Bump prek from 0.4.1 to 0.4.5#227
Merged
Merged
Conversation
Bumps [prek](https://github.com/j178/prek) from 0.4.1 to 0.4.5. - [Release notes](https://github.com/j178/prek/releases) - [Changelog](https://github.com/j178/prek/blob/master/CHANGELOG.md) - [Commits](j178/prek@v0.4.1...v0.4.5) --- updated-dependencies: - dependency-name: prek dependency-version: 0.4.5 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
rtibblesbot
approved these changes
Jul 1, 2026
rtibblesbot
left a comment
Contributor
There was a problem hiding this comment.
Dependency-update review: prek 0.4.1 → 0.4.5 (dev dependency).
- Semver risk: Minor (0.x series)
- Type: Development only (
devgroup inpyproject.toml) — not shipped to users - Breaking changes: None across 0.4.2–0.4.5. "Remove legacy repo path support" (0.4.5) refers to prek's internal pre-commit repo-path handling, not anything this repo's
.pre-commit-config.yamlrelies on. - Security fixes: None in this range
- Other changes: New R/Conda/Perl/coursier hook language support, file-scan performance work, minor bug fixes — none touch functionality this project uses
- Lockfile scope:
uv.lockdiff is limited to theprekpackage block (hashes/URLs), no unexpected transitive changes - CI: Passing
No code changes required. Approving.
@rtibblesbot's comments are generated by an LLM, and should be evaluated accordingly
How was this generated?
Ran a dependency-update review pipeline over the version bump:
- Classified the bump by semver (patch / minor / major) and dependency type (production vs. development)
- Extracted the changelog and release notes across the version range
- Assessed compatibility with this project's usage and whether any code changes are required
- Treated CI as the primary safety net
- Scaled the review depth to the update's risk
- Chose the verdict from semver risk, changelog findings, and CI status
rtibbles
approved these changes
Jul 1, 2026
rtibbles
left a comment
Member
There was a problem hiding this comment.
No concerns from changelog or diff.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps prek from 0.4.1 to 0.4.5.
Release notes
Sourced from prek's releases.
... (truncated)
Changelog
Sourced from prek's changelog.
... (truncated)
Commits
bb31082Update README.mdfa4e2dcBump version to 0.4.5 (#2221)e9336faAdd R language support (#2206)97a5a15Update Rust crate which to v8.0.3 (#2219)20a519aUpdate Rust crate ignore to v0.4.26 (#2218)88f0e2bUpdate dependency uv to v0.11.19 (#2214)7bd4300Update GitHub Actions to v7 (#2220)48ed5ccUpdate Rust crate async_zip to 0.0.18 (#2217)257e98aUpdate pre-commit to v1.47.2 (#2216)0c04602Update GitHub Actions (#2215)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)