Closed dependabot[bot] closed 2 months ago
New and removed dependencies detected. Learn more about Socket for GitHub โ๏ธ
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/tap@20.0.0 | Transitive: environment, filesystem, network, shell, unsafe | +279 |
42.8 MB | isaacs |
๐ฎ Removed packages: npm/tap@16.3.10
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
โ EDITORCONFIG | editorconfig-checker | 2 | 0 | 0.01s | |
โ JSON | jsonlint | 2 | 0 | 0.19s | |
โ JSON | npm-package-json-lint | yes | no | 0.48s | |
โ JSON | v8r | 2 | 0 | 7.11s | |
โ REPOSITORY | checkov | yes | no | 11.26s | |
โ REPOSITORY | gitleaks | yes | no | 2.2s | |
โ REPOSITORY | git_diff | yes | no | 0.04s | |
โ REPOSITORY | grype | yes | no | 12.37s | |
โ REPOSITORY | secretlint | yes | 1 | 1.31s | |
โ REPOSITORY | trivy-sbom | yes | no | 0.97s | |
โ SPELL | lychee | 2 | 1 | 2.32s |
See detailed report in MegaLinter reports
_Set VALIDATE_ALL_CODEBASE: true
in mega-linter.yml to validate all sources, not only the diff_
Superseded by #168.
Bumps tap from 16.3.10 to 20.0.0.
Release notes
Sourced from tap's releases.
... (truncated)
Commits
7c022d0
update versionsba9fc18
Update many deps, fix audit complaints922de9d
update minimum node version to 18.63526a59
update read, use built-in types instead of patched3e461a0
update pacote and polite-json48513e3
update markdown-it, fix netlify deploy pathac90f5a
c8@107fc57cd
fixup! update deps39d144b
update deps6bb8d64
update versionsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show