Skip to content

chore(deps): (deps-dev): bump the development group with 5 updates #243

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 31, 2025
Merged

chore(deps): (deps-dev): bump the development group with 5 updates #243

merged 1 commit into from
Oct 31, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 31, 2025
edited
Loading

Bumps the development group with 5 updates:

Package From To
@rollup/plugin-commonjs 28.0.9 29.0.0
@vitest/coverage-v8 3.2.4 4.0.5
oxlint 1.24.0 1.25.0
rimraf 6.0.1 6.1.0
vitest 3.2.4 4.0.5

Updates @rollup/plugin-commonjs from 28.0.9 to 29.0.0

Changelog

Sourced from @​rollup/plugin-commonjs's changelog.

v29.0.0

2025-10-30

Breaking Changes

  • feat!: revert #1909 and add requireNodeBuiltins option (#1937)
Commits

Updates @vitest/coverage-v8 from 3.2.4 to 4.0.5

Release notes

Sourced from @​vitest/coverage-v8's releases.

v4.0.5

   🐞 Bug Fixes

   🏎 Performance

    View changes on GitHub

v4.0.4

   🐞 Bug Fixes

   🏎 Performance

    View changes on GitHub

v4.0.3

   🐞 Bug Fixes

    View changes on GitHub

v4.0.2

   🐞 Bug Fixes

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​vitest/coverage-v8 since your current version.


Updates oxlint from 1.24.0 to 1.25.0

Release notes

Sourced from oxlint's releases.

oxlint v1.25.0

[1.25.0] - 2025-10-30

💥 BREAKING CHANGES

  • 659fd37 linter: [BREAKING] tsgolint: request fixes when necessary (#15048) (camchenry)

🚀 Features

  • ed24d60 linter: Expose tsgolint program diagnostics (#15080) (camc314)
  • 23660c9 linter: tsgolint: handle omitted fixes and suggestions (#15047) (camchenry)
  • f7bef73 linter/plugins: Scope manager API (#14890) (Arsh)
  • 3e15cdd linter/strict-boolean-expression: Add rule (#14930) (camc314)
  • bd74603 linter: Add support for vitest/valid-title rule (#12085) (Tyler Earls)

🐛 Bug Fixes

  • e41dee5 linter/consistent-type-definition: Skip comments when looking for token (#14909) (camc314)
  • 806f9ba linter: Search system PATH for tsgolint executable (#14861) (magic-akari)
  • ee68089 linter: Normalize JS plugin names (#15010) (Peter Wagenet)
  • 597340e ast-tools: Use oxfmt to format generated code (#15064) (camc314)
  • 5eaaa8e linter: Prevent underflow in count_comment_lines for JSX files (#15026) (ityuany)
  • 88577a8 import/no-namespace: Remove dot special case (#15032) (Arsh)
  • 55ee962 linter/vars-on-top: False positive with typescript declare block (#14952) (Hamir Mahal)
  • 2de9f39 linter/plugins: Fall back to package name if meta.name is missing (#14938) (Peter Wagenet)
  • 5ace84b linter/no-empty-object-type: Parse "allowWithName" as regular expressions (#14943) (Arsh)
  • 5a2832d editor: Stop client when delete .oxlintrc.json with oxc.requireConfig (#14897) (Liang Mi)
  • 3e29d23 linter: Use aliases when parsing cli rules (#14912) (Arsh)
  • b94b6aa linter/explicit-module-boundary-types: False negative with export default function (#14905) (camc314)
  • 7060863 linter/no-standaline-expect: False positive with expect in callback (#14902) (camc314)
  • dc5a71b linter/no-accumulating-spread: False positive in nested callbacks within reduce (#14898) (camc314)

🚜 Refactor

  • 8d8d508 editor: Flatten flags options (#15006) (Sysix)
  • b1e1531 language_server: Extract library interface from main.rs (#15036) (Boshen)
  • 5de99c2 formatter: Export unified way to get_parse_options (#15027) (leaysgur)
  • b55df7f language_server: Move sub option for flags to the root + deprecate flags (#14933) (Sysix)

📚 Documentation

  • e15c91c linter: Add configuration option docs for eslint/init-declarations rule. (#15085) (Connor Shea)
  • f4505bc linter: Add configuration option docs for eslint/id-length rule. (#15083) (Connor Shea)
  • dd4c9d2 linter: Add configuration option docs for eslint/getter-return rule. (#15081) (Connor Shea)
  • 008e67a linter: Add configuration option docs for jest/no-large-snapshots rule. (#15079) (Connor Shea)
  • 31daf79 linter: Add configuration option docs for import/no-commonjs rule. (#15077) (Connor Shea)
  • 9bf8ebe linter: Add configuration option docs for jsdoc/check-tag-names rule. (#15076) (Connor Shea)
  • 491ab5e linter: Add configuration option docs for jsdoc/no-defaults rule. (#15074) (Connor Shea)
  • 2602d7e linter: Add configuration option docs for jsdoc/empty-tags rule. (#15072) (Connor Shea)
  • c3a92e0 linter: Add configuration option docs for oxc/no-rest-spread-properties rule. (#15070) (Connor Shea)

... (truncated)

Changelog

Sourced from oxlint's changelog.

[1.25.0] - 2025-10-30

🚀 Features

  • bd74603 linter: Add support for vitest/valid-title rule (#12085) (Tyler Earls)
Commits

Updates rimraf from 6.0.1 to 6.1.0

Changelog

Sourced from rimraf's changelog.

6.1

  • Move to native fs/promises usage instead of promisifying manually.

