Skip to content

chore(deps): bump knip from 6.12.2 to 6.13.0 in the dev-tools group#1923

Merged
pethers merged 1 commit into
mainfrom
dependabot/npm_and_yarn/dev-tools-a4f6362fc6
May 12, 2026
Merged

chore(deps): bump knip from 6.12.2 to 6.13.0 in the dev-tools group#1923
pethers merged 1 commit into
mainfrom
dependabot/npm_and_yarn/dev-tools-a4f6362fc6

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 12, 2026

Bumps the dev-tools group with 1 update: knip.

Updates knip from 6.12.2 to 6.13.0

Release notes

Sourced from knip's releases.

Release 6.13.0

  • Add mercurial (hg) to command constants (#1737) (abb08b0958e08a12684deacf0ab62dc7ada38074) - thanks @​unrevised6419!
  • Expand wildcards in Jest projects (#1710) (7cb2d37a5c46b54d8be9bee1fbb026b52bb71246) - thanks @​joshkel!
  • Add knex visitor to scan source files for config (resolve #1736) (4c96fd297f33316921186293cf9f9d323ca48eb8)
  • Refactor to a better split of ast helpers (6e726a2c66727c2346b4c249a2efcd7d752231f5)
  • Handle package.json exports for outDir="." (resolve #1738) (42497c249545cd9e4ae8b7e64995e62cb0e8885d)
  • Fix star re-exported namespace case (resolve #1739) (e566c4b1a1bc697c0997e8a4ef6bdeb746524166)
  • Strip comments in scripts in compilers (resolve #1740) (a123d5c35ba6b9239f6ac1d20cf50b8b0f9b2d28)
  • Update rolldown snapshot (edfee2b3b6bfc3085d432fa5765b4e7a60ba5783)
  • Source-map subpath imports + collect pairs from referenced tsconfigs (7c5acc4a33047156205ff61413a83625bb9e05b4)
  • Tighten source-mapping utilities (0b68b81b4a732b3db64d69fd8c47802ff3302564)
  • Update dependencies (8788c1a64a93d568a9391693278a388af6980dec)
  • Remove obsolete internal jsdoc tag (0fed9756b485deb1831fbc78d8053bc939bd6971)
  • Add @​serhalp and @​stevennevins to sponsors (thank you!) (999a5e3551e0bafbcfa7a1540ae7f3fc4218828b)
  • Fix astro config after bump (f63537aa40f42aa7d3ff4bc64dab20dd01ecba83)
Commits
  • 4a0aa39 Release knip@6.13.0
  • 8788c1a Update dependencies
  • 0b68b81 Tighten source-mapping utilities
  • 7c5acc4 Source-map subpath imports + collect pairs from referenced tsconfigs
  • a123d5c Strip comments in scripts in compilers (resolve #1740)
  • e566c4b Fix star re-exported namespace case (resolve #1739)
  • 42497c2 Handle package.json exports for outDir="." (resolve #1738)
  • 6e726a2 Refactor to a better split of ast helpers
  • 4c96fd2 Add knex visitor to scan source files for config (resolve #1736)
  • 7cb2d37 Expand wildcards in Jest projects (#1710)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump knip from 6.12.2 to 6.13.0 in the dev-tools group
d67b29c 
Bumps the dev-tools group with 1 update: [knip](https://github.com/webpro-nl/knip/tree/HEAD/packages/knip).


Updates `knip` from 6.12.2 to 6.13.0
- [Release notes](https://github.com/webpro-nl/knip/releases)
- [Commits](https://github.com/webpro-nl/knip/commits/knip@6.13.0/packages/knip)

---
updated-dependencies:
- dependency-name: knip
  dependency-version: 6.13.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-tools
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Dependency updates npm labels May 12, 2026
Copilot AI review requested due to automatic review settings May 12, 2026 11:25
@dependabot dependabot Bot requested a review from pethers as a code owner May 12, 2026 11:25
@dependabot dependabot Bot added dependencies Dependency updates npm labels May 12, 2026
Copilot AI reviewed May 12, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

@github-actions github-actions Bot added the infrastructure CI/CD and build infrastructure label May 12, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 12, 2026

Dependency Review

βœ… No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details
PackageVersionScoreDetails
npm/@oxc-parser/binding-android-arm-eabi 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-android-arm64 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-darwin-arm64 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-darwin-x64 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-freebsd-x64 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-arm-gnueabihf 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-arm-musleabihf 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-arm64-gnu 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-arm64-musl 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-ppc64-gnu 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-riscv64-gnu 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-riscv64-musl 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-s390x-gnu 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-x64-gnu 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-linux-x64-musl 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-openharmony-arm64 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-wasm32-wasi 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-win32-arm64-msvc 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-win32-ia32-msvc 0.130.0 UnknownUnknown
npm/@oxc-parser/binding-win32-x64-msvc 0.130.0 UnknownUnknown
npm/@oxc-project/types 0.130.0 UnknownUnknown
npm/knip 6.13.0 UnknownUnknown
npm/oxc-parser 0.130.0 UnknownUnknown
npm/yaml 2.9.0 🟒 7.2
Details
CheckScoreReason
Maintained🟒 1030 commit(s) and 21 issue activity found in the last 90 days -- score normalized to 10
Dangerous-Workflow🟒 10no dangerous workflow patterns detected
Code-Review⚠️ 0Found 0/11 approved changesets -- score normalized to 0
Security-Policy🟒 10security policy file detected
Binary-Artifacts🟒 10no binaries found in the repo
Packaging⚠️ -1packaging workflow not detected
Token-Permissions🟒 9detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies⚠️ 2dependency not pinned by hash detected -- score normalized to 2
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
License🟒 10license file detected
Fuzzing🟒 10project is fuzzed
Branch-Protection🟒 3branch protection is not maximal on development and all release branches
Signed-Releases⚠️ -1no releases found
SAST🟒 10SAST tool is run on all commits

Scanned Files

  • package-lock.json

@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 12, 2026

πŸ“Έ Automated UI Screenshots

πŸ“‹ Screenshots Captured (8)

# Screenshot
1 01-splash-screen.png - 01 splash screen.png
2 02-intro-screen-menu.png - 02 intro screen menu.png
3 03-intro-screen-archetype-selector.png - 03 intro screen archetype selector.png
4 04-controls-screen.png - 04 controls screen.png
5 05-philosophy-screen.png - 05 philosophy screen.png
6 06-training-screen.png - 06 training screen.png
7 07-combat-screen-practice.png - 07 combat screen practice.png
8 08-combat-screen-versus.png - 08 combat screen versus.png

πŸ“¦ Download Screenshots

πŸ“₯ Download all screenshots from workflow artifacts

Screenshots are preserved as workflow artifacts for 30 days.

πŸ€– Generated by Playwright automation

@pethers pethers merged commit 4370e0f into main May 12, 2026
12 checks passed
@pethers pethers deleted the dependabot/npm_and_yarn/dev-tools-a4f6362fc6 branch May 12, 2026 11:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@pethers pethers pethers approved these changes

Assignees

No one assigned

Labels

dependencies Dependency updates infrastructure CI/CD and build infrastructure npm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@pethers