Skip to content

Bump the npm-minor-patch group with 5 updates#43

Merged
jmcte merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-minor-patch-88bd8bc960
Jun 2, 2026
Merged

Bump the npm-minor-patch group with 5 updates#43
jmcte merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-minor-patch-88bd8bc960

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 2, 2026
edited by jmcte
Loading

Summary

  • Bumps the npm-minor-patch Dependabot group: yaml, zod, @types/node, tsx, and vitest.
  • Updates package.json and package-lock.json to the Dependabot-selected versions.

Governing Issue

No governing issue is linked; this is a Dependabot dependency maintenance PR.

Validation

  • PR Fast CI already ran on this Dependabot branch; Validate Secrets and AI Attestation jobs passed before the PR-description gate failed.
  • Fast Checks were skipped by the workflow's relevant-change detection for this PR, and the remaining CI failure was isolated to the PR body missing generated template sections.

Bootstrap Governance

  • Changes are scoped to Dependabot's generated dependency update.
  • Contributor or PR guidance changes are not applicable.
  • No real secrets, runtime auth, or machine-local env files are committed.

Merge Automation

  • Auto-merge is not safe to enable from this agent because the PR author is Dependabot; use the fallback merge-readiness policy after required checks pass.

Notes

  • The PR body was updated to satisfy the generated pull request template gate.

@dependabot
Bump the npm-minor-patch group with 5 updates
31c6dfe 
Bumps the npm-minor-patch group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [yaml](https://github.com/eemeli/yaml) | `2.8.3` | `2.9.0` |
| [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.3` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `24.12.0` | `24.12.4` |
| [tsx](https://github.com/privatenumber/tsx) | `4.21.0` | `4.22.4` |
| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `3.2.4` | `3.2.6` |


Updates `yaml` from 2.8.3 to 2.9.0
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v2.8.3...v2.9.0)

Updates `zod` from 4.3.6 to 4.4.3
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Commits](colinhacks/zod@v4.3.6...v4.4.3)

Updates `@types/node` from 24.12.0 to 24.12.4
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `tsx` from 4.21.0 to 4.22.4
- [Release notes](https://github.com/privatenumber/tsx/releases)
- [Changelog](https://github.com/privatenumber/tsx/blob/master/release.config.cjs)
- [Commits](privatenumber/tsx@v4.21.0...v4.22.4)

Updates `vitest` from 3.2.4 to 3.2.6
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v3.2.6/packages/vitest)

---
updated-dependencies:
- dependency-name: yaml
  dependency-version: 2.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-minor-patch
- dependency-name: zod
  dependency-version: 4.4.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-minor-patch
- dependency-name: "@types/node"
  dependency-version: 24.12.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-minor-patch
- dependency-name: tsx
  dependency-version: 4.22.4
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-minor-patch
- dependency-name: vitest
  dependency-version: 3.2.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 2, 2026
@dependabot dependabot Bot requested a review from pheidon as a code owner June 2, 2026 20:30
@dependabot dependabot Bot added the javascript Pull requests that update javascript code label Jun 2, 2026
@dependabot dependabot Bot requested a review from jmcte as a code owner June 2, 2026 20:30
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 2, 2026
@jmcte jmcte enabled auto-merge (squash) June 2, 2026 20:45
@jmcte jmcte merged commit e3b41cd into main Jun 2, 2026
10 of 12 checks passed
@jmcte jmcte deleted the dependabot/npm_and_yarn/npm-minor-patch-88bd8bc960 branch June 2, 2026 20:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jmcte jmcte jmcte approved these changes

@pheidon pheidon Awaiting requested review from pheidon pheidon is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jmcte