Skip to content

maint: bump the dependencies group with 8 updates#261

Merged
tommelo merged 1 commit into
masterfrom
dependabot/npm_and_yarn/master/dependencies-66bf31832b
Jun 12, 2026
Merged

maint: bump the dependencies group with 8 updates#261
tommelo merged 1 commit into
masterfrom
dependabot/npm_and_yarn/master/dependencies-66bf31832b

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the dependencies group with 8 updates:

Package From To
js-yaml 4.1.1 4.2.0
@aws-sdk/client-secrets-manager 3.1057.0 3.1063.0
@aws-sdk/client-ssm 3.1057.0 3.1063.0
@google-cloud/secret-manager 6.1.2 6.1.3
@types/node 25.9.1 25.9.2
@typescript-eslint/eslint-plugin 8.60.0 8.60.1
@typescript-eslint/parser 8.60.0 8.60.1
lint-staged 17.0.5 17.0.7

Updates js-yaml from 4.1.1 to 4.2.0

Changelog

Sourced from js-yaml's changelog.

[4.2.0] - 2026-06-01

Added

  • Added docs/safety.md with notes about processing untrusted YAML.
  • Added maxDepth (100) loader option. Not a problem, but gives a better exception instead of RangeError on stack overflow.
  • Added maxMergeSeqLength (20) loader option. Not a problem after merge fix, but an additional restriction for safety.
  • Added sourcemaps to dist/ builds.

Changed

  • Stop resolving numbers with underscores as numeric scalars, #627.
  • Switched dev toolchains to Vite / neostandard.
  • Updated demo.
  • Reorganized tests.
  • dist/ files are no longer kept in the repository.

Fixed

  • Fix parsing of properties on the first implicit block mapping key, #62.
  • Fix trailing whitespace handling when folding flow scalar lines, #307.
  • Reject top-level block scalars without content indentation, #280.
  • Ensure numbers survive round-trip, #737.
  • Fix test coverage for issue #221.
  • Fix flow scalar trailing whitespace folding, #307.
  • Fix digits in YAML named tag handles.

Security

  • Fix potential DoS via quadratic complexity in merge - deduplicate repeated elements (makes sense for malformed files > 10K).

[3.14.2] - 2025-11-15

Security

  • Backported v4.1.1 fix to v3
Commits

Updates @aws-sdk/client-secrets-manager from 3.1057.0 to 3.1063.0

Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.1063.0

3.1063.0(2026-06-05)

Chores
New Features
  • clients: update client endpoints as of 2026-06-05 (fe9a398f)
  • client-sagemaker: This release adds support for MLflow experiment tracking in SageMaker inference optimization. CreateAIRecommendationJob and CreateAIBenchmarkJob now accept an optional OutputConfig.MlflowConfig (MLflow App ARN, experiment, run name) to stream benchmark metrics and artifacts to your own MLflow App. (39430442)
  • client-emr-serverless: Adds support for updating max capacity and custom fields while application is started (6c9cce08)
  • client-dynamodb: Adding new BDD representation of endpoint ruleset (416005d4)
  • client-mediaconvert: Adds support for configurable number of Clear Lead segments at the beginning of encrypted output. Adds support for multiple trickplay variants. (40eb4c6b)
  • client-payment-cryptography: Adds CloudFormation support for resource-based policies on AWS Payment Cryptography keys. (c32019a8)
  • client-quicksight: Adds support for Knowledge Base APIs and Index Capacity API (8205152f)
Bug Fixes
  • core/httpAuthSchemes: fix concurrent skew correction (#8078) (83e48928)
Tests
  • middleware-endpoint-discovery: remove integration tests (#8077) (02363831)
  • clients: add client error deserialization tests (#8075) (0dfa4ad1)

For list of updated packages, view updated-packages.md in assets-3.1063.0.zip

v3.1062.0

3.1062.0(2026-06-04)

Chores
  • scripts: include generated packages when validating declared imports 1-1 with used imports (#8072) (291ad366)
Documentation Changes
  • client-guardduty: Remove unsupported RDS field for filter (5815da7f)
New Features
  • client-interconnect: Adding new BDD representation of endpoint ruleset (34e23ef2)
  • client-ec2-instance-connect: Adding new BDD representation of endpoint ruleset (c2a4981e)
  • client-mq: BDD bulk update change rollout (e058b8fd)
  • client-workspaces: Adding new BDD representation of endpoint ruleset (6b1e3602)
  • client-connectparticipant: Adding new BDD representation of endpoint ruleset (22db2a6a)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.1063.0 (2026-06-05)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

3.1062.0 (2026-06-04)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

3.1061.0 (2026-06-03)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

3.1060.0 (2026-06-03)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

3.1059.0 (2026-06-02)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

3.1058.0 (2026-06-01)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

Updates @aws-sdk/client-ssm from 3.1057.0 to 3.1063.0

Release notes

Sourced from @​aws-sdk/client-ssm's releases.

v3.1063.0

3.1063.0(2026-06-05)

Chores
New Features
  • clients: update client endpoints as of 2026-06-05 (fe9a398f)
  • client-sagemaker: This release adds support for MLflow experiment tracking in SageMaker inference optimization. CreateAIRecommendationJob and CreateAIBenchmarkJob now accept an optional OutputConfig.MlflowConfig (MLflow App ARN, experiment, run name) to stream benchmark metrics and artifacts to your own MLflow App. (39430442)
  • client-emr-serverless: Adds support for updating max capacity and custom fields while application is started (6c9cce08)
  • client-dynamodb: Adding new BDD representation of endpoint ruleset (416005d4)
  • client-mediaconvert: Adds support for configurable number of Clear Lead segments at the beginning of encrypted output. Adds support for multiple trickplay variants. (40eb4c6b)
  • client-payment-cryptography: Adds CloudFormation support for resource-based policies on AWS Payment Cryptography keys. (c32019a8)
  • client-quicksight: Adds support for Knowledge Base APIs and Index Capacity API (8205152f)
Bug Fixes
  • core/httpAuthSchemes: fix concurrent skew correction (#8078) (83e48928)
Tests
  • middleware-endpoint-discovery: remove integration tests (#8077) (02363831)
  • clients: add client error deserialization tests (#8075) (0dfa4ad1)

For list of updated packages, view updated-packages.md in assets-3.1063.0.zip

v3.1062.0

3.1062.0(2026-06-04)

Chores
  • scripts: include generated packages when validating declared imports 1-1 with used imports (#8072) (291ad366)
Documentation Changes
  • client-guardduty: Remove unsupported RDS field for filter (5815da7f)
New Features
  • client-interconnect: Adding new BDD representation of endpoint ruleset (34e23ef2)
  • client-ec2-instance-connect: Adding new BDD representation of endpoint ruleset (c2a4981e)
  • client-mq: BDD bulk update change rollout (e058b8fd)
  • client-workspaces: Adding new BDD representation of endpoint ruleset (6b1e3602)
  • client-connectparticipant: Adding new BDD representation of endpoint ruleset (22db2a6a)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-ssm's changelog.

3.1063.0 (2026-06-05)

Note: Version bump only for package @​aws-sdk/client-ssm

3.1062.0 (2026-06-04)

Note: Version bump only for package @​aws-sdk/client-ssm

3.1061.0 (2026-06-03)

Note: Version bump only for package @​aws-sdk/client-ssm

3.1060.0 (2026-06-03)

Note: Version bump only for package @​aws-sdk/client-ssm

3.1059.0 (2026-06-02)

Note: Version bump only for package @​aws-sdk/client-ssm

3.1058.0 (2026-06-01)

Note: Version bump only for package @​aws-sdk/client-ssm

Commits

Updates @google-cloud/secret-manager from 6.1.2 to 6.1.3

Release notes

Sourced from @​google-cloud/secret-manager's releases.

secret-manager: v6.1.3

6.1.3 (2026-06-01)

Bug Fixes

service-directory: v6.1.3

6.1.3 (2026-06-01)

Bug Fixes

Changelog

Sourced from @​google-cloud/secret-manager's changelog.

6.1.3 (2026-06-01)

Bug Fixes

Commits

Updates @types/node from 25.9.1 to 25.9.2

Commits

Updates @typescript-eslint/eslint-plugin from 8.60.0 to 8.60.1

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.60.1

8.60.1 (2026-06-01)

🩹 Fixes

  • eslint-plugin: respect ECMAScript line terminators in ts-comment rules (#12352)
  • eslint-plugin: [no-shadow] correct rule to match ESLint v10 handling (#12182)

❤️ Thank You

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.60.1 (2026-06-01)

🩹 Fixes

  • eslint-plugin: [no-shadow] correct rule to match ESLint v10 handling (#12182)
  • eslint-plugin: respect ECMAScript line terminators in ts-comment rules (#12352)

❤️ Thank You

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits
  • 4f84a69 chore(release): publish 8.60.1
  • 598af56 docs(eslint-plugin): clarify no-redeclare type-value collision not covered by...
  • 1849b53 chore: typecheck using tsgo (#12139)
  • 5341d59 chore: fix lint issues (#12369)
  • f525814 fix(eslint-plugin): [no-shadow] correct rule to match ESLint v10 handling (#1...
  • 2df540c chore(eslint-plugin): defer type checks to improve rules performance (#12296)
  • 1ab4284 fix(eslint-plugin): respect ECMAScript line terminators in ts-comment rules (...
  • 2f49df5 docs: update references to @stylistic/eslint-plugin rules in documentation ...
  • See full diff in compare view

Updates @typescript-eslint/parser from 8.60.0 to 8.60.1

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.60.1

8.60.1 (2026-06-01)

🩹 Fixes

  • eslint-plugin: respect ECMAScript line terminators in ts-comment rules (#12352)
  • eslint-plugin: [no-shadow] correct rule to match ESLint v10 handling (#12182)

❤️ Thank You

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.60.1 (2026-06-01)

This was a version bump only for parser to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

Updates lint-staged from 17.0.5 to 17.0.7

Release notes

Sourced from lint-staged's releases.

v17.0.7

Patch Changes

v17.0.6

Patch Changes

  • #1803 bdf2770 - Run all tests with Deno, in addition to Node.js and Bun.

  • #1796 7508272 - Fix performance regression of lint-staged v17 by going back to using git add to stage task modifications. This was changed to git update-index --again in v17 for less manual work, but unfortunately the update-index command gets slower in very large Git repos.

  • #1797 7b2505a - This version of lint-staged uses the new staged publishing for npm packages feature. Releases are already published from GitHub Actions with trusted publishing, but now an additional approval with two-factor authentication is also required.

  • #1802 321b0a9 - Downgrade dependency tinyexec@1.2.2 to avoid issues in version 1.2.3.

Changelog

Sourced from lint-staged's changelog.

17.0.7

Patch Changes

17.0.6

Patch Changes

  • #1803 bdf2770 - Run all tests with Deno, in addition to Node.js and Bun.

  • #1796 7508272 - Fix performance regression of lint-staged v17 by going back to using git add to stage task modifications. This was changed to git update-index --again in v17 for less manual work, but unfortunately the update-index command gets slower in very large Git repos.

  • #1797 7b2505a - This version of lint-staged uses the new staged publishing for npm packages feature. Releases are already published from GitHub Actions with trusted publishing, but now an additional approval with two-factor authentication is also required.

  • #1802 321b0a9 - Downgrade dependency tinyexec@1.2.2 to avoid issues in version 1.2.3.

Commits
  • cd11fec Merge pull request #1807 from lint-staged/changeset-release/main
  • 15a8ee0 chore(changeset): release
  • 797bbd9 Merge pull request #1808 from lint-staged/add-stashing-faq
  • 504e307 docs: add FAQ entry on how stashing works
  • eff5cd1 Merge pull request #1806 from lint-staged/update-tinyexec
  • e692e58 build(deps): update tinyexec@^1.2.4
  • a2dd4ea Merge pull request #1805 from lint-staged/update-github-templates
  • c928519 docs: update GitHub templates
  • 094ba56 Merge pull request #1798 from lint-staged/changeset-release/main
  • 88e19fe chore(changeset): release
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
maint: bump the dependencies group with 8 updates
64892cc 
Bumps the dependencies group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.1` | `4.2.0` |
| [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) | `3.1057.0` | `3.1063.0` |
| [@aws-sdk/client-ssm](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-ssm) | `3.1057.0` | `3.1063.0` |
| [@google-cloud/secret-manager](https://github.com/googleapis/google-cloud-node/tree/HEAD/packages/google-cloud-secretmanager) | `6.1.2` | `6.1.3` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.9.1` | `25.9.2` |
| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.60.0` | `8.60.1` |
| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.60.0` | `8.60.1` |
| [lint-staged](https://github.com/lint-staged/lint-staged) | `17.0.5` | `17.0.7` |


Updates `js-yaml` from 4.1.1 to 4.2.0
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nodeca/js-yaml/commits)

Updates `@aws-sdk/client-secrets-manager` from 3.1057.0 to 3.1063.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-secrets-manager/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1063.0/clients/client-secrets-manager)

Updates `@aws-sdk/client-ssm` from 3.1057.0 to 3.1063.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-ssm/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1063.0/clients/client-ssm)

Updates `@google-cloud/secret-manager` from 6.1.2 to 6.1.3
- [Release notes](https://github.com/googleapis/google-cloud-node/releases)
- [Changelog](https://github.com/googleapis/google-cloud-node/blob/main/packages/google-cloud-secretmanager/CHANGELOG.md)
- [Commits](https://github.com/googleapis/google-cloud-node/commits/secret-manager-v6.1.3/packages/google-cloud-secretmanager)

Updates `@types/node` from 25.9.1 to 25.9.2
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `@typescript-eslint/eslint-plugin` from 8.60.0 to 8.60.1
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.60.1/packages/eslint-plugin)

Updates `@typescript-eslint/parser` from 8.60.0 to 8.60.1
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.60.1/packages/parser)

Updates `lint-staged` from 17.0.5 to 17.0.7
- [Release notes](https://github.com/lint-staged/lint-staged/releases)
- [Changelog](https://github.com/lint-staged/lint-staged/blob/main/CHANGELOG.md)
- [Commits](lint-staged/lint-staged@v17.0.5...v17.0.7)

---
updated-dependencies:
- dependency-name: js-yaml
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: "@aws-sdk/client-secrets-manager"
  dependency-version: 3.1063.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: "@aws-sdk/client-ssm"
  dependency-version: 3.1063.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: "@google-cloud/secret-manager"
  dependency-version: 6.1.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@types/node"
  dependency-version: 25.9.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-version: 8.60.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@typescript-eslint/parser"
  dependency-version: 8.60.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: lint-staged
  dependency-version: 17.0.7
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 6, 2026
@tommelo tommelo merged commit d0f4693 into master Jun 12, 2026
4 checks passed
@tommelo tommelo deleted the dependabot/npm_and_yarn/master/dependencies-66bf31832b branch June 12, 2026 21:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tommelo