Skip to content

chore(deps-dev): bump sinon from 21.0.3 to 22.0.0#11826

Merged
jNullj merged 1 commit intomasterfrom
dependabot/npm_and_yarn/sinon-21.1.2
May 6, 2026
Merged

chore(deps-dev): bump sinon from 21.0.3 to 22.0.0#11826
jNullj merged 1 commit intomasterfrom
dependabot/npm_and_yarn/sinon-21.1.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 1, 2026
edited
Loading

Bumps sinon from 21.0.3 to 22.0.0.

Changelog

Sourced from sinon's changelog.

22.0.0

  • ed911df5 Update Ruby gems (Carl-Erik Kopseng)
  • 75a1e5b8 Update to Node 26 (Carl-Erik Kopseng)
  • 197d6608 Update documentation on faking timers to reflect the current state of fake-timers (Carl-Erik Kopseng)
  • c5ddf80b Update fake-timers@15.4: includes new Temporal API (Carl-Erik Kopseng)
  • f4ab02f6 Update updatable packages (Carl-Erik Kopseng)
  • 0536afc8 Quality: Global mutable call id can grow unbounded across long-lived processes (#2691) (tuanaiseo)
    • refactor: global mutable call id can grow unbounded across l

    callId is module-scoped and incremented on every invocation. In long-running test runners or embedded usage, this can grow indefinitely and eventually lose integer precision semantics for strict ordering comparisons.

    Affected files: proxy-invoke.js

    Signed-off-by: tuanaiseo 221258316+tuanaiseo@users.noreply.github.com

    • Wrap around for all values that are too high

    Signed-off-by: tuanaiseo 221258316+tuanaiseo@users.noreply.github.com Co-authored-by: Carl-Erik Kopseng carlerik@gmail.com

  • f4f7d93b Perform additional cleanup when calling callThrough() (#2670) (Cyrille)
  • 6199e9e4 improve GitHubworkflows by introducing zizmor for monitoring (#2686) (Till!)
    • fix(workflows): fetch-depth is for actions/checkout
    • chore(workflows): update
    • pin all actions to precise commits
    • avoid credential leakage from actions/checkout
    • group action updates going forward
    • add zimor config to ignore "secrets outside env"
    • add job to keep validating workflows
  • f7476b59 Use path.normalize() for path normalization (Carl-Erik Kopseng)
  • 2c975393 fix: make build and node test scripts cross-platform (laplace young)
  • a7692917 fix: isolate walk state from Object prototype (laplace young)
  • 66df977a Fix sinon.restore() cascade-restoring sub-sandboxes (#2704) (Charlie Leitheiser)

    The ESM port of createApi (#2683, shipped in 21.1.0) replaced createSandbox: createSandbox with a wrapper that pushes every newly-created sandbox into the root sandbox's fake collection:

... (truncated)

Commits
  • 52555af 22.0.0
  • ed911df Update Ruby gems
  • 75a1e5b Update to Node 26
  • 197d660 Update documentation on faking timers to reflect the current state of fake-ti...
  • c5ddf80 Update fake-timers@15.4: includes new Temporal API
  • f4ab02f Update updatable packages
  • 0536afc Quality: Global mutable call id can grow unbounded across long-lived processe...
  • f4f7d93 Perform additional cleanup when calling callThrough() (#2670)
  • 6199e9e improve GitHubworkflows by introducing zizmor for monitoring (#2686)
  • 1519009 Merge #2703: isolate walk state from Object prototype
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Related to dependency updates javascript [dependabot only] Pull requests that update Javascript packages labels May 1, 2026
@jNullj
Copy link
Copy Markdown
Member

jNullj commented May 6, 2026

@dependabot recreate

@dependabot
chore(deps-dev): bump sinon from 21.0.3 to 22.0.0
176e33c 
Bumps [sinon](https://github.com/sinonjs/sinon) from 21.0.3 to 22.0.0.
- [Release notes](https://github.com/sinonjs/sinon/releases)
- [Changelog](https://github.com/sinonjs/sinon/blob/main/docs/changelog.md)
- [Commits](sinonjs/sinon@v21.0.3...v22.0.0)

---
updated-dependencies:
- dependency-name: sinon
  dependency-version: 21.1.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps-dev): bump sinon from 21.0.3 to 21.1.2 chore(deps-dev): bump sinon from 21.0.3 to 22.0.0 May 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/sinon-21.1.2 branch from d6ab61a to 176e33c Compare May 6, 2026 21:02
jNullj
jNullj approved these changes May 6, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@jNullj jNullj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

major version but couldn't find breaking changes for our usage.
also dropped one dependency, which is a nice addition.

@jNullj jNullj added this pull request to the merge queue May 6, 2026
Merged via the queue into master with commit 09d57fe May 6, 2026
18 checks passed
@jNullj jNullj deleted the dependabot/npm_and_yarn/sinon-21.1.2 branch May 6, 2026 21:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jNullj jNullj jNullj approved these changes

Assignees

No one assigned

Labels

dependencies Related to dependency updates javascript [dependabot only] Pull requests that update Javascript packages

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jNullj