Bump the npm_and_yarn group across 2 directories with 12 updates #25

dependabot · 2025-06-15T05:38:24Z

Bumps the npm_and_yarn group with 3 updates in the /ui directory: codemirror, dompurify and swagger-ui-dist.
Bumps the npm_and_yarn group with 8 updates in the /website directory:

Package	From	To
@babel/runtime	`7.20.7`	`7.27.6`
brace-expansion	`1.1.11`	`1.1.12`
ws	`7.5.5`	`7.5.10`
next	`14.0.4`	`14.2.30`
cross-fetch	`3.1.4`	`3.2.0`
decode-uri-component	`0.2.0`	`0.2.2`
ejs	`3.1.5`	`3.1.10`
@hashicorp/platform-cli	`2.6.0`	`2.8.0`

Updates codemirror from 5.65.19 to 6.0.1

Changelog

Sourced from codemirror's changelog.

6.0.1 (2022-06-30)

Bug fixes

Work around limitations in tree-shaking software that prevented basicSetup from being removed when unused.

6.0.0 (2022-06-08)

Breaking changes

Change the package name from @codemirror/example-setup to just codemirror.

The package no longer exports EditorState (since that is no longer necessary to set up a basic editor).

New features

The new minimalSetup export provides a minimal set of editor extensions.

0.20.0 (2022-04-20)

Breaking changes

Update dependencies to 0.20.0

0.19.3 (2022-03-30)

New features

Add the extension that shows a crosshair cursor when Alt is held down to the basic setup.

0.19.1 (2021-12-13)

New features

The basic setup now includes the dropCursor extension.

0.19.0 (2021-08-11)

Breaking changes

Update dependencies to 0.19.0

0.18.2 (2021-05-25)

Bug fixes

Fix too-low dependency on @codemirror/gutter that could cause broken upgrades.

0.18.1 (2021-05-15)

... (truncated)

Commits

See full diff in compare view

Updates dompurify from 3.2.5 to 3.2.6

Release notes

Sourced from dompurify's releases.

DOMPurify 3.2.6

Fixed several typos and removed clutter from our documentation, thanks @Rotzbua

Added matrix: as an allowed URI scheme, thanks @kleinesfilmroellchen

Added better config hardening against prototype pollution, thanks @EffectRenan

Added better handling of attribute removal, thanks @michalnieruchalski-tiugo

Added better configuration for aggressive mXSS scrubbing behavior, thanks @BryanValverdeU

Removed the script that caused the fake entry CVE-2025-48050

Commits

32f765e Merge pull request #1105 from cure53/main
6158ecb Merge pull request #1103 from cure53/main
0f7ce14 chore: Preparing 3.2.6 release
848463b chore: removed unused test server script
b0e0ebb Update README.md
f094f76 Update README.md
6bc6d60 Merge pull request #1101 from odaysec/patch-1
e9afd60 Update server.js
166151c see #1095
ac7c594 Merge pull request #1096 from Rotzbua/fix_missing
Additional commits viewable in compare view

Updates swagger-ui-dist from 5.21.0 to 5.24.1

Release notes

Sourced from swagger-ui-dist's releases.

Swagger UI v5.24.1 Released!

5.24.1 (2025-06-10)

Features

oas3: show the schema tab in the Try it Out mode (#10440) (ac106cd)

Swagger UI v5.24.0 Released!

5.24.0 (2025-06-05)

Bug Fixes

mitigate ReDoS when generating examples from pattern (#10477) (71c9314)

packagist: exclude large obsolete directories from publishing to Packagist (#10329) (cbd4b30)

release: fix failed v5.23.0 release (8045f06)

Features

json-schema-5-samples: add support for time format example generation (#10420) (#10421) (fc6fb24)

Swagger UI v5.23.0 Released!

5.23.0 (2025-06-05)

Bug Fixes

mitigate ReDoS when generating examples from pattern (#10477) (71c9314)

Features

json-schema-5-samples: add support for time format example generation (#10420) (#10421) (fc6fb24)

WARNING

This is a failed release. Please don't use

Swagger UI v5.22.0 Released!

5.22.0 (2025-05-21)

Bug Fixes

assure parameter is an immutable map when grouping parameters (#10457) (8577d71)

avoid accessing properties of empty Example Objects (#10453) (6a07ac8)

docker: address CVE-2025-32414/CVE-2025-32415 (#10461) (01e380e)

... (truncated)

Commits

f2c454a chore(release): cut the v5.24.1 release
ac106cd ft(oas3): show the schema tab in the Try it Out mode (#10488)
4680916 chore(release): cut the v5.24.0 release
eee5a98 chore(release): bump the failed version release
cbd4b30 fix(packagist): exclude large obsolete directories from publishing to Packagi...
8045f06 fix(release): fix failed v5.23.0 release
2bf81f9 chore(deps-dev): bump webpack-dev-server from 5.2.0 to 5.2.2 (#10484)
9c2cd24 chore(deps-dev): bump eslint-plugin-jest from 28.11.0 to 28.12.0 (#10475)
a3607fb chore(deps): update swagger-client to v3.35.5 (#10483)
2768dc9 docs(README): add link to npm downloads badge (#10467)
Additional commits viewable in compare view

Updates @babel/runtime from 7.20.7 to 7.27.6

Release notes

Sourced from @babel/runtime's releases.

v7.27.6 (2025-06-05)

🐛 Bug Fix

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs3

#17366 fix: finally causes unexpected return value (@liuxingbaoyu)

babel-generator, babel-parser, babel-types

#17357 Ensure syntactic ordering when visiting array-type AST nodes (@JLHwung)

Committers: 3

Huáng Jùnliàng (@JLHwung)

Ingvar Stepanyan (@RReverser)

@liuxingbaoyu

v7.27.5 (2025-06-03)

Thanks @NullVoxPopuli for your first PR!

🐛 Bug Fix

babel-plugin-transform-regenerator

#17359 fix: Unexpected infinite loop with regenerator for try (@liuxingbaoyu)

Other

#17349 Map ESLint's sourceType: commonjs to script (@JLHwung)

💅 Polish

babel-parser

#17333 Improve using declaration errors (@JLHwung)

Committers: 4

Babel Bot (@babel-bot)

Huáng Jùnliàng (@JLHwung)

@NullVoxPopuli

@liuxingbaoyu

v7.27.4 (2025-05-30)

👓 Spec Compliance

babel-parser, babel-plugin-proposal-explicit-resource-management

#17323 Disallow using in bare case statement (@JLHwung)

💅 Polish

babel-parser

#17311 Improve parseExpression error messages (@JLHwung)

🔬 Output optimization

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-classes, babel-plugin-transform-destructuring, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#17287 Reduce regenerator size more (@liuxingbaoyu)

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-classes, babel-plugin-transform-destructuring, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs3

#17334 Use shorter method names for regenerator context (@nicolo-ribaudo)

#17268 Reduce regenerator helper size (@liuxingbaoyu)

babel-core, babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-classes, babel-plugin-transform-destructuring, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone

... (truncated)

Changelog

Sourced from @babel/runtime's changelog.

v7.27.6 (2025-06-05)

🐛 Bug Fix

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs3

#17366 fix: finally causes unexpected return value (@liuxingbaoyu)

babel-generator, babel-parser, babel-types

#17357 Ensure syntactic ordering when visiting array-type AST nodes (@JLHwung)

v7.27.5 (2025-06-03)

🐛 Bug Fix

babel-plugin-transform-regenerator

#17359 fix: Unexpected infinite loop with regenerator for try (@liuxingbaoyu)

Other

#17349 Map ESLint's sourceType: commonjs to script (@JLHwung)

💅 Polish

babel-parser

#17333 Improve using declaration errors (@JLHwung)

v7.27.4 (2025-05-30)

👓 Spec Compliance

babel-parser, babel-plugin-proposal-explicit-resource-management

#17323 Disallow using in bare case statement (@JLHwung)

💅 Polish

babel-parser

#17311 Improve parseExpression error messages (@JLHwung)

🔬 Output optimization

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-classes, babel-plugin-transform-destructuring, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime

#17287 Reduce regenerator size more (@liuxingbaoyu)

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-classes, babel-plugin-transform-destructuring, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs3

#17334 Use shorter method names for regenerator context (@nicolo-ribaudo)

#17268 Reduce regenerator helper size (@liuxingbaoyu)

babel-core, babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-classes, babel-plugin-transform-destructuring, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone

#17238 Split regeneratorRuntime into multiple helpers (@nicolo-ribaudo)

v7.27.3 (2025-05-27)

🐛 Bug Fix

babel-generator

#17324 Improve multiline comments handling in yield/await expression (@JLHwung)

babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs3

#17328 Correctly set .displayName on GeneratorFunction (@nicolo-ribaudo)

babel-plugin-proposal-explicit-resource-management

#17319 fix: handle shadowed binding in for using of body (@JLHwung)

#17317 fix: support named evaluation for using declaration (@JLHwung)

babel-plugin-proposal-decorators, babel-types

#17321 fix(converter): Remove abstract modifiers in class declaration to expression conversion (@magic-akari)

babel-helper-module-transforms, babel-plugin-proposal-explicit-resource-management, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-umd

#17257 Preserve class id when transforming using declarations with exported class (@JLHwung)

... (truncated)

Commits

baa4cb8 v7.27.6
7d06930 v7.27.4
5b9468d Reduce regenerator size more (#17287)
cb78b5b [babel 8] Do not replace global regeneratorRuntime references in regenerato...
a0690e3 Split regeneratorRuntime into multiple helpers (#17238)
da5e371 v7.27.3
eebd3a0 v7.27.1
296cdc5 Remove unused regenerator-runtime dep in @babel/runtime (#17263)
fdc0fb5 [Babel 8] Bump nodejs requirements to ^20.19.0 || >= 22.12.0 (#17204)
5c350ea v7.27.0
Additional commits viewable in compare view

Updates brace-expansion from 1.1.11 to 1.1.12

Release notes

Sourced from brace-expansion's releases.

v1.1.12

pkg: publish on tag 1.x c460dbd

fmt ccb8ac6

Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65) c3c73c8

juliangruber/brace-expansion@v1.1.11...v1.1.12

Commits

44f33b4 1.1.12
c460dbd pkg: publish on tag 1.x
ccb8ac6 fmt
c3c73c8 Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65)
See full diff in compare view

Updates ws from 7.5.5 to 7.5.10

Release notes

Sourced from ws's releases.

7.5.10

Bug fixes

Backported e55e5106 to the 7.x release line (22c28763).

7.5.9

Bug fixes

Backported bc8bd34e to the 7.x release line (0435e6e1).

7.5.8

Bug fixes

Backported 0fdcc0af to the 7.x release line (2758ed35).

Backported d68ba9e1 to the 7.x release line (dc1781bc).

7.5.7

Bug fixes

Backported 6946f5fe to the 7.x release line (1f72e2e1).

7.5.6

Bug fixes

Backported b8186dd1 to the 7.x release line (73dec34b).

Backported ed2b8039 to the 7.x release line (22a26afb).

Commits

d962d70 [dist] 7.5.10
22c2876 [security] Fix crash when the Upgrade header cannot be read (#2231)
8a78f87 [dist] 7.5.9
0435e6e [security] Fix same host check for ws+unix: redirects
4271f07 [dist] 7.5.8
dc1781b [security] Drop sensitive headers when following insecure redirects
2758ed3 [fix] Abort the handshake if the Upgrade header is invalid
a370613 [dist] 7.5.7
1f72e2e [security] Drop sensitive headers when following redirects (#2013)
8ecd890 [dist] 7.5.6
Additional commits viewable in compare view

Updates next from 14.0.4 to 14.2.30

Release notes

Sourced from next's releases.

v14.2.30

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Backport config.allowedDevOrigins (#80410) (Learn More)

Credits

Huge thanks to @ijjk and @ztanner for helping!

v14.2.29

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Only share incremental cache for edge in next start (#79389)

Credits

Huge thanks to @ijjk for helping!

