Closed dependabot[bot] closed 4 days ago
New and removed dependencies detected. Learn more about Socket for GitHub โ๏ธ
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/sinon@18.0.0 | Transitive: environment, eval | +10 |
7.26 MB | fatso83 |
๐ฎ Removed packages: npm/sinon@15.2.0
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
โ EDITORCONFIG | editorconfig-checker | 2 | 0 | 0.01s | |
โ JSON | jsonlint | 2 | 0 | 0.22s | |
โ JSON | npm-package-json-lint | yes | no | 0.62s | |
โ JSON | v8r | 2 | 0 | 7.35s | |
โ REPOSITORY | checkov | yes | no | 11.68s | |
โ REPOSITORY | gitleaks | yes | no | 2.2s | |
โ REPOSITORY | git_diff | yes | no | 0.02s | |
โ REPOSITORY | grype | yes | no | 12.3s | |
โ REPOSITORY | secretlint | yes | no | 1.16s | |
โ REPOSITORY | trivy-sbom | yes | no | 0.89s | |
โ SPELL | lychee | 2 | 1 | 2.47s |
See detailed report in MegaLinter reports
_Set VALIDATE_ALL_CODEBASE: true
in mega-linter.yml to validate all sources, not only the diff_
Superseded by #178.
Bumps sinon from 15.2.0 to 18.0.0.
Changelog
Sourced from sinon's changelog.
... (truncated)
Commits
adea6a1
18.0.06324be4
Use Nise 6 with legacyRoutes flag enabled4cbd712
Bump nokogiri from 1.16.2 to 1.16.5 (#2598)c618edc
fix #2594: remove needless sandbox creation16a25ae
17.0.2f6dca0b
upgrade packages (#2595)5025d00
Avoid return and callArg* clearing each other's state (#2593)ed068a8
Bump ip from 1.1.8 to 1.1.9 (#2587)ec4d592
fix #2589: avoid invoking getter as side-effect (#2592)9972e1e
Fix typo in mocks documentation (#2591)Maintainer changes
This version was pushed to npm by fatso83, a new releaser for sinon since your current version.
You can trigger a rebase of this PR by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show