Skip to content

meta: bump brace-expansion from 1.1.12 to 5.0.6#8897

Merged
bmuenzenmeyer merged 1 commit into
mainfrom
dependabot/npm_and_yarn/brace-expansion-5.0.6
May 19, 2026
Merged

meta: bump brace-expansion from 1.1.12 to 5.0.6#8897
bmuenzenmeyer merged 1 commit into
mainfrom
dependabot/npm_and_yarn/brace-expansion-5.0.6

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 16, 2026
edited
Loading

Bumps brace-expansion from 1.1.12 to 5.0.6.

Release notes

Sourced from brace-expansion's releases.

v4.0.1

  • fmt 5a5cc17
  • Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65) 0b6a978

juliangruber/brace-expansion@v4.0.0...v4.0.1

v4.0.0

  • feat: use string replaces instead of splits (#64) 278132b
  • fmt dd72a59
  • add tea.yaml 70e4c1b

juliangruber/brace-expansion@v3.0.0...v4.0.0

As a precaution to not risk breaking anything with 278132b, this is a new semver major release

v3.0.1

  • pkg: publish on tag 3.x 3059c07
  • fmt 8229e6f
  • Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65) 15f9b3c

juliangruber/brace-expansion@v3.0.0...v3.0.1

v3.0.0

  • Switch to ES Modules and balanced-match 3.0.0 (#62) c0360e8
  • added jsdoc (#55) 68c0e37
  • node 16 is EOL 9e781e9
  • add standard 3494c4d
  • use const and let (#57) dd5a4cb
  • docs 6dad209
  • remove test e3dd8ae
  • ci: update node versions d23ede9
  • docs: add @​lanodan to contributors 1eb3fa4
  • docs 1e7c9cd
  • switch from tape to test module (#60) 2520537
  • Bump minimist from 1.2.5 to 1.2.6 (#59) 61a94f1
  • Bump path-parse from 1.0.6 to 1.0.7 (#51) dc741cf
  • docs: add back ci badge 8ee5626
  • Add github actions, remove travis. Closes #52 (#53) 5c8756a
  • CI: Drop unused sudo: false Travis directive (#50) 05978a7

juliangruber/brace-expansion@v2.0.1...v3.0.0

v2.0.2

  • pkg: publish on tag 2.x 14f1d91
  • fmt ed7780a
  • Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65) 36603d5

... (truncated)

Commits
Install script changes

This version adds prepare script that runs during installation. Review the package contents before updating.

@dependabot dependabot Bot added auto-merge Ready to automatically merge after being open for 48 hours dependencies Pull requests that update a dependency file github_actions:pull-request Trigger Pull Request Checks javascript Pull requests that update javascript code labels May 16, 2026
@dependabot dependabot Bot requested a review from a team as a code owner May 16, 2026 03:32
@dependabot dependabot Bot added github_actions:pull-request Trigger Pull Request Checks dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code auto-merge Ready to automatically merge after being open for 48 hours labels May 16, 2026
@dependabot dependabot Bot mentioned this pull request May 16, 2026
Closed
@vercel
Copy link
Copy Markdown

vercel Bot commented May 16, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
nodejs-org Ready Ready Preview May 19, 2026 2:34pm

Request Review

@github-actions github-actions Bot removed the github_actions:pull-request Trigger Pull Request Checks label May 16, 2026
@codecov
Copy link
Copy Markdown

codecov Bot commented May 16, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 73.23%. Comparing base (0299203) to head (4330a40).
✅ All tests successful. No failed tests found.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #8897   +/-   ##
=======================================
  Coverage   73.23%   73.23%           
=======================================
  Files         102      102           
  Lines        8628     8628           
  Branches      313      313           
=======================================
  Hits         6319     6319           
  Misses       2308     2308           
  Partials        1        1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@bmuenzenmeyer bmuenzenmeyer added this pull request to the merge queue May 19, 2026
@github-merge-queue github-merge-queue Bot removed this pull request from the merge queue due to a conflict with the base branch May 19, 2026
@bmuenzenmeyer
Copy link
Copy Markdown
Contributor

bmuenzenmeyer commented May 19, 2026

@dependabot rebase

@dependabot
meta: bump brace-expansion from 1.1.12 to 5.0.6
4330a40 
Bumps [brace-expansion](https://github.com/juliangruber/brace-expansion) from 1.1.12 to 5.0.6.
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](juliangruber/brace-expansion@v1.1.12...v5.0.6)

---
updated-dependencies:
- dependency-name: brace-expansion
  dependency-version: 5.0.6
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/brace-expansion-5.0.6 branch from 6b710e6 to 4330a40 Compare May 19, 2026 14:33
@bmuenzenmeyer bmuenzenmeyer added this pull request to the merge queue May 19, 2026
Merged via the queue into main with commit 9ac2ce8 May 19, 2026
13 checks passed
@bmuenzenmeyer bmuenzenmeyer deleted the dependabot/npm_and_yarn/brace-expansion-5.0.6 branch May 19, 2026 14:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aymen94 aymen94 aymen94 approved these changes

@avivkeller avivkeller avivkeller approved these changes

Assignees

No one assigned

Labels

auto-merge Ready to automatically merge after being open for 48 hours dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@bmuenzenmeyer @aymen94 @avivkeller