Skip to content

Bump yaml and markdownlint-cli2 in /frontend#716

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/frontend/multi-f310253b31
Open

Bump yaml and markdownlint-cli2 in /frontend#716
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/frontend/multi-f310253b31

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 25, 2026

Bumps yaml to 1.10.3 and updates ancestor dependencies yaml and markdownlint-cli2. These dependencies need to be updated together.

Updates yaml from 1.10.2 to 1.10.3

Commits
  • cfe8f04 1.10.3
  • 7abcf45 fix: Catch stack overflow during CST composition
  • a0252f8 chore: Add rules avoiding processing of tests/json-test-suite
  • a5e83b0 style: Apply updates Prettier rules
  • b8ddca0 chore: Refresh lockfile
  • 395f892 ci: Use a different (working) submodule checkout
  • 6fd2720 test-events: Add {} and [] indicators to flow maps & sequences
  • See full diff in compare view

Updates yaml from 2.3.4 to 2.8.3

Commits
  • cfe8f04 1.10.3
  • 7abcf45 fix: Catch stack overflow during CST composition
  • a0252f8 chore: Add rules avoiding processing of tests/json-test-suite
  • a5e83b0 style: Apply updates Prettier rules
  • b8ddca0 chore: Refresh lockfile
  • 395f892 ci: Use a different (working) submodule checkout
  • 6fd2720 test-events: Add {} and [] indicators to flow maps & sequences
  • See full diff in compare view

Updates markdownlint-cli2 from 0.7.1 to 0.22.0

Changelog

Sourced from markdownlint-cli2's changelog.

0.22.0

  • Make --config parameter more flexible
  • Support TOML with --config parameter
  • Add --configPointer parameter
  • Update dependencies

0.21.0

  • Refactor options/configuration file loading
  • Update dependencies

0.20.0

  • Update dependencies

0.19.1

  • Update --format to avoid trailing newline
  • Update dependencies

0.19.0

  • Add --format parameter for editor integration
  • Update output formatters for severity warning
  • Explicitly version Docker containers for pre-commit
  • Update dependencies (including markdownlint)

0.18.1

  • Update dependencies (including markdownlint)

0.18.0

  • Use user ID in Docker containers for security
  • Update dependencies (including markdownlint)
  • Remove support for end-of-life Node 18

0.17.2

  • Update dependencies (including markdownlint)

0.17.1

  • Update dependencies (including markdownlint)

0.17.0

  • Convert to ECMAScript modules
  • Use import() when loading modules

... (truncated)

Commits
  • 3766ad8 Update to version 0.22.0.
  • 18fab89 Bump eslint from 10.0.3 to 10.1.0
  • b7106cb Freshen list of external custom rules included with the markdownlint-cli2-rul...
  • cfaf497 Update README.md to show how to use the Docker container image with pre-commit.
  • 0ae96d5 Remove test-only shims for import.meta limitations in Node 18.
  • 6c8d949 Add support for TOML files to --config, --configPointer, and extends (fixes #...
  • 02e491d Bump pnpm/action-setup from 4 to 5
  • 4777cf9 Add --configPointer command-line parameter, supersedes dedicated handling of ...
  • 7ecda61 Bump eslint-plugin-jsdoc from 62.7.1 to 62.8.0
  • 69616e9 Bump eslint from 10.0.2 to 10.0.3
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump yaml and markdownlint-cli2 in /frontend
3ea9653 
Bumps [yaml](https://github.com/eemeli/yaml) to 1.10.3 and updates ancestor dependencies [yaml](https://github.com/eemeli/yaml) and [markdownlint-cli2](https://github.com/DavidAnson/markdownlint-cli2). These dependencies need to be updated together.


Updates `yaml` from 1.10.2 to 1.10.3
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v1.10.2...v1.10.3)

Updates `yaml` from 2.3.4 to 2.8.3
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v1.10.2...v1.10.3)

Updates `markdownlint-cli2` from 0.7.1 to 0.22.0
- [Changelog](https://github.com/DavidAnson/markdownlint-cli2/blob/main/CHANGELOG.md)
- [Commits](DavidAnson/markdownlint-cli2@v0.7.1...v0.22.0)

---
updated-dependencies:
- dependency-name: yaml
  dependency-version: 1.10.3
  dependency-type: indirect
- dependency-name: yaml
  dependency-version: 2.8.3
  dependency-type: indirect
- dependency-name: markdownlint-cli2
  dependency-version: 0.22.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 25, 2026
@dependabot dependabot bot requested a review from lumjjb as a code owner March 25, 2026 21:52
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 25, 2026
@dependabot dependabot bot requested review from mamy-CS and mrsabath as code owners March 25, 2026 21:52
@dependabot dependabot bot added the javascript Pull requests that update Javascript code label Mar 25, 2026
@dependabot dependabot bot requested a review from maia-iyer as a code owner March 25, 2026 21:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lumjjb lumjjb Awaiting requested review from lumjjb lumjjb is a code owner

@mrsabath mrsabath Awaiting requested review from mrsabath mrsabath is a code owner

@mamy-CS mamy-CS Awaiting requested review from mamy-CS mamy-CS is a code owner

@maia-iyer maia-iyer Awaiting requested review from maia-iyer maia-iyer is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants