Skip to content

chore(deps): bump the major group across 1 directory with 2 updates#2554

Merged
ElliotFriend merged 1 commit into
mainfrom
dependabot/npm_and_yarn/major-0c90edfcda
Jul 6, 2026
Merged

chore(deps): bump the major group across 1 directory with 2 updates#2554
ElliotFriend merged 1 commit into
mainfrom
dependabot/npm_and_yarn/major-0c90edfcda

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown
Contributor

Bumps the major group with 2 updates in the / directory: @open-rpc/schema-utils-js and js-yaml.

Updates @open-rpc/schema-utils-js from 1.16.2 to 2.2.1

Release notes

Sourced from @​open-rpc/schema-utils-js's releases.

2.2.1

2.2.1 (2026-02-25)

Bug Fixes

  • package bump and no-refs exposure (f788c32)

2.2.0

2.2.0 (2026-02-25)

Bug Fixes

  • allow extending extensions themselves by name (109f53b)
  • change test spec extension name (5ff0ae0)
  • update types to match the new specific schema types update (8de1fc3)

Features

  • add support for proper schema segmentation (6df92b2)

2.1.2

2.1.2 (2025-02-25)

Bug Fixes

2.1.1

2.1.1 (2025-02-24)

Bug Fixes

  • Add support for exposing a public interface to retrieve extension (134ab6a)

2.1.0

2.1.0 (2025-01-23)

Features

  • add support for open-rpc extensions. (e6c215a)

2.0.5

2.0.5 (2024-10-08)

... (truncated)

Changelog

Sourced from @​open-rpc/schema-utils-js's changelog.

2.2.1 (2026-02-25)

Bug Fixes

  • package bump and no-refs exposure (f788c32)

2.2.0 (2026-02-25)

Bug Fixes

  • allow extending extensions themselves by name (109f53b)
  • change test spec extension name (5ff0ae0)
  • update types to match the new specific schema types update (8de1fc3)

Features

  • add support for proper schema segmentation (6df92b2)

2.1.2 (2025-02-25)

Bug Fixes

2.1.1 (2025-02-24)

Bug Fixes

  • Add support for exposing a public interface to retrieve extension (134ab6a)

2.1.0 (2025-01-23)

Features

  • add support for open-rpc extensions. (e6c215a)

2.0.5 (2024-10-08)

Bug Fixes

  • add failing test around bug with dereffing and leaving .components around (ffd6c84)
  • remove extra components (39c2120)

... (truncated)

Commits
  • 526b480 chore(release): 2.2.1 [skip ci]
  • 7f5d588 Merge pull request #981 from open-rpc/fix/bump
  • f788c32 fix: package bump and no-refs exposure
  • 3601b57 chore(release): 2.2.0 [skip ci]
  • 3afc3a7 Merge pull request #980 from open-rpc/fix/ci
  • df2b4f7 chore: downgrade node to fix ci error
  • 5eea678 Merge pull request #979 from open-rpc/fix/semrel
  • 329728c chore: update circle ci for semantic release
  • c208653 Merge pull request #976 from open-rpc/feat/spec-types
  • 6df92b2 feat: add support for proper schema segmentation
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by zcstarr, a new releaser for @​open-rpc/schema-utils-js since your current version.


Updates js-yaml from 4.3.0 to 5.2.1

Changelog

Sourced from js-yaml's changelog.

[5.2.1] - 2026-07-02

Fixed

  • Add Map support to !!omap (should work when realMapTag used)

Security

  • Remove quadratic complexity from !!omap addItem. Regression from v5 (usually not critical, because YAML11_SCHEMA is not default anymore).
Commits
  • ac16b42 5.2.1 released
  • 4a864e5 Deps bump
  • 39f3211 !!omap: add Map support and remove quadratic complexity
  • ff17f1e Changelog update
  • 8ed15f1 deps bump
  • 1a562dc Fix changelog link
  • c28ed5e 5.2.0 released
  • 125cd5a Add maxAliases option
  • 3105455 Replace maxMergeSeqLengthoption with maxTotalMergeKeys (more robust)
  • 39d00d6 numbers: Drop boxed numbers support, simplify .identify() checks, clarify rou...
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 5, 2026
Copilot AI review requested due to automatic review settings July 5, 2026 02:10
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 5, 2026

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot can't review bot-authored pull requests automatically. A user with Copilot access can request a review manually.

@socket-security

socket-security Bot commented Jul 5, 2026

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Added@​open-rpc/​schema-utils-js@​2.2.1991007984100
Addedjs-yaml@​5.2.11001009993100

View full report

@socket-security

socket-security Bot commented Jul 5, 2026

Copy link
Copy Markdown

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

@dependabot dependabot Bot changed the title chore(deps): bump the major group with 2 updates chore(deps): bump the major group across 1 directory with 2 updates Jul 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/major-0c90edfcda branch from a7ba69c to e8c3a7c Compare July 6, 2026 21:17
@ElliotFriend

Copy link
Copy Markdown
Contributor

@dependabot recreate

Bumps the major group with 2 updates in the / directory: [@open-rpc/schema-utils-js](https://github.com/open-rpc/schema-utils-js) and [js-yaml](https://github.com/nodeca/js-yaml).


Updates `@open-rpc/schema-utils-js` from 1.16.2 to 2.2.1
- [Release notes](https://github.com/open-rpc/schema-utils-js/releases)
- [Changelog](https://github.com/open-rpc/schema-utils-js/blob/master/CHANGELOG.md)
- [Commits](open-rpc/schema-utils-js@1.16.2...2.2.1)

Updates `js-yaml` from 4.3.0 to 5.2.1
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](nodeca/js-yaml@4.3.0...5.2.1)

---
updated-dependencies:
- dependency-name: "@open-rpc/schema-utils-js"
  dependency-version: 2.2.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: major
- dependency-name: js-yaml
  dependency-version: 5.2.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/major-0c90edfcda branch from e8c3a7c to 219d790 Compare July 6, 2026 21:36
@ElliotFriend ElliotFriend merged commit 012732a into main Jul 6, 2026
6 checks passed
@ElliotFriend ElliotFriend deleted the dependabot/npm_and_yarn/major-0c90edfcda branch July 6, 2026 21:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants