Skip to content

[stable33] chore(deps): Bump marked from 17.0.4 to 17.0.6 in /build/frontend-legacy#59582

Merged
github-actions[bot] merged 2 commits intostable33from
dependabot/npm_and_yarn/build/frontend-legacy/stable33/marked-17.0.6
Apr 16, 2026
Merged

[stable33] chore(deps): Bump marked from 17.0.4 to 17.0.6 in /build/frontend-legacy#59582
github-actions[bot] merged 2 commits intostable33from
dependabot/npm_and_yarn/build/frontend-legacy/stable33/marked-17.0.6

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 11, 2026

Bumps marked from 17.0.4 to 17.0.6.

Release notes

Sourced from marked's releases.

v17.0.6

17.0.6 (2026-04-05)

Bug Fixes

  • avoid race condition in async parallel parse/parseInline with hooks (#3924) (6e96fa7)
  • cli: honor positional input file (#3922) (a1c2617)
  • cli: use file URL for config import (#3923) (73e1f3f)

v17.0.5

17.0.5 (2026-03-20)

Bug Fixes

  • Fix catastrophic backtracking (ReDoS) in link/reflink label regex (#3918) (4625980)
  • prevent quadratic complexity in emStrongLDelim regex (#3906) (c732dd2)
  • prevent single-tilde strikethrough false positives (#3910) (5e03369)
  • re-assign tokenizer.lexer and renderer.parser at start of each parse call (#3907) (f3a3ec0)
  • trim trailing whitespace from lheading text (#3920) (3ea7e88)
Commits
  • e07037e chore(release): 17.0.6 [skip ci]
  • 6e96fa7 fix: avoid race condition in async parallel parse/parseInline with hooks (#3924)
  • 73e1f3f fix(cli): use file URL for config import (#3923)
  • a1c2617 fix(cli): honor positional input file (#3922)
  • 3b59e81 refactor: use strict equality in RegExp exec checks (#3935)
  • e6b37f2 chore(deps-dev): Bump lodash from 4.17.23 to 4.18.1 (#3937)
  • abb5667 chore(deps-dev): Bump lodash-es from 4.17.23 to 4.18.1 (#3936)
  • 4969cf2 chore(deps-dev): Bump handlebars from 4.7.8 to 4.7.9 (#3931)
  • d44cafc chore(deps-dev): Bump picomatch from 2.3.1 to 2.3.2 (#3929)
  • 59386ad chore(deps-dev): Bump eslint from 10.0.3 to 10.1.0 (#3928)
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot requested review from a team as code owners April 11, 2026 01:40
@dependabot dependabot bot requested review from nfebe, sorbaugh and szaimen and removed request for a team April 11, 2026 01:40
@github-actions github-actions bot changed the title chore(deps): Bump marked from 17.0.4 to 17.0.6 in /build/frontend-legacy [stable33] chore(deps): Bump marked from 17.0.4 to 17.0.6 in /build/frontend-legacy Apr 11, 2026
@github-actions github-actions bot enabled auto-merge April 11, 2026 02:20
@AndyScherzinger AndyScherzinger force-pushed the dependabot/npm_and_yarn/build/frontend-legacy/stable33/marked-17.0.6 branch from 574df8d to 06c66c3 Compare April 15, 2026 07:11
@AndyScherzinger
Copy link
Copy Markdown
Member

AndyScherzinger commented Apr 15, 2026

/compile

@AndyScherzinger AndyScherzinger added this to the Nextcloud 33.0.3 milestone Apr 15, 2026
dependabot bot and others added 2 commits April 16, 2026 09:21
@dependabot @AndyScherzinger
chore(deps): Bump marked from 17.0.4 to 17.0.6 in /build/frontend-legacy
8eb41be 
Bumps [marked](https://github.com/markedjs/marked) from 17.0.4 to 17.0.6.
- [Release notes](https://github.com/markedjs/marked/releases)
- [Commits](markedjs/marked@v17.0.4...v17.0.6)

---
updated-dependencies:
- dependency-name: marked
  dependency-version: 17.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@nextcloud-command @AndyScherzinger
chore(assets): Recompile assets
d1f3bc6 
Signed-off-by: nextcloud-command <nextcloud-command@users.noreply.github.com>
@AndyScherzinger AndyScherzinger force-pushed the dependabot/npm_and_yarn/build/frontend-legacy/stable33/marked-17.0.6 branch from f9fdd63 to d1f3bc6 Compare April 16, 2026 07:21
@github-actions github-actions bot merged commit ca96f06 into stable33 Apr 16, 2026
124 checks passed
@github-actions github-actions bot deleted the dependabot/npm_and_yarn/build/frontend-legacy/stable33/marked-17.0.6 branch April 16, 2026 07:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AndyScherzinger AndyScherzinger AndyScherzinger approved these changes

@github-actions github-actions[bot] github-actions[bot] approved these changes

@nfebe nfebe Awaiting requested review from nfebe nfebe is a code owner automatically assigned from nextcloud/server-frontend

@szaimen szaimen Awaiting requested review from szaimen szaimen is a code owner automatically assigned from nextcloud/server-frontend

@sorbaugh sorbaugh Awaiting requested review from sorbaugh sorbaugh is a code owner automatically assigned from nextcloud/server-frontend

Assignees

No one assigned

Labels

3. to review Waiting for reviews feature: dependencies

Projects

None yet

Milestone

Nextcloud 33.0.3

Development

Successfully merging this pull request may close these issues.

2 participants

@AndyScherzinger @nextcloud-command