Skip to content

[Deps] Safe dependency updates 2026-03-10#1199

Closed
github-actions[bot] wants to merge 2 commits intomainfrom
deps/safe-updates-2026-03-10-577de369bbfdf92b
Closed

[Deps] Safe dependency updates 2026-03-10#1199
github-actions[bot] wants to merge 2 commits intomainfrom
deps/safe-updates-2026-03-10-577de369bbfdf92b

Conversation

@github-actions
Copy link
Contributor

@github-actions github-actions bot commented Mar 10, 2026

Automated Safe Dependency Updates

This PR contains safe patch/minor-level dependency updates that have been verified to:

  • ✅ Pass all tests (828 passing, 3 pre-existing failures unchanged)
  • ✅ Have no breaking changes
  • ✅ Address no new security vulnerabilities (npm audit shows 0 vulnerabilities)

Updated Dependencies

Package Previous Updated Type
@commitlint/cli 20.4.1 20.4.3 patch
@commitlint/config-conventional 20.4.1 20.4.3 patch
@eslint/compat 2.0.2 2.0.3 patch
@types/node 25.2.3 25.4.0 minor
@typescript-eslint/eslint-plugin 8.55.0 8.57.0 minor
@typescript-eslint/parser 8.55.0 8.57.0 minor
eslint 10.0.0 10.0.3 patch
glob 13.0.1 13.0.6 patch
globals 17.3.0 17.4.0 minor
typescript-eslint 8.55.0 8.57.0 minor

Security Status

  • npm audit: 0 vulnerabilities found (CRITICAL: 0, HIGH: 0, MODERATE: 0, LOW: 0)
  • No Dependabot alerts accessible for comparison

Skipped Updates (major version bumps with breaking changes)

  • chalk 4.x → 5.x (ESM-only, breaking)
  • commander 12.x → 14.x (major breaking changes)
  • eslint-plugin-security 3.x → 4.x (major)
  • execa 5.x → 9.x (major rewrite, ESM-only)

Verification

  • All tests pass (828/831 — 3 pre-existing failures unrelated to updates)
  • No breaking changes detected
  • npm audit clean after updates

Generated by Dependency Security Monitor Workflow

AI generated by Dependency Security Monitor

@github-actions
chore(deps): safe dependency updates 2026-03-10
eee40f6 
- @commitlint/cli: 20.4.1 -> 20.4.3
- @commitlint/config-conventional: 20.4.1 -> 20.4.3
- @eslint/compat: 2.0.2 -> 2.0.3
- @types/node: 25.2.3 -> 25.4.0
- @typescript-eslint/eslint-plugin: 8.55.0 -> 8.57.0
- @typescript-eslint/parser: 8.55.0 -> 8.57.0
- eslint: 10.0.0 -> 10.0.3
- glob: 13.0.1 -> 13.0.6
- globals: 17.3.0 -> 17.4.0
- typescript-eslint: 8.55.0 -> 8.57.0

All tests pass (3 pre-existing unrelated failures unchanged)

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@github-actions github-actions bot added automated dependencies Pull requests that update a dependency file labels Mar 10, 2026
@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

✅ Coverage Check Passed

Overall Coverage

Metric Base PR Delta
Lines 82.37% 82.51% 📈 +0.14%
Statements 82.27% 82.41% 📈 +0.14%
Functions 82.60% 82.60% ➡️ +0.00%
Branches 74.21% 74.30% 📈 +0.09%
📁 Per-file Coverage Changes (1 files)
File Lines (Before → After) Statements (Before → After)
src/docker-manager.ts 83.4% → 84.0% (+0.54%) 82.8% → 83.3% (+0.52%)

Coverage comparison generated by scripts/ci/compare-coverage.ts

@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

C++ Build Test Results

Project CMake Build Status
fmt PASS
json PASS

Overall: PASS

Generated by Build Test C++ for issue #1199

@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

Build Test: Deno

Project Tests Status
oak 1/1 ✅ PASS
std 1/1 ✅ PASS

Overall: ✅ PASS

Generated by Build Test Deno for issue #1199

@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

Go Build Test Results

Project Download Tests Status
color 1/1 PASS
env 1/1 PASS
uuid 1/1 PASS

Overall: PASS

Generated by Build Test Go for issue #1199

@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

Merged PRs reviewed: fix(ci): resolve integration test suite failures on main; fix(security): eliminate TOCTOU race conditions in ssl-bump.ts ✅
Safeinputs GH PR list ✅
Playwright GitHub title ✅
Tavily search ❌
File write ✅
Bash cat ✅
Discussion comment ✅
Build (npm ci && npm run build) ✅
Overall: FAIL

🔮 The oracle has spoken through Smoke Codex for issue #1199

@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

Build Test: Node.js Results

Project Install Tests Status
clsx PASS ✅ PASS
execa PASS ✅ PASS
p-limit PASS ✅ PASS

Overall: ✅ PASS

All 3 Node.js projects installed and tested successfully.

Generated by Build Test Node.js for issue #1199

@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

🦀 Rust Build Test Results

Project Build Tests Status
fd 1/1 PASS
zoxide 1/1 PASS

Overall: ✅ PASS

Generated by Build Test Rust for issue #1199

@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

Chroot Version Comparison Results

Runtime Host Version Chroot Version Match?
Python Python 3.12.12 Python 3.12.3 ❌ NO
Node.js v24.14.0 v20.20.0 ❌ NO
Go go1.22.12 go1.22.12 ✅ YES

Result: ❌ Not all tests passed. Go matches, but Python and Node.js versions differ between host and chroot environments.

Tested by Smoke Chroot for issue #1199

@github-actions github-actions bot mentioned this pull request Mar 11, 2026
Open
@github-actions
Copy link
Contributor Author

github-actions bot commented Mar 11, 2026

Smoke Test Results

GitHub MCP: Last 2 merged PRs retrieved

Playwright: github.com title contains "GitHub"

File Write: /tmp/gh-aw/agent/smoke-test-claude-22929864988.txt created

Bash: File verified via cat

Overall: PASS

💥 [THE END] — Illustrated by Smoke Claude for issue #1199

@Mossaka
Copy link
Collaborator

Mossaka commented Mar 11, 2026

Closing in favor of an aggregated dependency update PR that combines all pending updates. This reduces PR noise and CI load.

@Mossaka Mossaka closed this Mar 11, 2026
Mossaka added a commit that referenced this pull request Mar 11, 2026
@Mossaka @claude
chore(deps): aggregated dependency updates
422407b 
Run npm update and npm audit fix across root and docs-site to bring all
dependencies to latest compatible versions within existing semver ranges.

Closes individual dependency PRs #1204, #1199, #1185, #1183, #1179,
#1175, #1141, #1114, #1110, #1104, #1059, #1027, #1019, #976.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@Mossaka Mossaka mentioned this pull request Mar 11, 2026
Open
4 tasks
This was referenced Mar 11, 2026
Open
Open
Open
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

automated build-test-cpp build-test-deno build-test-go build-test-node build-test-rust dependencies Pull requests that update a dependency file smoke-claude

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Mossaka