Skip to content

Bump yaml from 2.8.3 to 2.8.4#1707

Merged
marcoroth merged 1 commit into
mainfrom
dependabot/npm_and_yarn/yaml-2.8.4
May 5, 2026
Merged

Bump yaml from 2.8.3 to 2.8.4#1707
marcoroth merged 1 commit into
mainfrom
dependabot/npm_and_yarn/yaml-2.8.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 2, 2026

Copy link
Copy Markdown
Contributor

Bumps yaml from 2.8.3 to 2.8.4.

Release notes

Sourced from yaml's releases.

v2.8.4

  • Disable alias resolution with maxAliasCount:0 (#677)
  • Handle invalid unicode escapes (e1a1a77)
  • Apply minFractionDigits only to decimal strings (#676)
Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript labels May 2, 2026
@github-actions github-actions Bot added the config label May 2, 2026
Bumps [yaml](https://github.com/eemeli/yaml) from 2.8.3 to 2.8.4.
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v2.8.3...v2.8.4)

---
updated-dependencies:
- dependency-name: yaml
  dependency-version: 2.8.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/yaml-2.8.4 branch from ca09f6d to e9bc6ca Compare May 2, 2026 20:25
@marcoroth marcoroth merged commit a648741 into main May 5, 2026
13 of 14 checks passed
@marcoroth marcoroth deleted the dependabot/npm_and_yarn/yaml-2.8.4 branch May 5, 2026 14:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

config dependencies Pull requests that update a dependency file javascript

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant