Dependency Dashboard

[renovate[bot]]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

[!WARNING] These dependencies are deprecated:

Datasource	Name	Replacement PR?
npm	codecov
npm	eslint-plugin-node
npm	tsc-publish
npm	tslint

Rate-Limited

These updates are currently rate-limited. Click on a checkbox below to force their creation now.

• [ ] fix(deps): update dependency websocket to v1.0.35
• [ ] chore(deps): update dependency snyk to v1.1292.1
• [ ] chore(deps): update dependency eslint to v9
• [ ] chore(deps): update dependency installed-check to v9
• [ ] chore(deps): update dependency jsdoc to v4
• [ ] chore(deps): update dependency lint-staged to v15
• [ ] chore(deps): update dependency prettier to v3
• [ ] chore(deps): update dependency typescript to v5
• [ ] chore(deps): update node.js to v20 (node, @types/node)
• [ ] chore(deps): update semantic-release monorepo (major) (@semantic-release/changelog, @semantic-release/git)
• [ ] chore(deps): update voxmedia/github-action-slack-notify-build action to v2
• [ ] fix(deps): update dependency camelcase to v8
• [ ] fix(deps): update dependency ibm-cloud-sdk-core to v5
• [ ] 🔐 Create all rate-limited PRs at once 🔐

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• [ ] chore(deps): update dependency axios to ^0.28.0 [security]
• [ ] chore(deps): update dependency semantic-release to v19 [security]
• [ ] chore(deps): replace dependency eslint-plugin-node with eslint-plugin-n ^14.0.0
• [ ] chore(deps): update dependency typedoc to ^0.26.0
• [ ] fix(deps): update dependency ibm-cloud-sdk-core to v4.3.3
• [ ] chore(deps): update actions/checkout action to v4
• [ ] chore(deps): update actions/setup-node action to v4
• [ ] chore(deps): update dependency eslint-config-prettier to v9
• [ ] chore(deps): update dependency eslint-plugin-prettier to v5
• [ ] chore(deps): update dependency jest to v29
• [ ] Click on this checkbox to rebase all open PRs at once

Detected dependencies

dockerfile

docker/Dockerfile

- `node 12-slim`

github-actions

.github/workflows/build-test.yml

- `actions/checkout v2` - `actions/setup-node v2`

.github/workflows/deploy.yml

- `actions/checkout v2` - `actions/setup-node v2`

.github/workflows/integration-test.yml

- `actions/checkout v2` - `actions/setup-node v2` - `voxmedia/github-action-slack-notify-build v1` - `voxmedia/github-action-slack-notify-build v1`

npm

package.json

- `@types/async ^3.2.5` - `@types/extend ^3.0.1` - `@types/isstream ^0.1.0` - `@types/node ^13.13.39` - `@types/websocket ^1.0.1` - `async ^3.2.0` - `camelcase ^6.2.0` - `extend ~3.0.2` - `ibm-cloud-sdk-core ^4.2.3` - `isstream ~0.1.2` - `websocket ^1.0.33` - `@semantic-release/changelog ^5.0.1` - `@semantic-release/git ^9.0.0` - `axios ^0.21.4` - `codecov ^3.8.1` - `concat-stream ^2.0.0` - `cz-conventional-changelog ^3.3.0` - `eslint ^6.8.0` - `eslint-config-google ^0.14.0` - `eslint-config-prettier ^6.15.0` - `eslint-plugin-node ^11.1.0` - `eslint-plugin-prettier ^3.3.1` - `installed-check ^3.0.0` - `jest ^28.1.3` - `jsdoc ^3.6.6` - `lint-staged ^10.5.3` - `prettier ^2.2.1` - `semantic-release ^17.3.1` - `snyk ^1.437.3` - `tsc-publish ^0.5.1` - `tslint ^6.1.3` - `tslint-config-prettier ^1.18.0` - `typedoc ^0.17.8` - `typescript ^4.9.4` - `wav ~1.0.2` - `node >=16.0.0`

travis

.travis.yml

- `node 10` - `node 12`

---

• [ ] Check this box to trigger a request for Renovate to run again on this repository

[EgleHelms]

High vulnerabilities in: Vulnerability in axios@1.4.0: https://www.cve.org/CVERecord?id=CVE-2023-45857 Should be updated to axios@1.6.0

Vulnerability in semver@6.3.0: https://www.cve.org/CVERecord?id=CVE-2022-25883 Should be fixed in semver@5.7.2, @6.3.1, @7.5.2

Please update this package.

[apaparazzi0329]

axios version has been updated in the dependent package ibm-cloud-sdk-core. semver@6.3.0 is only used in the dev dependency commitlint and poses no security risks. We will likely remove commitlint anyways as it is no longer used for development purposes.