Skip to content

Bump liquidjs from 10.25.0 to 10.25.5 in /scripts#3769

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/scripts/liquidjs-10.25.5
Open

Bump liquidjs from 10.25.0 to 10.25.5 in /scripts#3769
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/scripts/liquidjs-10.25.5

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 8, 2026

Bumps liquidjs from 10.25.0 to 10.25.5.

Release notes

Sourced from liquidjs's releases.

v10.25.5

10.25.5 (2026-04-07)

Bug Fixes

  • enforce root containment for renderFile/parseFile lookups (#870) (f41c1fc)
  • null date should return empty (#868) (#872) (4f9a499)
  • rounding negative away from zero when half (#873) (1cdf10b)

v10.25.4

10.25.4 (2026-04-07)

Bug Fixes

  • sort and sort_natural filters bypass ownPropertyOnly (#869) (e743da0)

v10.25.3

10.25.3 (2026-04-06)

Bug Fixes

  • precise memoryLimit for string replace (abc058b)
  • use realpath for fs.contains (#867) (529dd67)

v10.25.2

10.25.2 (2026-03-25)

Bug Fixes

  • handle undefined replacement argument in replace filter (#864) (0ad2b11)

v10.25.1

10.25.1 (2026-03-22)

Bug Fixes

  • mem limiter for invalid ranges (95ddefc)
  • treat args for replace_first as literal (35d5230)
Changelog

Sourced from liquidjs's changelog.

10.25.5 (2026-04-07)

Bug Fixes

  • enforce root containment for renderFile/parseFile lookups (#870) (f41c1fc)
  • null date should return empty (#868) (#872) (4f9a499)
  • rounding negative away from zero when half (#873) (1cdf10b)

10.25.4 (2026-04-07)

Bug Fixes

  • sort and sort_natural filters bypass ownPropertyOnly (#869) (e743da0)

10.25.3 (2026-04-06)

Bug Fixes

  • precise memoryLimit for string replace (abc058b)
  • use realpath for fs.contains (#867) (529dd67)

10.25.2 (2026-03-25)

Bug Fixes

  • handle undefined replacement argument in replace filter (#864) (0ad2b11)

10.25.1 (2026-03-22)

Bug Fixes

  • mem limiter for invalid ranges (95ddefc)
  • treat args for replace_first as literal (35d5230)
Commits
  • 4af7be6 chore(release): 10.25.5 [skip ci]
  • 05c47da refactor: replace shell scripts with JS for cross-platform support (#875)
  • 66011d1 docs: add timbze as a contributor for code (#874)
  • 1cdf10b fix: rounding negative away from zero when half (#873)
  • 4f9a499 fix: null date should return empty (#868) (#872)
  • f41c1fc fix: enforce root containment for renderFile/parseFile lookups (#870)
  • db43485 chore(release): 10.25.4 [skip ci]
  • e743da0 fix: sort and sort_natural filters bypass ownPropertyOnly (#869)
  • 8f69a08 chore(release): 10.25.3 [skip ci]
  • 529dd67 fix: use realpath for fs.contains (#867)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump liquidjs from 10.25.0 to 10.25.5 in /scripts
fcf4620 
Bumps [liquidjs](https://github.com/harttle/liquidjs) from 10.25.0 to 10.25.5.
- [Release notes](https://github.com/harttle/liquidjs/releases)
- [Changelog](https://github.com/harttle/liquidjs/blob/master/CHANGELOG.md)
- [Commits](harttle/liquidjs@v10.25.0...v10.25.5)

---
updated-dependencies:
- dependency-name: liquidjs
  dependency-version: 10.25.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 8, 2026
@learn-build-service-prod
Copy link
Copy Markdown

learn-build-service-prod bot commented Apr 8, 2026

Learn Build status updates of commit fcf4620:

✅ Validation status: passed

File Status Preview URL Details
scripts/package-lock.json ✅Succeeded

For more details, please refer to the build report.

@learn-build-service-prod
Copy link
Copy Markdown

learn-build-service-prod bot commented Apr 8, 2026

PoliCheck Scan Report

The following report lists PoliCheck issues in PR files. Before you merge the PR, you must fix all severity-1 and severity-2 issues. The AI Review Details column lists suggestions for either removing or replacing the terms. If you find a false positive result, mention it in a PR comment and include this text: #policheck-false-positive. This feedback helps reduce false positives in future scans.

✅ No issues found

More information about PoliCheck

Information: PoliCheck | Severity Guidance | Term
For any questions: Try searching the learn.microsoft.com contributor guides or post your question in the Learn support channel.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants