Closed dependabot[bot] closed 6 days ago
New dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/diff@6.0.0 | None | 0 |
621 kB | explodingcabbage |
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
✅ EDITORCONFIG | editorconfig-checker | 2 | 0 | 0.03s | |
✅ JSON | jsonlint | 2 | 0 | 0.17s | |
✅ JSON | npm-package-json-lint | yes | no | 0.43s | |
✅ JSON | v8r | 2 | 0 | 13.82s | |
✅ REPOSITORY | checkov | yes | no | 11.91s | |
✅ REPOSITORY | gitleaks | yes | no | 2.19s | |
✅ REPOSITORY | git_diff | yes | no | 0.02s | |
✅ REPOSITORY | grype | yes | no | 13.39s | |
❌ REPOSITORY | secretlint | yes | 1 | 1.19s | |
✅ REPOSITORY | trivy-sbom | yes | no | 1.12s | |
❌ SPELL | lychee | 2 | 1 | 2.92s |
See detailed report in MegaLinter reports
_Set VALIDATE_ALL_CODEBASE: true
in mega-linter.yml to validate all sources, not only the diff_
Superseded by #177.
Bumps diff from 5.2.0 to 6.0.0.
Changelog
Sourced from diff's changelog.
Commits
e80648d
Release V6.0.0 (#551)a8b639a
Remove use of regex lookbehind to improve compat with old Safari versions (#550)e8db85e
Bump micromatch from 4.0.5 to 4.0.8 (#549)6b5247d
Bump webpack from 5.90.3 to 5.94.0 (#548)739bfff
Fix reference to no-longer-existent 'rollup.config.js' file (#544)3b1ac53
6.0.0-beta (#543)af1e8f8
Document how diffSentences works, a bit (#542)fc5e7ea
Stop using old 'import assertions' syntax that was removed in Node 22 (#540)4f0430a
Add Intl.Segmenter support (#539)244df82
Fix more logic around newlines at EOF - this time stuff I recently broke in (...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show