Dependency Dashboard

[renovate[bot]]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

[!WARNING] These dependencies are deprecated:

Datasource	Name	Replacement PR?
npm	@types/markdown-table

Pending Approval

These branches will be created by Renovate only once you click their checkbox below.

• [ ] build(deps): update dependency @sindresorhus/is to v7
• [ ] build(deps): update dependency aggregate-error to v5
• [ ] build(deps): update dependency cacache to v19
• [ ] build(deps): update dependency chalk to v5
• [ ] build(deps): update dependency detect-indent to v7
• [ ] build(deps): update dependency diff to v7
• [ ] build(deps): update dependency find-up to v7
• [ ] build(deps): update dependency git-url-parse to v16
• [ ] build(deps): update dependency got to v14
• [ ] build(deps): update dependency json-stringify-pretty-compact to v4
• [ ] build(deps): update dependency markdown-table to v3 (markdown-table, @types/markdown-table)
• [ ] build(deps): update dependency nanoid to v5
• [ ] build(deps): update dependency p-all to v5
• [ ] build(deps): update dependency p-map to v7
• [ ] build(deps): update dependency p-queue to v8
• [ ] build(deps): update dependency p-throttle to v6
• [ ] build(deps): update dependency url-join to v5
• [ ] build(deps): update remark (major) (remark, remark-github)
• [ ] chore(deps): update dependency @types/diff to v6
• [ ] chore(deps): update dependency @types/mdast to v4
• [ ] chore(deps): update dependency @types/unist to v3
• [ ] chore(deps): update dependency unified to v11
• [ ] chore(deps): update eslint monorepo to v9 (major) (@types/eslint, eslint)
• [ ] chore(deps): update ubuntu docker tag to v25
• [ ] 🔐 Create all pending approval PRs at once 🔐

Awaiting Schedule

These updates are awaiting their schedule. Click on a checkbox to get an update now.

• [ ] build(deps): update aws-sdk-js-v3 monorepo to v3.699.0 (@aws-sdk/client-codecommit, @aws-sdk/client-ec2, @aws-sdk/client-ecr, @aws-sdk/client-rds, @aws-sdk/client-s3, @aws-sdk/credential-providers)
• [ ] docs: update references to renovate/renovate
• [ ] chore(deps): lock file maintenance

Pending Status Checks

These updates await pending status checks. To force their creation now, click the checkbox below.

• [ ] build(deps): update dependency @yarnpkg/core to v4.1.6
• [ ] build(deps): update dependency openpgp to v6.0.1
• [ ] build(deps): update dependency yaml to v2.6.1
• [ ] chore(deps): update dependency @swc/core to v1.9.3
• [ ] chore(deps): update dependency @types/better-sqlite3 to v7.6.12
• [ ] chore(deps): update dependency @types/node to v20.17.7
• [ ] chore(deps): update dependency husky to v9.1.7
• [ ] build(deps): update dependency @opentelemetry/instrumentation-bunyan to v0.43.0
• [ ] build(deps): update dependency @opentelemetry/semantic-conventions to v1.28.0
• [ ] build(deps): update dependency cronstrue to v2.52.0
• [ ] chore(deps): update dependency type-fest to v4.28.0
• [ ] chore(deps): update dependency typescript to v5.7.2
• [ ] chore(deps): update pnpm to v9.14.2

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• [ ] chore(deps): update linters (@typescript-eslint/eslint-plugin, @typescript-eslint/parser, eslint-plugin-jest)
• [ ] chore(deps): update davidanson/markdownlint-cli2-action action to v18
• [ ] chore(deps): update slackapi/slack-github-action action to v2
• [ ] Click on this checkbox to rebase all open PRs at once

Ignored or Blocked

These are blocked by an existing closed PR and will not be recreated unless you click a checkbox below.

• [ ] chore(deps): update dependency @types/node to v22

Detected dependencies

dockerfile

.devcontainer/Dockerfile

- `ghcr.io/containerbase/devcontainer 13.0.21`

tools/docker/Dockerfile

- `docker/dockerfile 1.11.1@sha256:10c699f1b6c8bdc8f6b4ce8974855dd8542f1768c26eb240237b8f1c9c6c9976` - `ghcr.io/renovatebot/base-image 9.11.0@sha256:68a3a121319dfff0197e9229f29ebd9dba51f3885e6b677740b79b1433dd3c50` - `ghcr.io/renovatebot/base-image 9.11.0-full@sha256:f6701a8ed30152d99b91f7e317dcabfcc1ba0879a1a5da68689a8673da971a9b` - `ghcr.io/renovatebot/base-image 9.11.0@sha256:68a3a121319dfff0197e9229f29ebd9dba51f3885e6b677740b79b1433dd3c50`

github-actions

.github/actions/calculate-prefetch-matrix/action.yml

- `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a`

.github/actions/setup-node/action.yml

- `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `pnpm/action-setup v4.0.0@fe02b34f77f8bc703788d5817da081398fad5dd2` - `actions/setup-node v4.1.0@39370e3970a6d050c480ffad4ff0ed4d3fdee5af` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `nick-fields/retry v3.0.0@7152eba30c6575329ac0576536151aca5a72780e` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a`

.github/workflows/build.yml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `DavidAnson/markdownlint-cli2-action v17.0.0@db43aef879112c3119a410d69f66701e0d530809` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/cache v4.1.2@6849a6489940f00c2f30c0fb92c6274307ccb58a` - `actions/upload-artifact v4.4.3@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16` - `codecov/codecov-action v5.0.7@015f24e6818733317a2da2edd6290ab26238649a` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/upload-artifact v4.4.3@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `pdm-project/setup-pdm v4.1@568ddd69406b30de1774ec0044b73ae06e716aa4` - `actions/upload-artifact v4.4.3@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `pnpm/action-setup v4.0.0@fe02b34f77f8bc703788d5817da081398fad5dd2` - `actions/setup-node v4.1.0@39370e3970a6d050c480ffad4ff0ed4d3fdee5af` - `actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16` - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `containerbase/internal-tools v3.4.47@31a3e9d4b6ed727e2560431aed392a64e67d7284` - `sigstore/cosign-installer v3.7.0@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da`

.github/workflows/codeql-analysis.yml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `github/codeql-action v3.27.5@f09c1c0a94de965c15400f5634aa42fac8fb8f88` - `github/codeql-action v3.27.5@f09c1c0a94de965c15400f5634aa42fac8fb8f88` - `github/codeql-action v3.27.5@f09c1c0a94de965c15400f5634aa42fac8fb8f88`

.github/workflows/dependency-review.yml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `actions/dependency-review-action v4.5.0@3b139cfc5fae8b618d3eae3675e383bb1769c019`

.github/workflows/devcontainer.yml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `devcontainers/ci v0.3.1900000349@a56d055efecd725e8cfe370543b6071b79989cc8`

.github/workflows/label-actions.yml

- `dessant/label-actions v4.0.1@102faf474a544be75fbaf4df54e73d3c515a0e65`

.github/workflows/lock.yml

- `dessant/lock-threads v5.0.1@1bf7ec25051fe7c00bdd17e6a7cf3d7bfb7dc771`

.github/workflows/mend-slack.yml

- `slackapi/slack-github-action v1.27.1@fcfb566f8b0aab22203f066d80ca1d7e4b5d05b3`

.github/workflows/scorecard.yml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `ossf/scorecard-action v2.4.0@62b2cac7ed8198b15735ed49ab1e5cf35480ba46` - `actions/upload-artifact v4.4.3@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882` - `github/codeql-action v3.27.5@f09c1c0a94de965c15400f5634aa42fac8fb8f88`

.github/workflows/trivy.yml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `aquasecurity/trivy-action 0.29.0@18f2510ee396bbf400402947b394f2dd8c87dbb0` - `github/codeql-action v3.27.5@f09c1c0a94de965c15400f5634aa42fac8fb8f88`

.github/workflows/undesirable-test-additions.yaml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683`

.github/workflows/update-data.yml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` - `pnpm/action-setup v4.0.0@fe02b34f77f8bc703788d5817da081398fad5dd2` - `actions/setup-node v4.1.0@39370e3970a6d050c480ffad4ff0ed4d3fdee5af` - `peter-evans/create-pull-request v7.0.5@5e914681df9dc83aa4e4905692ca88beb2f9e91f`

.github/workflows/ws_scan.yaml

- `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683`

npm

package.json

- `@aws-sdk/client-codecommit 3.687.0` - `@aws-sdk/client-ec2 3.687.0` - `@aws-sdk/client-ecr 3.687.0` - `@aws-sdk/client-rds 3.687.0` - `@aws-sdk/client-s3 3.689.0` - `@aws-sdk/credential-providers 3.687.0` - `@breejs/later 4.2.0` - `@cdktf/hcl2json 0.20.10` - `@opentelemetry/api 1.9.0` - `@opentelemetry/context-async-hooks 1.28.0` - `@opentelemetry/exporter-trace-otlp-http 0.55.0` - `@opentelemetry/instrumentation 0.55.0` - `@opentelemetry/instrumentation-bunyan 0.42.0` - `@opentelemetry/instrumentation-http 0.55.0` - `@opentelemetry/resources 1.28.0` - `@opentelemetry/sdk-trace-base 1.28.0` - `@opentelemetry/sdk-trace-node 1.28.0` - `@opentelemetry/semantic-conventions 1.27.0` - `@qnighy/marshal 0.1.3` - `@renovatebot/detect-tools 1.1.0` - `@renovatebot/kbpgp 4.0.1` - `@renovatebot/osv-offline 1.5.10` - `@renovatebot/pep440 4.0.1` - `@renovatebot/ruby-semver 4.0.0` - `@sindresorhus/is 4.6.0` - `@yarnpkg/core 4.1.4` - `@yarnpkg/parsers 3.0.2` - `agentkeepalive 4.5.0` - `aggregate-error 3.1.0` - `async-mutex 0.5.0` - `auth-header 1.0.0` - `aws4 1.13.2` - `azure-devops-node-api 14.1.0` - `bunyan 1.8.15` - `cacache 18.0.4` - `chalk 4.1.2` - `changelog-filename-regex 2.0.1` - `clean-git-ref 2.0.1` - `commander 12.1.0` - `conventional-commits-detector 1.0.3` - `croner 9.0.0` - `cronstrue 2.51.0` - `deepmerge 4.3.1` - `dequal 2.0.3` - `detect-indent 6.1.0` - `diff 5.2.0` - `editorconfig 2.0.0` - `email-addresses 5.0.0` - `emoji-regex 10.4.0` - `emojibase 15.3.1` - `emojibase-regex 15.3.2` - `extract-zip 2.0.1` - `find-packages 10.0.4` - `find-up 5.0.0` - `fs-extra 11.2.0` - `git-url-parse 15.0.0` - `github-url-from-git 1.5.0` - `glob 11.0.0` - `global-agent 3.0.0` - `good-enough-parser 1.1.23` - `google-auth-library 9.15.0` - `got 11.8.6` - `graph-data-structure 4.2.0` - `handlebars 4.7.8` - `ignore 6.0.2` - `ini 5.0.0` - `json-dup-key-validator 1.0.3` - `json-stringify-pretty-compact 3.0.0` - `json5 2.2.3` - `jsonata 2.0.5` - `jsonc-parser 3.3.1` - `klona 2.0.6` - `luxon 3.5.0` - `markdown-it 14.1.0` - `markdown-table 2.0.0` - `minimatch 10.0.1` - `moo 0.5.2` - `ms 2.1.3` - `nanoid 3.3.7` - `neotraverse 0.6.18` - `node-html-parser 6.1.13` - `p-all 3.0.0` - `p-map 4.0.0` - `p-queue 6.6.2` - `p-throttle 4.1.1` - `parse-link-header 2.0.0` - `prettier 3.3.3` - `protobufjs 7.4.0` - `punycode 2.3.1` - `redis 4.7.0` - `remark 13.0.0` - `remark-github 10.1.0` - `safe-stable-stringify 2.5.0` - `semver 7.6.3` - `semver-stable 3.0.0` - `semver-utils 1.1.4` - `shlex 2.1.2` - `simple-git 3.27.0` - `slugify 1.6.6` - `source-map-support 0.5.21` - `toml-eslint-parser 0.10.0` - `tslib 2.8.1` - `upath 2.0.1` - `url-join 4.0.1` - `validate-npm-package-name 6.0.0` - `vuln-vects 1.1.0` - `xmldoc 1.3.0` - `yaml 2.6.0` - `zod 3.23.8` - `@hyrious/marshal 0.3.3` - `@jest/environment 29.7.0` - `@jest/globals 29.7.0` - `@jest/reporters 29.7.0` - `@jest/test-result 29.7.0` - `@jest/types 29.6.3` - `@ls-lint/ls-lint 2.2.3` - `@openpgp/web-stream-tools 0.1.3` - `@semantic-release/exec 6.0.3` - `@swc/core 1.9.2` - `@types/auth-header 1.0.6` - `@types/aws4 1.11.6` - `@types/better-sqlite3 7.6.11` - `@types/breejs__later 4.1.5` - `@types/bunyan 1.8.11` - `@types/cacache 17.0.2` - `@types/callsite 1.0.34` - `@types/changelog-filename-regex 2.0.2` - `@types/clean-git-ref 2.0.2` - `@types/common-tags 1.8.4` - `@types/conventional-commits-detector 1.0.2` - `@types/diff 5.2.3` - `@types/eslint 8.56.12` - `@types/fs-extra 11.0.4` - `@types/git-url-parse 9.0.3` - `@types/github-url-from-git 1.5.3` - `@types/global-agent 2.1.3` - `@types/ini 4.1.1` - `@types/js-yaml 4.0.9` - `@types/json-dup-key-validator 1.0.2` - `@types/linkify-markdown 1.0.3` - `@types/lodash 4.17.13` - `@types/luxon 3.4.2` - `@types/markdown-it 14.1.2` - `@types/markdown-table 2.0.0` - `@types/marshal 0.5.3` - `@types/mdast 3.0.15` - `@types/moo 0.5.9` - `@types/ms 0.7.34` - `@types/node 20.17.6` - `@types/parse-link-header 2.0.3` - `@types/punycode 2.1.4` - `@types/semver 7.5.8` - `@types/semver-stable 3.0.2` - `@types/semver-utils 1.1.3` - `@types/tar 6.1.13` - `@types/tmp 0.2.6` - `@types/unist 2.0.11` - `@types/url-join 4.0.3` - `@types/validate-npm-package-name 4.0.2` - `@types/xmldoc 1.1.9` - `@typescript-eslint/eslint-plugin 8.11.0` - `@typescript-eslint/parser 8.11.0` - `aws-sdk-client-mock 4.1.0` - `callsite 1.0.0` - `common-tags 1.8.2` - `conventional-changelog-conventionalcommits 8.0.0` - `emojibase-data 15.3.2` - `eslint 8.57.1` - `eslint-formatter-gha 1.5.1` - `eslint-import-resolver-typescript 3.6.3` - `eslint-plugin-import 2.31.0` - `eslint-plugin-jest 28.8.3` - `eslint-plugin-jest-formatting 3.1.0` - `eslint-plugin-promise 7.1.0` - `eslint-plugin-typescript-enum 2.1.0` - `expect 29.7.0` - `expect-more-jest 5.5.0` - `graphql 16.9.0` - `husky 9.1.6` - `jest 29.7.0` - `jest-extended 4.0.2` - `jest-mock 29.7.0` - `jest-mock-extended 3.0.7` - `jest-snapshot 29.7.0` - `markdownlint-cli2 0.15.0` - `memfs 4.14.0` - `nock 13.5.6` - `npm-run-all2 7.0.1` - `nyc 17.1.0` - `pretty-format 29.7.0` - `rimraf 6.0.1` - `semantic-release 24.2.0` - `tar 7.4.3` - `tmp-promise 3.0.3` - `ts-jest 29.2.5` - `ts-node 10.9.2` - `type-fest 4.27.0` - `typescript 5.6.3` - `unified 9.2.2` - `better-sqlite3 11.5.0` - `openpgp 6.0.0` - `re2 1.21.4` - `node ^20.15.1 || ^22.11.0` - `pnpm ^9.0.0` - `node 22.11.0` - `pnpm 9.13.2` - `pnpm 9.13.2` - `@semantic-release/github>@octokit/plugin-paginate-rest 11.3.5`

tools/eslint/package.json

nvm

.nvmrc

- `node 22.11.0`

pep621

pyproject.toml

- `mkdocs-material ==9.5.46` - `mkdocs-awesome-pages-plugin ==2.9.3`

pyenv

.python-version

- `python 3.13.0`

regex

docs/usage/configuration-options.md

docs/usage/docker.md

- `renovate/renovate 39.28.0`

docs/usage/examples/opentelemetry.md

- `jaegertracing/all-in-one 1.63.0` - `otel/opentelemetry-collector-contrib 0.114.0`

docs/usage/examples/self-hosting.md

- `renovate/renovate 39` - `renovate/renovate 39.28` - `renovate/renovate 39.28.0` - `renovate/renovate 39.28.0` - `renovate/renovate 39.28.0` - `renovate/renovate 39.28.0` - `renovate/renovate 39.28.0` - `renovate/renovate 39.28.0` - `renovate/renovate 39.28.0`

docs/usage/release-notes-for-major-versions.md

- `renovate/renovate 39-full`

lib/modules/manager/azure-pipelines/readme.md

- `ubuntu 24.04` - `python 3.13@sha256:bc78d3c007f86dbb87d711b8b082d9d564b8025487e780d24ccb8581d83ef8b0`

docs/usage/docker.md

- `google-github-actions/auth v2.1.7` - `renovatebot/github-action v41.0.4`

tools/docker/Dockerfile

- `node 22.11.0`

.github/workflows/build.yml

- `pdm 2.21.0`

lib/config/options/index.ts

- `ghcr.io/containerbase/sidecar 13.0.21`

---

• [ ] Check this box to trigger a request for Renovate to run again on this repository

[viceice]

Packages blocked by #9890, they are ESM only

• @sindresorhus/is v5
• aggregate-error v4
• cacheable-lookup v7
• chalk v5
• crypto-random-string to v4
• delay v6
• detect-indent v7
• find-up v6
• got v12
• json-stringify-pretty-compact v4
• markdown-table v3
• nanoid v4
• quick-lru v6
• p-all v4
• p-map v5
• p-queue v7
• p-throttle v5
• remark v10 (unified v14, remark-github v11)
• strip-ansi v7
• url-join v5

[HonkingGoose]

We have a deprecated dependency warning for @types/markdown-table. To get rid of this warning, we need to:

• [ ] Update markdown-table to v3 (ESM-only!)
• [ ] Drop the deprecated @types/markdown-table definitions, as markdown-table v3 includes the TypeScript types already

[viceice]

We have a deprecated dependency warning for @types/markdown-table. To get rid of this warning, we need to:

• [ ] Update markdown-table to v3 (ESM-only!)
• [ ] Drop the deprecated @types/markdown-table definitions, as markdown-table v3 includes the TypeScript types already

I know, we're still blocked from esm usage by some mend products