Skip to content

chore(deps): bump the npm_and_yarn group across 1 directory with 2 updates#414

Merged
kodiakhq[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm_and_yarn-91f2a24b72
Jun 18, 2026
Merged

chore(deps): bump the npm_and_yarn group across 1 directory with 2 updates#414
kodiakhq[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm_and_yarn-91f2a24b72

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 18, 2026

Copy link
Copy Markdown
Contributor

Bumps the npm_and_yarn group with 2 updates in the / directory: @babel/core and http-proxy-middleware.

Updates @babel/core from 7.26.0 to 7.29.7

Release notes

Sourced from @​babel/core's releases.

v7.29.7 (2026-05-25)

Re-release all packages with npm provenance attestations

v7.29.6 (2026-05-25)

🐛 Bug Fix

Committers: 3

v7.29.5 (2026-05-05)

🏠 Internal

  • babel-preset-env
    • Update @babel/* dependencies

v7.29.4 (2026-05-05)

🐛 Bug Fix

  • babel-plugin-transform-modules-systemjs
    • #17974 [7.x backport]fix(systemjs): improve module string name support (@​JLHwung)

Committers: 1

v7.29.3 (2026-04-30)

👓 Spec Compliance

🐛 Bug Fix

  • babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
    • #17931 fix(decorators): replace super within all removed static elements (@​JLHwung)
  • babel-register
  • babel-compat-data, babel-plugin-bugfix-safari-rest-destructuring-rhs-array, babel-preset-env

💅 Polish

  • babel-parser

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​babel/core since your current version.


Updates http-proxy-middleware from 3.0.5 to 3.0.7

Release notes

Sourced from http-proxy-middleware's releases.

v3.0.7

What's Changed

Full Changelog: chimurai/http-proxy-middleware@v3.0.6...v3.0.7

v3.0.6

What's Changed

... (truncated)

Changelog

Sourced from http-proxy-middleware's changelog.

v3.0.7

  • fix(fixRequestBody): harden form-data stringification

v3.0.6

  • fix(types): fix Logger type
  • fix(error-response-plugin): sanitize input
  • fix(router): harden proxy-table matching (exact host for host+path keys, prefix-only path matching) to prevent routing bypass
Commits
  • 8cc4eba chore(package.json): v3.0.7 (#1261)
  • c13a99c fix(fixRequestBody): harden form-data stringification (#1259)
  • ea0bb98 chore(package.json): v3.0.6 (#1256)
  • f377520 fix(router): harden proxy-table matching (#1254)
  • f6be2c6 chore(yarn.lock): bump to follow-redirects 1.16.0
  • a36f009 ci(publish.yml): npm stage publish
  • 3471790 ci(github actions): update publish.yml for 3.x branch
  • bcf1864 build(vscode): use workspace version of TypeScript (#1173)
  • 48ed092 docs(examples): fix websocket example (#1170)
  • 0fe7c24 chore(package.json): bump dev-deps (#1171)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for http-proxy-middleware since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

…dates

Bumps the npm_and_yarn group with 2 updates in the / directory: [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) and [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware).


Updates `@babel/core` from 7.26.0 to 7.29.7
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.29.7/packages/babel-core)

Updates `http-proxy-middleware` from 3.0.5 to 3.0.7
- [Release notes](https://github.com/chimurai/http-proxy-middleware/releases)
- [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v3.0.7/CHANGELOG.md)
- [Commits](chimurai/http-proxy-middleware@v3.0.5...v3.0.7)

---
updated-dependencies:
- dependency-name: "@babel/core"
  dependency-version: 7.29.7
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: http-proxy-middleware
  dependency-version: 3.0.7
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@kodiakhq kodiakhq Bot merged commit 9e549e5 into main Jun 18, 2026
1 check passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/npm_and_yarn-91f2a24b72 branch June 18, 2026 15:17
@github-actions

Copy link
Copy Markdown

Coverage Report

Status Category Percentage Covered / Total
🔵 Lines 63.03% 336 / 533
🔵 Statements 63.03% 336 / 533
🔵 Functions 66.1% 39 / 59
🔵 Branches 74.74% 74 / 99
File CoverageNo changed files found.
Generated in workflow #982 for commit 9e549e5 by the Vitest Coverage Report Action

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant