Closed dependabot[bot] closed 3 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/tap@19.2.4 | Transitive: environment, filesystem, network, shell, unsafe | +290 |
54.2 MB |
🚮 Removed packages: npm/tap@16.3.10
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
✅ EDITORCONFIG | editorconfig-checker | 2 | 0 | 0.01s | |
✅ JSON | jsonlint | 2 | 0 | 0.22s | |
✅ JSON | npm-package-json-lint | yes | no | 0.45s | |
✅ JSON | v8r | 2 | 0 | 8.29s | |
✅ REPOSITORY | checkov | yes | no | 11.69s | |
✅ REPOSITORY | gitleaks | yes | no | 2.13s | |
✅ REPOSITORY | git_diff | yes | no | 0.02s | |
✅ REPOSITORY | grype | yes | no | 12.01s | |
❌ REPOSITORY | secretlint | yes | 1 | 1.39s | |
✅ REPOSITORY | trivy-sbom | yes | no | 1.0s | |
❌ SPELL | lychee | 2 | 1 | 2.3s |
See detailed report in MegaLinter reports
_Set VALIDATE_ALL_CODEBASE: true
in mega-linter.yml to validate all sources, not only the diff_
Superseded by #165.
Bumps tap from 16.3.10 to 19.2.4.
Release notes
Sourced from tap's releases.
... (truncated)
Commits
2c889bb
update versionsee796e3
core: do not double-inherit t.contextc2005fa
update versions31bace4
chdir: don't need to depend on@tapjs/after
c32cded
fixture: safely delete when in a subdir of testdir4c23c76
update versions5edeb4b
run: add missing origin in resolveImportb540d4e
update versions956aeb5
chdir: fix detection of original cwd71570ad
add@tapjs/chdir
to typedocsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show