6.0

  • Drop support for nodes before v20
  • Add --version to CLI

5.0

  • No default export, only named exports

4.4

  • Provide Dirent or Stats object as second argument to filter

4.3

  • Return boolean indicating whether the path was fully removed
  • Add filter option
  • bin: add --verbose, -v to print files as they are deleted
  • bin: add --no-verbose, -V to not print files as they are deleted
  • bin: add -i --interactive to be prompted on each deletion
  • bin: add -I --no-interactive to not be prompted on each deletion
  • 4.3.1 Fixed inappropriately following symbolic links to directories

v4.2

  • Brought back glob support, using the new and improved glob v9

v4.1

  • Improved hybrid module with no need to look at the .default dangly bit. .default preserved as a reference to rimraf for compatibility with anyone who came to rely on it in v4.0.
  • Accept and ignore -rf and -fr arguments to the bin.

v4.0

  • Remove glob dependency entirely. This library now only accepts actual file and folder names to delete.
  • Accept array of paths or single path.
  • Windows performance and reliability improved.
  • All strategies separated into explicitly exported methods.
  • Drop support for Node.js below version 14
  • rewrite in TypeScript

... (truncated)

Commits
  • 18dc77a 6.1.0
  • 2bd2e62 changelog 6.1
  • 19311cf refactor: switch to native fs.promises
  • 0c437d4 Create separate dir for integration tests
  • 65a3b8a Do not pass unnecessary rest args to fs functions
  • 02b31b7 Use the same ignoreENOENT and fixEPERM utils everywhere
  • c012f4f Mock process.platform with t.intercept
  • c72278a Use tap.intercept to test bin
  • 549d1e8 Configure tap coverage-map
  • a76970b benchmark: add options to filter and compare benchmarks
  • Additional commits viewable in compare view

Updates vitest from 3.2.4 to 4.0.5

Release notes

Sourced from vitest's releases.

v4.0.5

   🐞 Bug Fixes

   🏎 Performance

    View changes on GitHub

v4.0.4

   🐞 Bug Fixes

   🏎 Performance

    View changes on GitHub

v4.0.3

   🐞 Bug Fixes

    View changes on GitHub

v4.0.2

   🐞 Bug Fixes

... (truncated)

Commits
  • ed9fc71 chore: release v4.0.5
  • b9521e0 fix: allow module in --config (#8864)
  • 0e858ba fix(module-runner): don't return node builtins for getBuiltins unconditiona...
  • a4f86f1 fix: respect ssr.noExternal when externalizing dependencies (#8862)
  • b9aabf4 fix(pool): rename groupId to groupOrder in error message (#8856)
  • 584aa71 perf: pass testfiles at once when --no-isolate --maxWorkers=1 (#8835)
  • 9b75ec5 chore: release v4.0.4
  • fb95fc7 fix(pool): capture workers stdio to logger (#8809)
  • 06208d3 fix(mocker): support mocking builtins without node: prefix (#8829)
  • 573dc06 fix(worker): rpc listener leak when isolate: false (#8821)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for vitest since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

This was referenced Oct 31, 2025
Closed
Closed
Closed
@socket-security
Copy link

socket-security bot commented Oct 31, 2025
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updated@​vitest/​coverage-v8@​3.2.4 ⏵ 4.0.599 +110069 -399 +1100
Updatedvitest@​3.2.4 ⏵ 4.0.598 +11007999100
Updatedoxlint@​1.24.0 ⏵ 1.25.094 +110088 +196100
Updated@​rollup/​plugin-commonjs@​28.0.9 ⏵ 29.0.0100 +110010095100
Updatedrimraf@​6.0.1 ⏵ 6.1.0100 +2100100 +1100 +16100

View full report

@cb1kenobi
Copy link
Contributor

@dependabot recreate

@dependabot
chore(deps): (deps-dev): bump the development group with 5 updates
ae08f9c 
Bumps the development group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) | `28.0.9` | `29.0.0` |
| [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) | `3.2.4` | `4.0.5` |
| [oxlint](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint) | `1.24.0` | `1.25.0` |
| [rimraf](https://github.com/isaacs/rimraf) | `6.0.1` | `6.1.0` |
| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `3.2.4` | `4.0.5` |


Updates `@rollup/plugin-commonjs` from 28.0.9 to 29.0.0
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/commonjs/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/commonjs-v29.0.0/packages/commonjs)

Updates `@vitest/coverage-v8` from 3.2.4 to 4.0.5
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.5/packages/coverage-v8)

Updates `oxlint` from 1.24.0 to 1.25.0
- [Release notes](https://github.com/oxc-project/oxc/releases)
- [Changelog](https://github.com/oxc-project/oxc/blob/main/npm/oxlint/CHANGELOG.md)
- [Commits](https://github.com/oxc-project/oxc/commits/oxlint_v1.25.0/npm/oxlint)

Updates `rimraf` from 6.0.1 to 6.1.0
- [Changelog](https://github.com/isaacs/rimraf/blob/main/CHANGELOG.md)
- [Commits](isaacs/rimraf@v6.0.1...v6.1.0)

Updates `vitest` from 3.2.4 to 4.0.5
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.5/packages/vitest)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-commonjs"
  dependency-version: 29.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: development
- dependency-name: "@vitest/coverage-v8"
  dependency-version: 4.0.5
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: development
- dependency-name: oxlint
  dependency-version: 1.25.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development
- dependency-name: rimraf
  dependency-version: 6.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development
- dependency-name: vitest
  dependency-version: 4.0.5
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/development-56e0ddd362 branch from fcbe558 to ae08f9c Compare October 31, 2025 03:45
@cb1kenobi cb1kenobi merged commit ce29430 into main Oct 31, 2025
5 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/development-56e0ddd362 branch October 31, 2025 04:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cb1kenobi