Skip to content

chore(deps): bump ws from 7.5.9 to 7.5.11#7632

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/ws-8.20.1
Open

chore(deps): bump ws from 7.5.9 to 7.5.11#7632
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/ws-8.20.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 19, 2026
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps ws from 7.5.9 to 7.5.11.

Release notes

Sourced from ws's releases.

7.5.11

Bug fixes

  • Backported 2b2abd45 to the 7.x release line (e14c4586).

7.5.10

Bug fixes

  • Backported e55e5106 to the 7.x release line (22c28763).
Commits

@dependabot dependabot Bot added dependencies javascript Pull requests that update javascript code labels May 19, 2026
chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed May 19, 2026
View reviewed changes
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

https://github.com/open-condo-software/condo/blob/19e99b89b069c115c4c229d3d99baa7b25f754de/yarn.lock#L532-L534
P1 Badge Restore submodule workspaces in yarn.lock

In a full checkout with submodules initialized, the root package.json still declares apps/* as workspaces and apps/accruals-gateway is a gitlink workspace, so deleting this lock entry (and the analogous entries for the other submodule apps) makes yarn install --immutable try to re-add those workspaces and fail because the lockfile would change. This looks like the lockfile was regenerated without submodules populated rather than just updating ws.

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/ws-8.20.1 branch from 19e99b8 to 2c0669f Compare May 19, 2026 16:41
@dependabot
chore(deps): bump ws from 7.5.9 to 7.5.11
cd4bd62 
Bumps [ws](https://github.com/websockets/ws) from 7.5.9 to 7.5.11.
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@7.5.9...7.5.11)

---
updated-dependencies:
- dependency-name: ws
  dependency-version: 8.20.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump ws from 7.5.9 to 8.20.1 chore(deps): bump ws from 7.5.9 to 7.5.11 May 26, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/ws-8.20.1 branch from 2c0669f to cd4bd62 Compare May 26, 2026 09:31
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented May 26, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

dependencies javascript Pull requests that update javascript code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants