Skip to content

chore(deps): bump linkify-it and mailparser in /apps/backend#1609

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot-npm_and_yarn-apps-backend-multi-c66b7f6fbe
Open

chore(deps): bump linkify-it and mailparser in /apps/backend#1609
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot-npm_and_yarn-apps-backend-multi-c66b7f6fbe

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 28, 2026

Copy link
Copy Markdown
Contributor

Bumps linkify-it and mailparser. These dependencies needed to be updated together.
Updates linkify-it from 5.0.0 to 5.0.1

Changelog

Sourced from linkify-it's changelog.

5.0.1 / 2026-05-23

  • Fixed DoS in fuzzy links/emails search.
  • Reworked search logic - check each pattern separate, use g regexes instead of slice.
  • Removed internal cache - useless overcomplication.
Commits

Updates mailparser from 3.6.7 to 3.9.12

Release notes

Sourced from mailparser's releases.

mailparser: v3.8.1

3.8.1 (2025-11-05)

Bug Fixes

mailparser: v3.8.0

3.8.0 (2025-11-04)

Bug Fixes

  • deps: Bumped Nodemailer to fix issue with long data URI's (d24f96e)
Changelog

Sourced from mailparser's changelog.

3.9.12 (2026-06-25)

Bug Fixes

  • decode iso-8859-8-i and iso-8859-8-e charsets as iso-8859-8 (3e4b7fc)

3.9.11 (2026-06-19)

Bug Fixes

  • bump nodemailer to 9.0.1 (020f140)

3.9.10 (2026-06-15)

Bug Fixes

  • bump dependencies (nodemailer 9, eslint 10.5, prettier 3.8.4) (262ecff)

3.9.9 (2026-05-29)

Bug Fixes

3.9.8 (2026-04-08)

Bug Fixes

3.9.7 (2026-04-08)

Bug Fixes

3.9.6 (2026-03-25)

Bug Fixes

  • bump nodemailer to 8.0.4 (b2d7f77)

3.9.5 (2026-03-23)

... (truncated)

Commits
  • cf7dd8d chore(master): release 3.9.12 [skip-ci] (#427)
  • 3e4b7fc fix: decode iso-8859-8-i and iso-8859-8-e charsets as iso-8859-8
  • 04116f0 chore(master): release 3.9.11 [skip-ci] (#425)
  • 020f140 fix: bump nodemailer to 9.0.1
  • b890336 docs: add PGP-signed SECURITY.txt (RFC 9116) [skip ci]
  • 705c237 chore(master): release 3.9.10 [skip-ci] (#424)
  • 588e483 chore: add CLAUDE.md, security policy and CodeQL workflow, modernize CI
  • 262ecff fix: bump dependencies (nodemailer 9, eslint 10.5, prettier 3.8.4)
  • 25a0e6d chore(master): release 3.9.9 [skip-ci] (#422)
  • 7a83b91 fix: bumped deps
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for mailparser since your current version.


@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 28, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 28, 2026 10:41
@dependabot dependabot Bot requested review from ellen-wright and removed request for a team June 28, 2026 10:41
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 28, 2026
@github-actions github-actions Bot enabled auto-merge June 28, 2026 10:41
Bumps [linkify-it](https://github.com/markdown-it/linkify-it) and [mailparser](https://github.com/nodemailer/mailparser). These dependencies needed to be updated together.

Updates `linkify-it` from 5.0.0 to 5.0.1
- [Changelog](https://github.com/markdown-it/linkify-it/blob/master/CHANGELOG.md)
- [Commits](markdown-it/linkify-it@5.0.0...5.0.1)

Updates `mailparser` from 3.6.7 to 3.9.12
- [Release notes](https://github.com/nodemailer/mailparser/releases)
- [Changelog](https://github.com/nodemailer/mailparser/blob/master/CHANGELOG.md)
- [Commits](nodemailer/mailparser@v3.6.7...v3.9.12)

---
updated-dependencies:
- dependency-name: linkify-it
  dependency-version: 5.0.1
  dependency-type: indirect
- dependency-name: mailparser
  dependency-version: 3.9.12
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot-npm_and_yarn-apps-backend-multi-c66b7f6fbe branch from 318306d to bd98c58 Compare June 30, 2026 17:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants