Skip to content

Bump the development-dependencies group across 1 directory with 7 updates#207

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/development-dependencies-dc2813cf16
Open

Bump the development-dependencies group across 1 directory with 7 updates#207
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/development-dependencies-dc2813cf16

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Feb 16, 2026
edited
Loading

Updates the requirements on @biomejs/biome, @inquirer/prompts, globals, sass, semver, vendorfiles and web-ext to permit the latest version.
Updates @biomejs/biome to 2.4.1

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.4.1

2.4.1

Patch Changes

  • #9092 6edd600 Thanks @​ematipico! - Fixed #9052. This PR reverts changes introduced by biomejs/biome#8519, which caused unwanted changes on how paths are resolved.

  • #9091 3bf674d Thanks @​ematipico! - Fixed #9090, where SCSS files were incorrectly processed by Biome. This was a regressions caused by the latest developments for supporting SCSS out of the box.

  • #9100 66931a8 Thanks @​siketyan! - Fixed #9081: The noUnknownPseudoElement rule no longer reports false positives for any known pseudo elements in CSS modules. This was a regression introduced in v2.4.0.

  • #9102 d01b903 Thanks @​ematipico! - Fixed #9095, where Biome didn't print anything in stdin mode. This was a regression caused by a recent, internal refactor.

What's Changed

Full Changelog: https://github.com/biomejs/biome/compare/@​biomejs/biome@​2.4.0...@​biomejs/biome@​2.4.1

Changelog

Sourced from @​biomejs/biome's changelog.

2.4.1

Patch Changes

  • #9092 6edd600 Thanks @​ematipico! - Fixed #9052. This PR reverts changes introduced by biomejs/biome#8519, which caused unwanted changes on how paths are resolved.

  • #9091 3bf674d Thanks @​ematipico! - Fixed #9090, where SCSS files were incorrectly processed by Biome. This was a regressions caused by the latest developments for supporting SCSS out of the box.

  • #9100 66931a8 Thanks @​siketyan! - Fixed #9081: The noUnknownPseudoElement rule no longer reports false positives for any known pseudo elements in CSS modules. This was a regression introduced in v2.4.0.

  • #9102 d01b903 Thanks @​ematipico! - Fixed #9095, where Biome didn't print anything in stdin mode. This was a regression caused by a recent, internal refactor.

2.4.0

Minor Changes

  • #8964 0353fa0 Thanks @​dyc3! - Added ignore option to the useHookAtTopLevel rule.

    You can now specify function names that should not be treated as hooks, even if they follow the use* naming convention.

    Example configuration:

    {
  "linter": {
    "rules": {
      "correctness": {
        "useHookAtTopLevel": {
          "options": {
            "ignore": ["useDebounce", "useCustomUtility"]
          }
        }
      }
    }
  }
}

  • #8769 d0358b0 Thanks @​rahuld109! - Added the rule useAnchorContent for HTML to enforce that anchor elements have accessible content for screen readers. The rule flags empty anchors, anchors with only whitespace, and anchors where all content is hidden with aria-hidden. Anchors with aria-label or title attributes providing a non-empty accessible name are considered valid.

  • #8742 6340ce6 Thanks @​rahuld109! - Added the rule useMediaCaption to the HTML language. Enforces that audio and video elements have a track element with kind="captions" for accessibility. Muted videos are allowed without captions.

  • #8621 d11130b Thanks @​Netail! - Added support for multiple reporters, and the ability to save reporters on arbitrary files.

    Combine two reporters in CI

    If you run Biome on GitHub, take advantage of the reporter and still see the errors in console, you can now use both reporters:

    biome ci --reporter=default --reporter=github

... (truncated)

Commits

Updates @inquirer/prompts to 8.2.1

Release notes

Sourced from @​inquirer/prompts's releases.

@​inquirer/prompts@​8.2.1

  • chore: Switch wrap-ansi with fast-wrap-ansi
Commits
  • 53dbf6c chore: Publish new release
  • 5f6c774 fix(@​inquirer/testing): prevent artificial line wrapping in test output (#1996)
  • e400674 ci: auto-merge dependabot PRs for patch and minor updates
  • 63a85b2 fix(@​inquirer/testing): auto-mock @​inquirer/prompts barrel re-exports
  • ad95368 feat(@​inquirer/testing): add E2E testing support for CLI applications (#1980)
  • 2e60d48 chore(deps-dev): Bump oxfmt in the formatting group (#1989)
  • 7e1c0e7 chore(deps): Bump the types group with 2 updates (#1991)
  • 002c246 chore(deps-dev): Bump the build group with 3 updates (#1990)
  • ba7436f chore(deps): Bump semver from 7.7.3 to 7.7.4 (#1992)
  • f4f5944 chore: Add oxfmt hook for claude code
  • Additional commits viewable in compare view

Updates globals to 17.3.0

Release notes

Sourced from globals's releases.

v17.3.0

  • Update globals (2026-02-01) (#336) 295fba9

sindresorhus/globals@v17.2.0...v17.3.0

Commits

Updates sass to 1.97.3

Release notes

Sourced from sass's releases.

Dart Sass 1.97.3

To install Sass 1.97.3, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • Fix a bug where nesting an at-rule within multiple style rules in plain CSS could cause outer style rules to be omitted.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.97.3

  • Fix a bug where nesting an at-rule within multiple style rules in plain CSS could cause outer style rules to be omitted.

1.97.2

  • Additional fixes for implicit configuration when nested imports are involved.

1.97.1

  • Fix a bug with the new CSS-style if() syntax where values would be evaluated even if their conditions didn't match.

1.97.0

  • Add support for the display-p3-linear color space.

1.96.0

  • Allow numbers with complex units (more than one numerator unit or more than zero denominator units) to be emitted to CSS. These are now emitted as calc() expressions, which now support complex units in plain CSS.

1.95.1

  • No user-visible changes.

1.95.0

  • Add support for the CSS-style if() function. In addition to supporting the plain CSS syntax, this also supports a sass() query that takes a Sass expression that evaluates to true or false at preprocessing time depending on whether the Sass value is truthy. If there are no plain-CSS queries, the function will return the first value whose query returns true during preprocessing. For example, if(sass(false): 1; sass(true): 2; else: 3) returns 2.

  • The old Sass if() syntax is now deprecated. Users are encouraged to migrate to the new CSS syntax. if($condition, $if-true, $if-false) can be changed to if(sass($condition): $if-true; else: $if-false).

    See the Sass website for details.

  • Plain-CSS if() functions are now considered "special numbers", meaning that they can be used in place of arguments to CSS color functions.

  • Plain-CSS if() functions and attr() functions are now considered "special

... (truncated)

Commits

Updates semver to 7.7.4

Release notes

Sourced from semver's releases.

v7.7.4

7.7.4 (2026-01-16)

Bug Fixes

Documentation

Dependencies

Chores

Changelog

Sourced from semver's changelog.

7.7.4 (2026-01-16)

Bug Fixes

Documentation

Dependencies

Chores

7.7.3 (2025-10-06)

Bug Fixes

Chores

7.7.2 (2025-05-12)

Bug Fixes

Chores

7.7.1 (2025-02-03)

Bug Fixes

7.7.0 (2025-01-29)

Features

Bug Fixes

Documentation

Chores

7.6.3 (2024-07-16)

Bug Fixes

... (truncated)

Commits
  • 5993c2e chore: release 7.7.4 (#839)
  • 120968b deps: @​npmcli/template-oss@​4.29.0 (#840)
  • a29faa5 fix(cli): pass options to semver.valid() for loose version validation (#835)
  • 1d28d5e docs: fix typos and update -n CLI option documentation (#836)
  • 5816d4c chore: bump @​npmcli/template-oss from 4.28.0 to 4.28.1 (#829)
  • ab9e28a chore: bump @​npmcli/template-oss from 4.27.1 to 4.28.0 (#827)
  • 44d7130 chore: bump @​npmcli/eslint-config from 5.1.0 to 6.0.0 (#824)
  • 7073576 chore: reorder parameters in invalid-versions.js test (#820)
  • 16a35f5 chore: bump @​npmcli/template-oss from 4.26.0 to 4.27.1 (#823)
  • 3a3459d chore: bump @​npmcli/template-oss from 4.25.1 to 4.26.0 (#818)
  • See full diff in compare view

Updates vendorfiles to 1.4.1

Release notes

Sourced from vendorfiles's releases.

v1.4.1

What's Changed

package was published to npm: https://www.npmjs.com/package/vendorfiles

Full Changelog: Araxeus/vendorfiles@v1.4.0...v1.4.1

Commits

Updates web-ext to 9.3.0

Release notes

Sourced from web-ext's releases.

9.3.0 (2026-02-10)

main changes

  • Added: web-ext lint now supports Firefox 148 schemas

dependencies

  • Updated: dependency @babel/runtime to 7.28.6 (#3589)
  • Updated: dependency addons-linter to 9.6.0 (#3615)
  • Updated: dependency pino to 10.3.1 (#3619)
  • Updated: dependency watchpack to 2.5.1 (#3598)

dev dependencies

  • Updated: dependency @babel/cli to 7.28.6 (#3590)
  • Updated: dependency @babel/core to 7.29.0 (#3611)
  • Updated: dependency @babel/eslint-parser to 7.28.6 (#3592)
  • Updated: dependency @babel/preset-env to 7.29.0 (#3610)
  • Updated: dependency @babel/register to 7.28.6 (#3593)
  • Updated: dependency @commitlint/cli to 20.4.1 (#3616)
  • Updated: dependency @commitlint/config-conventional to 20.4.1 (#3614)
  • Updated: dependency @eslint/compat to 2.0.2 (#3612)
  • Updated: dependency @eslint/eslintrc to 3.3.3 (#3565)
  • Updated: dependency @eslint/js to 9.39.2 (#3573)
  • Updated: dependency chai to 6.2.2 (#3577)
  • Updated: dependency fs-extra to 11.3.3 (#3575)
  • Updated: dependency globals to 17.3.0 (#3608)
  • Updated: dependency lodash to 4.17.23 (#3601)
  • Updated: dependency node-forge to 1.3.2 (#3562)
  • Updated: dependency prettier to 3.8.1 (#3602)
  • Updated: dependency sinon to 21.0.1 (#3576)
  • Updated: dependency undici to 7.18.2 (#3595)

others

  • Added npm audit exception for low severity adv related to mocha jsdiff transitive dependency (#3605)
Commits
  • 278002d 9.3.0
  • df30d26 chore(deps): bump watchpack from 2.5.0 to 2.5.1 (#3598)
  • fa3a332 chore(deps-dev): bump @​commitlint/config-conventional from 20.3.1 to 20.4.1 (...
  • 644ffcf chore(deps): bump addons-linter from 9.5.0 to 9.6.0 (#3615)
  • b1c9600 chore(deps-dev): bump @​commitlint/cli from 20.4.0 to 20.4.1 (#3616)
  • 4db07ed chore(deps): bump pino from 10.3.0 to 10.3.1 (#3619)
  • 08a71de chore(deps-dev): bump @​eslint/compat from 2.0.1 to 2.0.2 (#3612)
  • eccd4b4 chore(deps-dev): bump @​babel/preset-env from 7.28.6 to 7.29.0 (#3610)
  • 5c3aa19 chore(deps-dev): bump globals from 17.2.0 to 17.3.0 (#3608)
  • 54fa676 chore(deps-dev): bump @​babel/core from 7.28.6 to 7.29.0 (#3611)
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 16, 2026
@snyk-io
Copy link
Copy Markdown

snyk-io Bot commented Feb 16, 2026
edited
Loading

Snyk checks have passed. No issues have been found so far.

Status Scan Engine Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@github-actions github-actions Bot force-pushed the dependabot/npm_and_yarn/development-dependencies-dc2813cf16 branch from bea657c to acca668 Compare February 16, 2026 20:53
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/development-dependencies-dc2813cf16 branch from acca668 to 484317e Compare March 16, 2026 21:01
@github-actions github-actions Bot force-pushed the dependabot/npm_and_yarn/development-dependencies-dc2813cf16 branch from 484317e to eff4f73 Compare March 16, 2026 21:02
@socket-security
Copy link
Copy Markdown

socket-security Bot commented Mar 16, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatedweb-ext@​9.4.0 ⏵ 10.1.09510010094 +270

View full report

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/development-dependencies-dc2813cf16 branch from eff4f73 to 898891a Compare March 30, 2026 21:46
@github-actions github-actions Bot force-pushed the dependabot/npm_and_yarn/development-dependencies-dc2813cf16 branch from 898891a to fa3afcd Compare March 30, 2026 21:47
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/development-dependencies-dc2813cf16 branch from fa3afcd to d7c0f30 Compare April 6, 2026 20:53
@dependabot
Bump the development-dependencies group across 1 directory with 7 upd…
bf87f1e 
…ates

Updates the requirements on [@biomejs/biome](https://github.com/biomejs/biome/tree/HEAD/packages/@biomejs/biome), [@inquirer/prompts](https://github.com/SBoudrias/Inquirer.js), [globals](https://github.com/sindresorhus/globals), [sass](https://github.com/sass/dart-sass), [semver](https://github.com/npm/node-semver), [vendorfiles](https://github.com/Araxeus/vendorfiles) and [web-ext](https://github.com/mozilla/web-ext) to permit the latest version.

Updates `@biomejs/biome` to 2.4.1
- [Release notes](https://github.com/biomejs/biome/releases)
- [Changelog](https://github.com/biomejs/biome/blob/main/packages/@biomejs/biome/CHANGELOG.md)
- [Commits](https://github.com/biomejs/biome/commits/@biomejs/biome@2.4.1/packages/@biomejs/biome)

Updates `@inquirer/prompts` to 8.2.1
- [Release notes](https://github.com/SBoudrias/Inquirer.js/releases)
- [Commits](https://github.com/SBoudrias/Inquirer.js/compare/@inquirer/prompts@8.2.0...@inquirer/prompts@8.2.1)

Updates `globals` to 17.3.0
- [Release notes](https://github.com/sindresorhus/globals/releases)
- [Commits](sindresorhus/globals@v17.0.0...v17.3.0)

Updates `sass` to 1.97.3
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.97.2...1.97.3)

Updates `semver` to 7.7.4
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](npm/node-semver@v7.7.3...v7.7.4)

Updates `vendorfiles` to 1.4.1
- [Release notes](https://github.com/Araxeus/vendorfiles/releases)
- [Commits](Araxeus/vendorfiles@v1.4.0...v1.4.1)

Updates `web-ext` to 9.3.0
- [Release notes](https://github.com/mozilla/web-ext/releases)
- [Commits](mozilla/web-ext@9.2.0...9.3.0)

---
updated-dependencies:
- dependency-name: "@biomejs/biome"
  dependency-version: 2.4.1
  dependency-type: direct:development
  dependency-group: development-dependencies
- dependency-name: "@inquirer/prompts"
  dependency-version: 8.2.1
  dependency-type: direct:development
  dependency-group: development-dependencies
- dependency-name: globals
  dependency-version: 17.3.0
  dependency-type: direct:development
  dependency-group: development-dependencies
- dependency-name: sass
  dependency-version: 1.97.3
  dependency-type: direct:development
  dependency-group: development-dependencies
- dependency-name: semver
  dependency-version: 7.7.4
  dependency-type: direct:development
  dependency-group: development-dependencies
- dependency-name: vendorfiles
  dependency-version: 1.4.1
  dependency-type: direct:development
  dependency-group: development-dependencies
- dependency-name: web-ext
  dependency-version: 9.3.0
  dependency-type: direct:development
  dependency-group: development-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@github-actions github-actions Bot force-pushed the dependabot/npm_and_yarn/development-dependencies-dc2813cf16 branch from d7c0f30 to bf87f1e Compare April 6, 2026 20:54
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented Apr 6, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@codacy-production
Copy link
Copy Markdown

codacy-production Bot commented Apr 6, 2026

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

🟢 Metrics 0 complexity · 0 duplication

Metric Results
Complexity 0
Duplication 0

View in Codacy

TIP This summary will be updated as you push new changes. Give us feedback

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants