Skip to content

chore(deps-dev): bump the npm-dependencies group with 7 updates#212

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm-dependencies-2a462a30e3
Open

chore(deps-dev): bump the npm-dependencies group with 7 updates#212
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm-dependencies-2a462a30e3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the npm-dependencies group with 7 updates:

Package From To
@apidevtools/json-schema-ref-parser 15.3.5 15.3.6
@redocly/cli 2.31.6 2.32.2
@types/glob 7.2.0 9.0.0
@types/node 25.9.1 25.9.3
axios 1.17.0 1.18.0
openapi-to-postmanv2 6.0.1 6.1.0
prettier 3.8.3 3.8.4

Updates @apidevtools/json-schema-ref-parser from 15.3.5 to 15.3.6

Release notes

Sourced from @​apidevtools/json-schema-ref-parser's releases.

v15.3.6

15.3.6 (2026-06-11)

Bug Fixes

  • block unsafe pointer set tokens (a786bc6)
  • harden safe URL resolver (dea50b0)
Commits

Updates @redocly/cli from 2.31.6 to 2.32.2

Release notes

Sourced from @​redocly/cli's releases.

@​redocly/cli@​2.32.2

Patch Changes

  • Updated @​redocly/respect-core to v2.32.2.

@​redocly/cli@​2.32.1

Patch Changes

  • Updated @​redocly/openapi-core to v2.32.1.

@​redocly/cli@​2.32.0

Minor Changes

  • Added support for junit output in the lint command.

Patch Changes

  • Updated @​redocly/openapi-core to v2.32.0.
Commits
  • df82ff2 chore: 🔖 release new versions (#2865)
  • 2815424 chore: update respect ajv setup to use provided context (#2860)
  • a367346 chore: 🔖 release new versions (#2863)
  • a8264b5 chore: remove old and generate new changeset (#2864)
  • a4ac5dc fix: scope AJV instances per lintDocument call to fix concurrent validation (...
  • af0cc63 chore: 🔖 release new versions (#2857)
  • d171866 feat: add junit output format to the lint (#2855)
  • 734edd3 chore: update x-security snapshots as mock-server start consider auth scheme ...
  • feb18cb docs: fix contributing guide (#2852)
  • b0acc94 chore: update tsconfig, vitest, pr template, etc (#2849)
  • See full diff in compare view

Updates @types/glob from 7.2.0 to 9.0.0

Commits

Updates @types/node from 25.9.1 to 25.9.3

Commits

Updates axios from 1.17.0 to 1.18.0

Release notes

Sourced from axios's releases.

v1.18.0 — June 13, 2026

This release hardens redirect and URL handling, improves the validateStatus configuration semantics, and includes updates to documentation, dependencies, and release metadata.

🔒 Security Fixes

  • Redirect Header Safety: Added Node HTTP adapter support for stripping caller-specified sensitive headers on cross-origin redirects, helping prevent custom auth headers such as API keys from leaking to another origin. (#10892)

  • URL And Request Hardening: Rejects malformed http: and https: URLs that omit // with ERR_INVALID_URL, while tightening prototype-pollution-safe config reads, stream size limits, FormData depth handling, data URL sizing, and local NO_PROXY matching. (#11000)

🐛 Bug Fixes

  • Status Validation: Added transitional.validateStatusUndefinedResolves so applications can opt in to treating validateStatus: undefined like the option was omitted, while validateStatus: null remains the explicit way to accept every status. (#10899)

🔧 Maintenance & Chores

  • Documentation: Published the v1.17.0 release notes, fixed a changelog typo, clarified the package update PR policy, and marked the proxy request config as Node.js-only in the advanced docs. (#10984, #10988, #10992, #10995)

  • Dependencies: Bumped @babel/core, @babel/preset-env, @commitlint/cli, @commitlint/config-conventional, @rollup/plugin-babel, @rollup/plugin-commonjs, @vitest/browser, @vitest/browser-playwright, eslint, lint-staged, rollup, vitest, and actions/checkout. (#10989, #10996, #10997)

  • Release Metadata: Prepared the 1.18.0 release by updating package metadata and the runtime VERSION value. (#11003)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

Full Changelog

Changelog

Sourced from axios's changelog.

Changelog

Commits
  • 2d06f96 chore(release): prepare release 1.18.0 (#11003)
  • 32fc489 fix: malformed http urls (#11000)
  • b40ce49 chore(deps-dev): bump the development_dependencies group with 10 updates (#10...
  • fe964f9 docs: mark proxy config as Node.js only (#10995)
  • 5f229d2 chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in the github-actions ...
  • fae9d4e docs: clarify package update PR policy (#10992)
  • 28ab2ce chore(deps-dev): bump the development_dependencies group with 2 updates (#10989)
  • a8e4f13 fix(core): keep default validateStatus when request passes undefined (#10899)
  • 614f455 docs: publish v1.17.0 release notes (#10988)
  • 6bb12c1 fix: custom auth headers not stripped on cross-origin redirects (#10892)
  • Additional commits viewable in compare view

Updates openapi-to-postmanv2 from 6.0.1 to 6.1.0

Changelog

Sourced from openapi-to-postmanv2's changelog.

[v6.1.0] - 2026-06-09

Commits
  • f447553 Merge pull request #948 from postmanlabs/release/v6.1.0
  • 960bf68 Prepare release v6.1.0
  • db6bf14 feat: [AB-2326] add OpenAPI 3.2 support
  • 1f84328 test(32X): add OAS 3.2 fixtures and unit tests mirroring 3.1 coverage
  • 841712e feat(version): detect and dispatch OAS 3.2 documents
  • 2163b55 feat(32X): add OAS 3.2 schema utils, input validation and bundle rules
  • 70c1da6 Merge pull request #941 from postmanlabs/release/v6.0.1
  • See full diff in compare view

Updates prettier from 3.8.3 to 3.8.4

Release notes

Sourced from prettier's releases.

3.8.4

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.8.4

diff

Markdown: Fix blank lines between list items and nested sub-lists being removed in Markdown/MDX (#17746 by @​byplayer)

Prettier was removing blank lines between list items and their nested sub-lists, converting loose lists into tight lists and changing their semantic meaning.

<!-- Input -->
- a


b


c

d



<!-- Prettier 3.8.3 -->

a

b


c

d



<!-- Prettier 3.8.4 -->


a

b



c

d
Commits
  • 1c6ba55 Release 3.8.4
  • 4a673dc Fix blank lines between list items and nested sub-lists being removed in Mark...
  • 074aaed Replace main branch in changelog link with tags (#19054)
  • c22a003 Bump Prettier dependency to 3.8.3
  • 07bad1f Clean changelog_unreleased
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps-dev): bump the npm-dependencies group with 7 updates
7eee56d 
Bumps the npm-dependencies group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [@apidevtools/json-schema-ref-parser](https://github.com/APIDevTools/json-schema-ref-parser) | `15.3.5` | `15.3.6` |
| [@redocly/cli](https://github.com/Redocly/redocly-cli) | `2.31.6` | `2.32.2` |
| [@types/glob](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/glob) | `7.2.0` | `9.0.0` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.9.1` | `25.9.3` |
| [axios](https://github.com/axios/axios) | `1.17.0` | `1.18.0` |
| [openapi-to-postmanv2](https://github.com/postmanlabs/openapi-to-postman) | `6.0.1` | `6.1.0` |
| [prettier](https://github.com/prettier/prettier) | `3.8.3` | `3.8.4` |


Updates `@apidevtools/json-schema-ref-parser` from 15.3.5 to 15.3.6
- [Release notes](https://github.com/APIDevTools/json-schema-ref-parser/releases)
- [Commits](APIDevTools/json-schema-ref-parser@v15.3.5...v15.3.6)

Updates `@redocly/cli` from 2.31.6 to 2.32.2
- [Release notes](https://github.com/Redocly/redocly-cli/releases)
- [Commits](https://github.com/Redocly/redocly-cli/compare/@redocly/cli@2.31.6...@redocly/cli@2.32.2)

Updates `@types/glob` from 7.2.0 to 9.0.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/glob)

Updates `@types/node` from 25.9.1 to 25.9.3
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `axios` from 1.17.0 to 1.18.0
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.17.0...v1.18.0)

Updates `openapi-to-postmanv2` from 6.0.1 to 6.1.0
- [Release notes](https://github.com/postmanlabs/openapi-to-postman/releases)
- [Changelog](https://github.com/postmanlabs/openapi-to-postman/blob/develop/CHANGELOG.md)
- [Commits](postmanlabs/openapi-to-postman@v6.0.1...v6.1.0)

Updates `prettier` from 3.8.3 to 3.8.4
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.8.3...3.8.4)

---
updated-dependencies:
- dependency-name: "@apidevtools/json-schema-ref-parser"
  dependency-version: 15.3.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: "@redocly/cli"
  dependency-version: 2.32.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: "@types/glob"
  dependency-version: 9.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm-dependencies
- dependency-name: "@types/node"
  dependency-version: 25.9.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: axios
  dependency-version: 1.18.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: openapi-to-postmanv2
  dependency-version: 6.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: prettier
  dependency-version: 3.8.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants