Skip to content

Bump markdown-it and markdownlint-cli#1441

Merged
TonyXiang8787 merged 2 commits into
mainfrom
dependabot/npm_and_yarn/multi-367f6da9ab
Jun 18, 2026
Merged

Bump markdown-it and markdownlint-cli#1441
TonyXiang8787 merged 2 commits into
mainfrom
dependabot/npm_and_yarn/multi-367f6da9ab

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown
Contributor

Bumps markdown-it to 14.2.0 and updates ancestor dependency markdownlint-cli. These dependencies need to be updated together.

Updates markdown-it from 14.1.1 to 14.2.0

Changelog

Sourced from markdown-it's changelog.

[14.2.0] - 2026-05-24

Added

  • isPunctCharCode to utilities.

Fixed

  • Don't end HTML comment blocks on a blank line, #1155.
  • Properly recognize astral chars (surrogates) in delimiter scans for emphasis-like markers, #1072. Big thanks to @​tats-u for his global efforts with improving CJK support.
  • Preserve unicode whitespaces when trimm headings/paragraphs, #1074.
  • More strict entities decode to avoid false positives ;, #1096.
  • Restore block parser state on fail in lheading rule, #1131.

Security

  • Fixed poor smartquotes perfomance on > 70k quotes in single block
  • Bumped linkify-it to 5.0.1 with fixed potential perfomance issues.
Commits

Updates markdownlint-cli from 0.48.0 to 0.49.0

Release notes

Sourced from markdownlint-cli's releases.

v0.49.0

  • Update markdownlint dependency to 0.41.0
    • Improve MD022/MD028/MD035/MD042/MD051/MD060
    • Remove handling of inline directive syntax (frequent false positives)
    • Remove support for end-of-life Node version 20
  • Update all dependencies via Dependabot
Commits
  • a4d5d37 Bump version 0.49.0
  • 503f264 Delete and recreate package-lock.json via "npm install".
  • 7a24593 Bump markdownlint from 0.40.0 to 0.41.0
  • c7c1c76 Bump commander from 14.0.3 to 15.0.0
  • 83f5f30 Bump tinyglobby from 0.2.16 to 0.2.17
  • 74b98de Bump js-yaml from 4.1.1 to 4.2.0
  • d368135 Bump markdown-it from 14.1.1 to 14.2.0
  • dd34288 Bump ava from 8.0.0 to 8.0.1
  • 1e363dc Bump brace-expansion from 5.0.5 to 5.0.6
  • 2f092d2 Bump ava from 7.0.0 to 8.0.0
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump markdown-it and markdownlint-cli
7e78412 
Bumps [markdown-it](https://github.com/markdown-it/markdown-it) to 14.2.0 and updates ancestor dependency [markdownlint-cli](https://github.com/igorshubovych/markdownlint-cli). These dependencies need to be updated together.


Updates `markdown-it` from 14.1.1 to 14.2.0
- [Changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md)
- [Commits](markdown-it/markdown-it@14.1.1...14.2.0)

Updates `markdownlint-cli` from 0.48.0 to 0.49.0
- [Release notes](https://github.com/igorshubovych/markdownlint-cli/releases)
- [Commits](igorshubovych/markdownlint-cli@v0.48.0...v0.49.0)

---
updated-dependencies:
- dependency-name: markdown-it
  dependency-version: 14.2.0
  dependency-type: indirect
- dependency-name: markdownlint-cli
  dependency-version: 0.49.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 17, 2026
figueroa1395
figueroa1395 previously approved these changes Jun 18, 2026
View reviewed changes
@figueroa1395 figueroa1395 enabled auto-merge June 18, 2026 06:35
@mgovers mgovers added dependencies Pull requests that update a dependency file and removed dependencies Pull requests that update a dependency file labels Jun 18, 2026
@figueroa1395 figueroa1395 added this pull request to the merge queue Jun 18, 2026
@TonyXiang8787 TonyXiang8787 removed this pull request from the merge queue due to a manual request Jun 18, 2026
@TonyXiang8787

TonyXiang8787 commented Jun 18, 2026

Copy link
Copy Markdown
Member

@figueroa1395 I have removed this from merge queue. To keep the version sync, you need to modify both package-lock.json and .pre-commit.

Can you modify the other too? Then merge.

@mgovers

mgovers commented Jun 18, 2026

Copy link
Copy Markdown
Member

@figueroa1395 I have removed this from merge queue. To keep the version sync, you need to modify both package-lock.json and .pre-commit.

Can you modify the other too? Then merge.

or run the version bump action on this branch

@figueroa1395

figueroa1395 commented Jun 18, 2026

Copy link
Copy Markdown
Member

@figueroa1395 I have removed this from merge queue. To keep the version sync, you need to modify both package-lock.json and .pre-commit.
Can you modify the other too? Then merge.

or run the version bump action on this branch

Running in https://github.com/PowerGridModel/power-grid-model/actions/runs/27756676079. Let's see if this manual run triggers changes in this PR

@figueroa1395
update pre-commit
d8bc2b9 
Signed-off-by: Santiago Figueroa Manrique <22895394+figueroa1395@users.noreply.github.com>
@sonarqubecloud

sonarqubecloud Bot commented Jun 18, 2026

Copy link
Copy Markdown

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@TonyXiang8787 TonyXiang8787 added this pull request to the merge queue Jun 18, 2026
Merged via the queue into main with commit 6835939 Jun 18, 2026
34 checks passed
@TonyXiang8787 TonyXiang8787 deleted the dependabot/npm_and_yarn/multi-367f6da9ab branch June 18, 2026 16:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@TonyXiang8787 TonyXiang8787 TonyXiang8787 approved these changes

@figueroa1395 figueroa1395 figueroa1395 left review comments

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@TonyXiang8787 @mgovers @figueroa1395