Commits

243072b v14.2.30
f523d4a [backport]: config.allowedDevOrigins (#80410)
ca92115 v14.2.29
ec9ee87 Only share incremental cache for edge in next start (#79389)
e65628a v14.2.28
3f5d774 fix: node.js module import error when using middleware (#77945)
43f10b8 v14.2.27
649ba86 backport: fix dynamic route interception not working when deployed with middl...
10a042c v14.2.26
8a511d6 Match subrequest handling for edge and node (#77476)
Additional commits viewable in compare view

Updates cross-fetch from 3.1.4 to 3.2.0

Release notes

Sourced from cross-fetch's releases.

v3.2.0

What's Changed

FEATURES

Upgraded node-fetch from 2.6.12 to 2.7.0. Please refer to node-fetch release notes for features and bug fixes.

Upgraded whatwg-fetch from 3.0.0 to 3.6.20. Please refer to whatwg-fetch release notes for features and bug fixes.

v3.1.8

What's Changed

Restored caret range to node-fetch version for automatic feature and fix updates.

Full Changelog: lquixada/cross-fetch@v3.1.7...v3.1.8

v3.1.7

What's Changed

Updated node-fetch version to 2.6.12

Full Changelog: lquixada/cross-fetch@v3.1.6...v3.1.7

v3.1.6

What's Changed

Updated node-fetch version to 2.6.11

Added caret range to node-fetch version for automatic feature and fix updates.

Full Changelog: lquixada/cross-fetch@v3.1.5...v3.1.6

v3.1.5

What's Changed

chore: updated node-fetch version to 2.6.7 by @dlafreniere in lquixada/cross-fetch#124

New Contributors

@dlafreniere made their first contribution in lquixada/cross-fetch#124

Full Changelog: lquixada/cross-fetch@v3.1.4...v3.1.5

Changelog

Sourced from cross-fetch's changelog.

3.2.0 (2024-12-21)

Features

updated node-fetch to 2.7.0 (#191) (ebf44c3)

Bug Fixes

updated whatwg-fetch to 3.6.20 (#198) (fbbecc8)

3.1.8 (2023-07-02)

Bug Fixes

restored caret on node-fetch version (6669927)

3.1.7 (2023-07-01)

3.1.6 (2023-05-14)

Features

allowed minor and patch update of node-fetch (#132) (425395b), closes #129

Bug Fixes

fixed ESTree.StaticBlock error (a66f21b)

Commits

c6f6f83 chore(release): 3.2.0
d704d0a chore: fixed prepublishOnly script
312d047 refactor: improved Makefile
d1f85aa refactor: improved Makefile (#199)
1555cee refactor: improved make command reliability
fbbecc8 fix: updated whatwg-fetch to 3.6.20 (#198)
ebf44c3 feat: updated node-fetch to 2.7.0 (#191)
c8736f5 chore: changed default node version to 16
f34b605 chore: updated action/setup-node to v4 and hmarr/debug-action to v3
f991e47 chore: updated action/checkout and action/cache to v4
Additional commits viewable in compare view

Updates node-fetch from 2.6.1 to 2.7.0

Release notes

Sourced from node-fetch's releases.

v2.7.0

2.7.0 (2023-08-23)

Features

AbortError (#1744) (9b9d458)

v2.6.13

2.6.13 (2023-08-18)

Bug Fixes

Remove the default connection close header (#1765) (65ae25a), closes #1735 #1473 #1736

v2.6.12

2.6.12 (2023-06-29)

Bug Fixes

socket variable testing for undefined (#1726) (8bc3a7c)

v2.6.11

2.6.11 (2023-05-09)

Reverts

Revert "fix: handle bom in text and json (#1739)" (#1741) (afb36f6), closes #1739 #1741

v2.6.10

2.6.10 (2023-05-08)

Bug Fixes

handle bom in text and json (#1739) (29909d7)

v2.6.9

2.6.9 (2023-01-30)

Bug Fixes

"global is not defined" (#1704) (70f592d)

v2.6.8

2.6.8 (2023-01-13)

... (truncated)

Commits

9b9d458 feat: AbortError (#1744)
65ae25a fix: Remove the default connection close header (#1765)
8bc3a7c fix: socket variable testing for undefined (#1726)
afb36f6 Revert "fix: handle bom in text and json (#1739)" (#1741)
29909d7 fix: handle bom in text and json (#1739)
70f592d fix: "global is not defined" (#1704)
0f1ebb0 Prevent error when response is null (#1699)
6e9464d ci(release): install dependencies
dd2a0ba ci(release): install dependencies
49bef02 ci(release): use latest Node LTS
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by node-fetch-bot, a new releaser for node-fetch since your current version.

Updates decode-uri-component from 0.2.0 to 0.2.2

Release notes

Sourced from decode-uri-component's releases.

v0.2.2

Prevent overwriting previously decoded tokens 980e0bf

SamVerschueren/decode-uri-component@v0.2.1...v0.2.2

v0.2.1

Switch to GitHub workflows 76abc93

Fix issue where decode throws - fixes #6 746ca5d

Update license (#1) 486d7e2

Tidelift tasks a650457

Meta tweaks 66e1c28

SamVerschueren/decode-uri-component@v0.2.0...v0.2.1

Commits

a0eea46 0.2.2
980e0bf Prevent overwriting previously decoded tokens
3c8a373 0.2.1
76abc93 Switch to GitHub workflows
746ca5d Fix issue where decode throws - fixes #6
486d7e2 Update license (#1)
a650457 Tidelift tasks
66e1c28 Meta tweaks
See full diff in compare view

Updates ejs from 3.1.5 to 3.1.10

Release notes

Sourced from ejs's releases.

v3.1.10

Version 3.1.10

v3.1.9

Version 3.1.9

v3.1.8

Version 3.1.8

v3.1.7

Version 3.1.7

v3.1.6

Version 3.1.6

Commits

d3f807d Version 3.1.10
9ee26dd Mocha TDD
e469741 Basic pollution protection
715e950 Merge pull request #756 from Jeffrey-mu/main
cabe314 Include advanced usage examples
29b076c Added header
11503c7 Merge branch 'main' of github.com:mde/ejs into main
7690404 Added security banner to README
f47d7ae Update SECURITY.md
828cea1 Update SECURITY.md
Additional commits viewable in compare view

Updates @hashicorp/platform-cli from 2.6.0 to 2.8.0

Release notes

Sourced from @hashicorp/platform-cli's releases.

@hashicorp/platform-cli@2.8.0

Minor Changes

#257 0308a62 Thanks @RubenSandwich! - Update the jsx/a11y alt text rule to check next.js images

@hashicorp/platform-cli@2.7.3

Patch Changes

#236 6190fc2 Thanks @kendallstrautman! - Update docs with themed image syntax

#248 033e568 Thanks @dstaley! - Update ejs dependency

#253 5a8b65e Thanks @dstaley! - Update Web Presence GitHub team name

@hashicorp/platform-cli@2.7.2

Patch Changes

Updated dependencies [2a4f90b]:

@hashicorp/platform-cms@0.4.0

@hashicorp/platform-cli@2.7.1

Patch Changes

#204 72497fe Thanks @BRKalow! - Update casing for some words in markdown blocks.

@hashicorp/platform-cli@2.7.0

Minor Changes

#192 787c569 Thanks @thiskevinwang! - bump prettier from 2.5 to 2.8

@hashicorp/platform-cli@2.7.0-canary-202334204835

Minor Changes

#192 83ad2db Thanks @thiskevinwang! - bump prettier from 2.5 to 2.8

@hashicorp/platform-cli@2.6.1-canary-202329232746

Patch Changes

Updated dependencies [2a4f90b]:

@hashicorp/platform-cms@0.4.0-canary-202329232746

@hashicorp/platform-cli@2.6.1-canary-202329232155

Patch Changes

Updated dependencies [2a4f90b]:

@hashicorp/platform-cms@0.4.0-canary-202329232155

@hashicorp/platform-cli@2.6.1-canary-202329221230

... (truncated)

Changelog

Sourced from @hashicorp/platform-cli's changelog.

2.8.0

Minor Changes

#257 0308a62 Thanks @RubenSandwich! - Update the jsx/a11y alt text rule to check next.js images

2.7.3

Patch Changes

#236 6190fc2 Thanks @kendallstrautman! - Update docs with themed image syntax

#248 033e568 Thanks @dstaley! - Update ejs dependency

#253 5a8b65e Thanks @dstaley! - Update Web Presence GitHub team name

2.7.2

Patch Changes

Updated dependencies [2a4f90b]:

@hashicorp/platform-cms@0.4.0

2.7.1

Patch Changes

#204 72497fe Thanks @BRKalow! - Update casing for some words in markdown blocks.

2.7.0

Minor Changes

#192 787c569 Thanks @thiskevinwang! - bump prettier from 2.5 to 2.8

Commits

a0c7c8d Version Packages
f50b853 Extend jsx-a11y to also look for Next.js Images
b312c73 Version Packages
5a8b65e fix: update web presence github team name
033e568 chore(deps): update ejs dependency
bd07218 ADds themed image docs
f1f4832 Version Packages (#210)
5baa5d2 Version Packages (#207)
72497fe chore: update casing for some words (#204)
a14714c Version Packages
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps the npm_and_yarn group with 3 updates in the /ui directory: [codemirror](https://github.com/codemirror/basic-setup), [dompurify](https://github.com/cure53/DOMPurify) and [swagger-ui-dist](https://github.com/swagger-api/swagger-ui). Bumps the npm_and_yarn group with 8 updates in the /website directory: | Package | From | To | | --- | --- | --- | | [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.20.7` | `7.27.6` | | [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` | | [ws](https://github.com/websockets/ws) | `7.5.5` | `7.5.10` | | [next](https://github.com/vercel/next.js) | `14.0.4` | `14.2.30` | | [cross-fetch](https://github.com/lquixada/cross-fetch) | `3.1.4` | `3.2.0` | | [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` | | [ejs](https://github.com/mde/ejs) | `3.1.5` | `3.1.10` | | [@hashicorp/platform-cli](https://github.com/hashicorp/web-platform-packages/tree/HEAD/packages/cli) | `2.6.0` | `2.8.0` | Updates `codemirror` from 5.65.19 to 6.0.1 - [Changelog](https://github.com/codemirror/basic-setup/blob/main/CHANGELOG.md) - [Commits](https://github.com/codemirror/basic-setup/commits/6.0.1) Updates `dompurify` from 3.2.5 to 3.2.6 - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](cure53/DOMPurify@3.2.5...3.2.6) Updates `swagger-ui-dist` from 5.21.0 to 5.24.1 - [Release notes](https://github.com/swagger-api/swagger-ui/releases) - [Changelog](https://github.com/swagger-api/swagger-ui/blob/master/.releaserc) - [Commits](swagger-api/swagger-ui@v5.21.0...v5.24.1) Updates `@babel/runtime` from 7.20.7 to 7.27.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.27.6/packages/babel-runtime) Updates `brace-expansion` from 1.1.11 to 1.1.12 - [Release notes](https://github.com/juliangruber/brace-expansion/releases) - [Commits](juliangruber/brace-expansion@1.1.11...v1.1.12) Updates `ws` from 7.5.5 to 7.5.10 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@7.5.5...7.5.10) Updates `next` from 14.0.4 to 14.2.30 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v14.0.4...v14.2.30) Updates `cross-fetch` from 3.1.4 to 3.2.0 - [Release notes](https://github.com/lquixada/cross-fetch/releases) - [Changelog](https://github.com/lquixada/cross-fetch/blob/v3.2.0/CHANGELOG.md) - [Commits](lquixada/cross-fetch@v3.1.4...v3.2.0) Updates `node-fetch` from 2.6.1 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.6.1...v2.7.0) Updates `decode-uri-component` from 0.2.0 to 0.2.2 - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) Updates `ejs` from 3.1.5 to 3.1.10 - [Release notes](https://github.com/mde/ejs/releases) - [Commits](mde/ejs@v3.1.5...v3.1.10) Updates `@hashicorp/platform-cli` from 2.6.0 to 2.8.0 - [Release notes](https://github.com/hashicorp/web-platform-packages/releases) - [Changelog](https://github.com/hashicorp/web-platform-packages/blob/main/packages/cli/CHANGELOG.md) - [Commits](https://github.com/hashicorp/web-platform-packages/commits/@hashicorp/[email protected]/packages/cli) --- updated-dependencies: - dependency-name: codemirror dependency-version: 6.0.1 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: dompurify dependency-version: 3.2.6 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: swagger-ui-dist dependency-version: 5.24.1 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: "@babel/runtime" dependency-version: 7.27.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: brace-expansion dependency-version: 1.1.12 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-version: 7.5.10 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: next dependency-version: 14.2.30 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: cross-fetch dependency-version: 3.2.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-version: 2.7.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: decode-uri-component dependency-version: 0.2.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ejs dependency-version: 3.1.10 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@hashicorp/platform-cli" dependency-version: 2.8.0 dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 15, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the npm_and_yarn group across 2 directories with 12 updates #25

Bump the npm_and_yarn group across 2 directories with 12 updates #25

Uh oh!

dependabot bot commented on behalf of github Jun 15, 2025 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Bump the npm_and_yarn group across 2 directories with 12 updates #25

Are you sure you want to change the base?

Bump the npm_and_yarn group across 2 directories with 12 updates #25

Uh oh!

Conversation

dependabot bot commented on behalf of github Jun 15, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

6.0.1 (2022-06-30)

Bug fixes

6.0.0 (2022-06-08)

Breaking changes

New features

0.20.0 (2022-04-20)

Breaking changes

0.19.3 (2022-03-30)

New features

0.19.1 (2021-12-13)

New features

0.19.0 (2021-08-11)

Breaking changes

0.18.2 (2021-05-25)

Bug fixes

0.18.1 (2021-05-15)

DOMPurify 3.2.6

Swagger UI v5.24.1 Released!

5.24.1 (2025-06-10)

Features

Swagger UI v5.24.0 Released!

5.24.0 (2025-06-05)

Bug Fixes

Features

Swagger UI v5.23.0 Released!

5.23.0 (2025-06-05)

Bug Fixes

Features

WARNING

Swagger UI v5.22.0 Released!

5.22.0 (2025-05-21)

Bug Fixes

v7.27.6 (2025-06-05)

🐛 Bug Fix

Committers: 3

v7.27.5 (2025-06-03)

🐛 Bug Fix

💅 Polish

Committers: 4

v7.27.4 (2025-05-30)

👓 Spec Compliance

💅 Polish

🔬 Output optimization

v7.27.6 (2025-06-05)

🐛 Bug Fix

v7.27.5 (2025-06-03)

🐛 Bug Fix

💅 Polish

v7.27.4 (2025-05-30)

👓 Spec Compliance

💅 Polish

🔬 Output optimization

v7.27.3 (2025-05-27)

🐛 Bug Fix

v1.1.12

7.5.10

Bug fixes

7.5.9

Bug fixes

7.5.8

Bug fixes

7.5.7

Bug fixes

7.5.6

Bug fixes

v14.2.30

Core Changes

Credits

v14.2.29

Core Changes

Credits

v3.2.0

What's Changed

dependabot bot commented on behalf of github Jun 15, 2025 •

edited

Loading

`@hashicorp/platform-cli@2`.8.0

`@hashicorp/platform-cli@2`.7.3

`@hashicorp/platform-cli@2`.7.2

`@hashicorp/platform-cli@2`.7.1

`@hashicorp/platform-cli@2`.7.0

`@hashicorp/platform-cli@2`.7.0-canary-202334204835

`@hashicorp/platform-cli@2`.6.1-canary-202329232746

`@hashicorp/platform-cli@2`.6.1-canary-202329232155

`@hashicorp/platform-cli@2`.6.1-canary-202329221230