Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Dependency Updates #227

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 20, 2025
Merged

Dependency Updates #227

merged 1 commit into from
Oct 20, 2025

Conversation

@ncalteen
Copy link
Collaborator

@ncalteen ncalteen commented Oct 20, 2025

This pull request includes a number of dependency updates for both GitHub Actions and npm in order to resolve various npm audit warnings.

@ncalteen ncalteen self-assigned this Oct 20, 2025
Copilot AI review requested due to automatic review settings October 20, 2025 19:31
Copilot AI reviewed Oct 20, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

Updates project dependencies to resolve npm audit warnings and bumps the package version to 6.0.1 to reflect the dependency changes.

  • Version bump from 6.0.0 to 6.0.1 following semantic versioning for patch-level changes
  • Dependency updates to address security vulnerabilities identified by npm audit

@github-actions
Copy link

github-actions bot commented Oct 20, 2025

Semantic Version Check Passed ✅

Version in manifest file package.json is valid.

This comment will be automatically updated as changes are pushed to this PR branch.

@github-actions
Copy link

github-actions bot commented Oct 20, 2025

MegaLinter analysis: Success

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ ACTION actionlint 5 0 0 0.17s
✅ JAVASCRIPT prettier 19 0 0 0.86s
✅ JSON npm-package-json-lint yes no no 0.82s
✅ JSON prettier 31 0 0 1.54s
✅ MARKDOWN markdownlint 10 0 0 0.94s
✅ REPOSITORY gitleaks yes no no 1.52s
✅ REPOSITORY git_diff yes no no 0.01s
✅ REPOSITORY grype yes no no 38.49s
✅ REPOSITORY secretlint yes no no 1.09s
✅ REPOSITORY syft yes no no 7.12s
✅ REPOSITORY trivy yes no no 15.38s
✅ REPOSITORY trivy-sbom yes no no 6.49s
✅ REPOSITORY trufflehog yes no no 24.75s
✅ TYPESCRIPT prettier 109 0 0 4.79s
✅ YAML prettier 25 0 0 1.26s
✅ YAML yamllint 25 0 0 1.04s

See detailed reports in MegaLinter artifacts

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

  • Documentation: Custom Flavors
  • Command: npx [email protected] --custom-flavor-setup --custom-flavor-linters ACTION_ACTIONLINT,JAVASCRIPT_PRETTIER,JSON_PRETTIER,JSON_NPM_PACKAGE_JSON_LINT,MARKDOWN_MARKDOWNLINT,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,TYPESCRIPT_PRETTIER,YAML_PRETTIER,YAML_YAMLLINT

MegaLinter is graciously provided by OX Security

@ncalteen ncalteen merged commit 64549e2 into main Oct 20, 2025
14 checks passed
@ncalteen ncalteen deleted the ncalteen/deps branch October 20, 2025 19:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

@ncalteen ncalteen

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ncalteen