Skip to content

chore(deps-dev): bump promptfoo from 0.121.3 to 0.121.13 in /examples/promptfoo#2

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/examples/promptfoo/promptfoo-0.121.13
Closed

chore(deps-dev): bump promptfoo from 0.121.3 to 0.121.13 in /examples/promptfoo#2
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/examples/promptfoo/promptfoo-0.121.13

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 2, 2026

Copy link
Copy Markdown

Bumps promptfoo from 0.121.3 to 0.121.13.

Release notes

Sourced from promptfoo's releases.

0.121.13

0.121.13 (2026-05-28)

Features

  • add MiniMax provider (#8207) (ebd78f6)
  • anthropic: add support for Claude Opus 4.8 (#9500) (e090730)
  • assertions: add ignore option to trajectory:tool-args-match (#9466) (6423f2a)
  • assertions: add metadata shortcut to assertion context (#6863) (5264680)
  • assertions: support glob patterns in trajectory:tool-args-match ignore (#9484) (18b3eef)
  • assertions: tolerate optional defaults in trajectory:tool-args-match (#9471) (a74894a)
  • cli: add prompt optimization (#9294) (27d6dbe)
  • cli: warn on deprecated Node.js 20 runtime (#9494) (8de3408)
  • eval: add eval runtime vars (#9331) (3c76045)
  • eval: add output detail deep links (#9170) (1f5845b)
  • eval: load test sets from azure blob storage (#9282) (b5ea8ab)
  • google: add Gemini 3.5 Flash and refresh Google/Vertex models (#9376) (6c81c8d)
  • output: add html report detail drawer (#9291) (8c54598)
  • output: add named metric columns to CSV exports (#9480) (4531750)
  • providers: add MLflow AI Gateway provider (#8860) (d0e7e2d)
  • providers: add n8n webhook provider (#6770) (3dc6e32)
  • providers: add Novita provider (#8190) (42930e8)
  • providers: add NVIDIA NIM provider (#9491) (fa3e4a9)
  • providers: add OrcaRouter provider (#9493) (fe115ab)
  • redteam: add runtime tags to redteam run (#9499) (72d4cb4)

Bug Fixes

  • app: clarify metric pill filtering (#9252) (05e5a30)
  • app: reorder eval output actions (#9261) (91dc814)
  • cache: make the fetch cache key stable across processes (#9509) (7be3ef5)
  • ci: avoid shell interpolation in telemetry check (#9280) (4160a90)
  • ci: disable deploy dependency cache (#9281) (f3a2502)
  • ci: pin code-scan Node to 24.15.0 to stop install timeout (#9374) (e200bb5)
  • ci: scope code-scan-action mirror sync to release artifacts (#9363) (76c3a29)
  • classify script stderr by severity (#9459) (1eeef19)
  • cli: validate optimization split input (#9514) (e7e29d1)
  • code-scan: emit structured fork PR skip output (#9426) (61c624c)
  • code-scan: honor minimum-severity alias when min-severity is unset (#9433) (ea5ea9e)
  • code-scan: suppress SARIF on skipped fork scans (#9451) (8236e65)
  • config: dedupe repeated executable providers (#9430) (6325653)
  • config: preserve all function providers in combineConfigs (#9408) (ed4e29e)
  • db: isolate libsql test databases (#9504) (b01b257)
  • db: parameterize JSON path filters (#9345) (dc5e2ed)
  • db: replace better-sqlite3 with libsql (#9486) (ca3dea4)
  • db: restore SQLite busy_timeout for the libsql driver (#9508) (a74b2fe)
  • deps: avoid Socket-blocked package releases (#9456) (89d6e61)
  • deps: bump brace-expansion and webpack-dev-server [security] (#9339) (bb1d57e)

... (truncated)

Changelog

Sourced from promptfoo's changelog.

0.121.13 (2026-05-28)

Features

  • add MiniMax provider (#8207) (ebd78f6)
  • anthropic: add support for Claude Opus 4.8 (#9500) (e090730)
  • assertions: add ignore option to trajectory:tool-args-match (#9466) (6423f2a)
  • assertions: add metadata shortcut to assertion context (#6863) (5264680)
  • assertions: support glob patterns in trajectory:tool-args-match ignore (#9484) (18b3eef)
  • assertions: tolerate optional defaults in trajectory:tool-args-match (#9471) (a74894a)
  • cli: add prompt optimization (#9294) (27d6dbe)
  • cli: warn on deprecated Node.js 20 runtime (#9494) (8de3408)
  • eval: add eval runtime vars (#9331) (3c76045)
  • eval: add output detail deep links (#9170) (1f5845b)
  • eval: load test sets from azure blob storage (#9282) (b5ea8ab)
  • google: add Gemini 3.5 Flash and refresh Google/Vertex models (#9376) (6c81c8d)
  • output: add html report detail drawer (#9291) (8c54598)
  • output: add named metric columns to CSV exports (#9480) (4531750)
  • providers: add MLflow AI Gateway provider (#8860) (d0e7e2d)
  • providers: add n8n webhook provider (#6770) (3dc6e32)
  • providers: add Novita provider (#8190) (42930e8)
  • providers: add NVIDIA NIM provider (#9491) (fa3e4a9)
  • providers: add OrcaRouter provider (#9493) (fe115ab)
  • redteam: add runtime tags to redteam run (#9499) (72d4cb4)

Bug Fixes

  • app: clarify metric pill filtering (#9252) (05e5a30)
  • app: reorder eval output actions (#9261) (91dc814)
  • cache: make the fetch cache key stable across processes (#9509) (7be3ef5)
  • ci: avoid shell interpolation in telemetry check (#9280) (4160a90)
  • ci: disable deploy dependency cache (#9281) (f3a2502)
  • ci: pin code-scan Node to 24.15.0 to stop install timeout (#9374) (e200bb5)
  • ci: scope code-scan-action mirror sync to release artifacts (#9363) (76c3a29)
  • classify script stderr by severity (#9459) (1eeef19)
  • cli: validate optimization split input (#9514) (e7e29d1)
  • code-scan: emit structured fork PR skip output (#9426) (61c624c)
  • code-scan: honor minimum-severity alias when min-severity is unset (#9433) (ea5ea9e)
  • code-scan: suppress SARIF on skipped fork scans (#9451) (8236e65)
  • config: dedupe repeated executable providers (#9430) (6325653)
  • config: preserve all function providers in combineConfigs (#9408) (ed4e29e)
  • db: isolate libsql test databases (#9504) (b01b257)
  • db: parameterize JSON path filters (#9345) (dc5e2ed)
  • db: replace better-sqlite3 with libsql (#9486) (ca3dea4)
  • db: restore SQLite busy_timeout for the libsql driver (#9508) (a74b2fe)
  • deps: avoid Socket-blocked package releases (#9456) (89d6e61)
  • deps: bump brace-expansion and webpack-dev-server [security] (#9339) (bb1d57e)
  • deps: lazy-load optional integration packages (#9284) (db37941)
  • deps: patch qs denial of service advisory (#9384) (b392051)
  • deps: update anthropic packages (#9461) (87277b9)

... (truncated)

Commits
  • 4860e99 chore(main): release 0.121.13 (#9343)
  • 14e9dc1 fix(providers): normalize Claude Opus compatibility (#9510)
  • 18b3eef feat(assertions): support glob patterns in trajectory:tool-args-match ignore ...
  • 6423f2a feat(assertions): add ignore option to trajectory:tool-args-match (#9466)
  • b9a849b fix(providers): reject MiniMax function_call (#9512)
  • b7f4a04 fix(server): restore Azure Blob SAS tokens by value, not array position (#9516)
  • e93c817 fix(util): don't misreport a missing transitive dep as the optional package (...
  • 9e2eaf5 fix(providers): redact MLflow Gateway api key and restore Novita routing test...
  • 7be3ef5 fix(cache): make the fetch cache key stable across processes (#9509)
  • a74b2fe fix(db): restore SQLite busy_timeout for the libsql driver (#9508)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [promptfoo](https://github.com/promptfoo/promptfoo) from 0.121.3 to 0.121.13.
- [Release notes](https://github.com/promptfoo/promptfoo/releases)
- [Changelog](https://github.com/promptfoo/promptfoo/blob/main/CHANGELOG.md)
- [Commits](promptfoo/promptfoo@0.121.3...0.121.13)

---
updated-dependencies:
- dependency-name: promptfoo
  dependency-version: 0.121.13
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 2, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 1, 2026

Copy link
Copy Markdown
Author

Superseded by #6.

@dependabot dependabot Bot closed this Jul 1, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/examples/promptfoo/promptfoo-0.121.13 branch July 1, 2026 10:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants