci]
  • af15aff fix: prevent code injection via string option/extension values in out… (#1261)
  • See full diff in compare view

Updates @eslint/js from 9.39.4 to 9.39.5

Release notes

Sourced from @​eslint/js's releases.

v9.39.5

Bug Fixes

Documentation

  • 74930ed docs: switch build to Node.js 24 (#20894) (Milos Djermanovic)
  • eaec8bb docs: Add ESLint v9.x EOL notice (#20828) (Milos Djermanovic)

Chores

  • 458205f chore: update @eslint/eslintrc and @eslint/js for v9.39.5 (#21077) (Francesco Trotta)
  • 202117b chore: package.json update for @​eslint/js release (Jenkins)
  • d9eb6ed test: disable warning for vm.constants.USE_MAIN_CONTEXT_DEFAULT_LOADER (#21074) (Francesco Trotta)
  • 7b431a7 chore: override re2 dependency for @metascraper/helpers (#21068) (Milos Djermanovic)
  • daf7791 chore: pin fflate@0.8.2 (#20895) (Milos Djermanovic)
  • daee8ba ci: use pnpm in eslint-flat-config-utils type integration test (#20829) (Milos Djermanovic)
  • 116d4be ci: unpin Node.js 25.x in CI (#20619) (Copilot)
Commits

Updates @types/eslint__js from 8.42.3 to 9.14.0

Commits

Updates @types/eslint__js from 8.42.3 to 9.14.0

Commits

Updates eslint from 9.39.4 to 9.39.5

Release notes

Sourced from eslint's releases.

v9.39.5

Bug Fixes

Documentation

  • 74930ed docs: switch build to Node.js 24 (#20894) (Milos Djermanovic)
  • eaec8bb docs: Add ESLint v9.x EOL notice (#20828) (Milos Djermanovic)

Chores

  • 458205f chore: update @eslint/eslintrc and @eslint/js for v9.39.5 (#21077) (Francesco Trotta)
  • 202117b chore: package.json update for @​eslint/js release (Jenkins)
  • d9eb6ed test: disable warning for vm.constants.USE_MAIN_CONTEXT_DEFAULT_LOADER (#21074) (Francesco Trotta)
  • 7b431a7 chore: override re2 dependency for @metascraper/helpers (#21068) (Milos Djermanovic)
  • daf7791 chore: pin fflate@0.8.2 (#20895) (Milos Djermanovic)
  • daee8ba ci: use pnpm in eslint-flat-config-utils type integration test (#20829) (Milos Djermanovic)
  • 116d4be ci: unpin Node.js 25.x in CI (#20619) (Copilot)
Commits

@dependabot dependabot Bot added dependencies Dependency updates security Security labels Jul 15, 2026
@dependabot
dependabot Bot requested a review from CardSorting as a code owner July 15, 2026 10:15
@dependabot dependabot Bot added security Security dependencies Dependency updates labels Jul 15, 2026
@github-actions

Copy link
Copy Markdown

Thanks for your first pull request to LUMI!

Please read CONTRIBUTING.md and ensure:

  • PR title uses Conventional Commits (feat:, fix:, docs:, …) — Dependabot PRs are exempt
  • CI is green (Tests, E2E, CodeQL)
  • Governed-execution changes preserve projection invariants (see PR template)

@github-actions github-actions Bot added broccolidb BroccoliDB package size/size/M labels Jul 15, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-patches-9848fcd58d branch 3 times, most recently from c24198a to 456b70b Compare July 15, 2026 18:12
@github-actions github-actions Bot added the conflicts PR has merge conflicts label Jul 15, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-patches-9848fcd58d branch from 456b70b to 8f6ea37 Compare July 15, 2026 18:19
@github-actions github-actions Bot removed the conflicts PR has merge conflicts label Jul 15, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-patches-9848fcd58d branch 8 times, most recently from b0b0e15 to 58a6af6 Compare July 18, 2026 19:16
@github-actions github-actions Bot added the conflicts PR has merge conflicts label Jul 18, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-patches-9848fcd58d branch from 58a6af6 to c4b9d82 Compare July 18, 2026 22:07
@github-actions github-actions Bot removed the conflicts PR has merge conflicts label Jul 18, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-patches-9848fcd58d branch from c4b9d82 to cb41975 Compare July 18, 2026 23:18
…ates

Bumps the npm-patches group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [ignore](https://github.com/kaelzhang/node-ignore) | `7.0.5` | `7.0.6` |
| [picomatch](https://github.com/micromatch/picomatch) | `4.0.4` | `4.0.5` |
| [ws](https://github.com/websockets/ws) | `8.21.0` | `8.21.1` |
| [@electron/rebuild](https://github.com/electron/rebuild) | `4.0.4` | `4.0.6` |
| [ts-proto](https://github.com/stephenh/ts-proto) | `2.11.8` | `2.11.10` |
| [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.39.4` | `9.39.5` |
| [@types/eslint__js](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/eslint__js) | `8.42.3` | `9.14.0` |
| [eslint](https://github.com/eslint/eslint) | `9.39.4` | `9.39.5` |



Updates `ignore` from 7.0.5 to 7.0.6
- [Release notes](https://github.com/kaelzhang/node-ignore/releases)
- [Commits](kaelzhang/node-ignore@7.0.5...7.0.6)

Updates `picomatch` from 4.0.4 to 4.0.5
- [Release notes](https://github.com/micromatch/picomatch/releases)
- [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md)
- [Commits](micromatch/picomatch@4.0.4...4.0.5)

Updates `ws` from 8.21.0 to 8.21.1
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@8.21.0...8.21.1)

Updates `@electron/rebuild` from 4.0.4 to 4.0.6
- [Release notes](https://github.com/electron/rebuild/releases)
- [Commits](electron/rebuild@v4.0.4...v4.0.6)

Updates `ts-proto` from 2.11.8 to 2.11.10
- [Release notes](https://github.com/stephenh/ts-proto/releases)
- [Changelog](https://github.com/stephenh/ts-proto/blob/main/CHANGELOG.md)
- [Commits](stephenh/ts-proto@v2.11.8...v2.11.10)

Updates `@eslint/js` from 9.39.4 to 9.39.5
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](https://github.com/eslint/eslint/commits/v9.39.5/packages/js)

Updates `@types/eslint__js` from 8.42.3 to 9.14.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/eslint__js)

Updates `@types/eslint__js` from 8.42.3 to 9.14.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/eslint__js)

Updates `eslint` from 9.39.4 to 9.39.5
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](eslint/eslint@v9.39.4...v9.39.5)

---
updated-dependencies:
- dependency-name: "@electron/rebuild"
  dependency-version: 4.0.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-patches
- dependency-name: "@eslint/js"
  dependency-version: 9.39.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-patches
- dependency-name: "@types/eslint__js"
  dependency-version: 9.14.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm-patches
- dependency-name: "@types/eslint__js"
  dependency-version: 9.14.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm-patches
- dependency-name: eslint
  dependency-version: 9.39.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-patches
- dependency-name: ignore
  dependency-version: 7.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-patches
- dependency-name: picomatch
  dependency-version: 4.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-patches
- dependency-name: ts-proto
  dependency-version: 2.11.10
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-patches
- dependency-name: ws
  dependency-version: 8.21.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-patches
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-patches-9848fcd58d branch from cb41975 to fd199e1 Compare July 19, 2026 04:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

broccolidb BroccoliDB package dependencies Dependency updates security Security size/size/M

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants