Skip to content

chore(deps-dev): bump the dev-dependencies group across 1 directory with 10 updates#1595

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/dev-dependencies-f06a4d73c5
Open

chore(deps-dev): bump the dev-dependencies group across 1 directory with 10 updates#1595
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/dev-dependencies-f06a4d73c5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 19, 2026

Copy link
Copy Markdown
Contributor

Bumps the dev-dependencies group with 10 updates in the / directory:

Package From To
@biomejs/biome 2.4.11 2.5.0
@types/luxon 3.7.1 3.7.2
@types/node 24.12.2 24.13.2
esmock 2.7.3 2.7.6
mocha 11.7.5 11.7.6
mockttp 4.3.0 4.4.2
mongodb-memory-server 11.0.1 11.2.0
sinon 21.1.2 22.0.0
testcontainers 11.14.0 12.0.3
typescript 6.0.2 6.0.3

Updates @biomejs/biome from 2.4.11 to 2.5.0

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.5.0

2.5.0

Minor Changes

  • #9539 f0615fd Thanks @​ematipico! - Added a new reporter called concise. When --reporter=concise is passed the commands format, lint, check and ci, the diagnostics are printed in a compact manner:

    ! index.ts:2:10: lint/correctness/noUnusedImports: Several of these imports are unused.
    ! main.ts:9:7: lint/correctness/noUnusedVariables: This variable f is unused.
    × index.ts:8:5: lint/suspicious/noImplicitAnyLet: This variable implicitly has the any type.
    × main.ts:2:10: lint/suspicious/noRedeclare: Shouldn't redeclare 'z'. Consider to delete it or rename it.
    
  • #9495 2056b23 Thanks @​aviraldua93! - Added the useKeyWithClickEvents a11y lint rule for HTML files (.html, .vue, .svelte, .astro). This is a port of the existing JSX rule. The rule enforces that elements with an onclick handler also have at least one keyboard event handler (onkeydown, onkeyup, or onkeypress) to ensure keyboard accessibility.

    Inherently keyboard-accessible elements (<a>, <button>, <input>, <select>, <textarea>, <option>) are excluded, as are elements hidden from assistive technologies (aria-hidden) or with role="presentation" / role="none".

    <!-- Invalid: no keyboard handler -->
    <div onclick="handleClick()">Click me</div>
    <!-- Valid: has keyboard handler -->
    <div onclick="handleClick()" onkeydown="handleKeyDown()">Click me</div>
    <!-- Valid: inherently keyboard-accessible -->
    <button onclick="handleClick()">Submit</button>

  • #9152 9ec8500 Thanks @​ematipico! - Added new nursery lint rule noUndeclaredClasses for HTML, JSX, and SFC files (Vue, Astro, Svelte). The rule detects CSS class names used in class="..." (or className) attributes that are not defined in any <style> block or linked stylesheet reachable from the file.

    <!-- .typo is used but never defined -->
    <html>
      <head>
        <style>
          .button {
            color: blue;
          }
        </style>
      </head>
      <body>
        <div class="button typo"></div>
      </body>
    </html>
  • #9152 9ec8500 Thanks @​ematipico! - Added new nursery lint rule noUnusedClasses for CSS. The rule detects CSS class selectors that are never referenced in any HTML or JSX file that imports the stylesheet. This is a project-domain rule that requires the module graph.

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.5.0

Minor Changes

  • #9539 f0615fd Thanks @​ematipico! - Added a new reporter called concise. When --reporter=concise is passed the commands format, lint, check and ci, the diagnostics are printed in a compact manner:

    ! index.ts:2:10: lint/correctness/noUnusedImports: Several of these imports are unused.
    ! main.ts:9:7: lint/correctness/noUnusedVariables: This variable f is unused.
    × index.ts:8:5: lint/suspicious/noImplicitAnyLet: This variable implicitly has the any type.
    × main.ts:2:10: lint/suspicious/noRedeclare: Shouldn't redeclare 'z'. Consider to delete it or rename it.
    
  • #9495 2056b23 Thanks @​aviraldua93! - Added the useKeyWithClickEvents a11y lint rule for HTML files (.html, .vue, .svelte, .astro). This is a port of the existing JSX rule. The rule enforces that elements with an onclick handler also have at least one keyboard event handler (onkeydown, onkeyup, or onkeypress) to ensure keyboard accessibility.

    Inherently keyboard-accessible elements (<a>, <button>, <input>, <select>, <textarea>, <option>) are excluded, as are elements hidden from assistive technologies (aria-hidden) or with role="presentation" / role="none".

    <!-- Invalid: no keyboard handler -->
    <div onclick="handleClick()">Click me</div>
    <!-- Valid: has keyboard handler -->
    <div onclick="handleClick()" onkeydown="handleKeyDown()">Click me</div>
    <!-- Valid: inherently keyboard-accessible -->
    <button onclick="handleClick()">Submit</button>

  • #9152 9ec8500 Thanks @​ematipico! - Added new nursery lint rule noUndeclaredClasses for HTML, JSX, and SFC files (Vue, Astro, Svelte). The rule detects CSS class names used in class="..." (or className) attributes that are not defined in any <style> block or linked stylesheet reachable from the file.

    <!-- .typo is used but never defined -->
    <html>
      <head>
        <style>
          .button {
            color: blue;
          }
        </style>
      </head>
      <body>
        <div class="button typo"></div>
      </body>
    </html>
  • #9152 9ec8500 Thanks @​ematipico! - Added new nursery lint rule noUnusedClasses for CSS. The rule detects CSS class selectors that are never referenced in any HTML or JSX file that imports the stylesheet. This is a project-domain rule that requires the module graph.

    /* styles.css — .ghost is never used in any importing file */

... (truncated)

Commits

Updates @types/luxon from 3.7.1 to 3.7.2

Commits

Updates @types/node from 24.12.2 to 24.13.2

Commits

Updates esmock from 2.7.3 to 2.7.6

Release notes

Sourced from esmock's releases.

wildcard-issue resolved

mostly resolves a recently-discovered issue resolving certain wildcard-pattern export keys

clerical changes; linting+coverage

src files are unchanged; only clerical changes for linting and coverage tools,

support typescript-modules

Changelog

Sourced from esmock's changelog.

changelog

... (truncated)

Commits
  • ba5d2d2 Merge pull request #340 from iambumblehead/fix-changelog-link
  • 21dd0b4 fix CHANGELOG.md link
  • d0fea76 Merge pull request #339 from iambumblehead/increment-resolvewith-plus
  • 08be213 increment resolvewithplus
  • 99d4d86 Merge pull request #338 from iambumblehead/increment-eslint-and-related
  • 9ce6992 increment eslint and related
  • 405b513 Merge pull request #337 from iambumblehead/update-build-ci-job-spec-node-v24
  • 3642278 update build+publish ci job spec
  • 1b4b287 Merge pull request #336 from iambumblehead/reference-main-branch-test-coverag...
  • c17920a reference main branch test-coverage-badge
  • Additional commits viewable in compare view

Updates mocha from 11.7.5 to 11.7.6

Release notes

Sourced from mocha's releases.

v11.7.6

11.7.6 (2026-02-14)

🩹 Fixes

  • make describe().timeout() work (aafe6fd)
  • test: replace wmic usage with native Windows API (#5694) (73ebdfa)

🧹 Chores

Changelog

Sourced from mocha's changelog.

11.7.6 (2026-02-14)

🩹 Fixes

  • make describe().timeout() work (aafe6fd)
  • test: replace wmic usage with native Windows API (#5694) (73ebdfa)

🧹 Chores

Commits

Updates mockttp from 4.3.0 to 4.4.2

Commits
  • fd24a08 4.4.2
  • feff512 Merge pull request #201 from chimurai/fix-ipv6-bracket-literals
  • 43da445 refactor: update test with less ambiguous invalid ipv6 address
  • 21bc0b3 fix(url): normalizeHost with ipv6 hostname
  • b19b758 Fix bug in TLS event reporting after reset
  • 0e03a31 4.4.1
  • b71e389 Disable strictSingleValueFields for HTTP/2 responses
  • e546ac5 4.4.0
  • 4eba266 Add 'response-information' event to listen to 1xx info responses
  • 7897012 Fix possible multi-firing events after reconnects
  • Additional commits viewable in compare view

Updates mongodb-memory-server from 11.0.1 to 11.2.0

Release notes

Sourced from mongodb-memory-server's releases.

v11.2.0

11.2.0 (2026-05-28)

Dependencies

v11.1.0

11.1.0 (2026-04-29)

Features

  • resolveConfig: update default binary version to 8.2.6 (3876fad)
  • update default-4.4-binary to 4.4.30 (119ef80)

Dependencies

  • follow-redirects: upgrade to 1.16.0 (aed865f)
  • mongodb: upgrade to 7.2.0 (b0a8b90)
  • tar-stream: upgrade to 3.1.8 (026aa7f)
  • yauzl: upgrade to 3.3.0 (ef4f38e)

Dev-Dependencies

  • @​types/debug: upgrade to 4.1.13 (f4d5be2)
  • @​types/yazl: upgrade to 3.3.1 (c329123)
  • commitlint: upgrade to 20.5.2 (7640c9f)
  • doctoc: upgrade to 2.4.1 (4443034)
  • eslint-plugin-prettier: upgrade to 5.5.5 (f9889c4)
  • eslint: upgrade to 10.2.1 (7e40e8c)
  • jest: upgrade to 30.3.0 (5f7a6b2)
  • lint-staged: upgrade to 16.4.0 (edd1f2d)
  • prettier: upgrade to 3.8.3 (95a76d7)
  • rimraf: upgrade to 6.1.3 (fddab3d)
  • ts-jest: upgrade to 29.4.9 (7ed5a0f)
  • typedoc: upgrade to 0.28.19 (acca60d)
Changelog

Sourced from mongodb-memory-server's changelog.

11.2.0 (2026-05-28)

Dependencies

11.1.0 (2026-04-29)

Features

  • resolveConfig: update default binary version to 8.2.6 (3876fad)
  • update default-4.4-binary to 4.4.30 (119ef80)

Dependencies

  • follow-redirects: upgrade to 1.16.0 (aed865f)
  • mongodb: upgrade to 7.2.0 (b0a8b90)
  • tar-stream: upgrade to 3.1.8 (026aa7f)
  • yauzl: upgrade to 3.3.0 (ef4f38e)

Dev-Dependencies

  • @​types/debug: upgrade to 4.1.13 (f4d5be2)
  • @​types/yazl: upgrade to 3.3.1 (c329123)
  • commitlint: upgrade to 20.5.2 (7640c9f)
  • doctoc: upgrade to 2.4.1 (4443034)
  • eslint-plugin-prettier: upgrade to 5.5.5 (f9889c4)
  • eslint: upgrade to 10.2.1 (7e40e8c)
  • jest: upgrade to 30.3.0 (5f7a6b2)
  • lint-staged: upgrade to 16.4.0 (edd1f2d)
  • prettier: upgrade to 3.8.3 (95a76d7)
  • rimraf: upgrade to 6.1.3 (fddab3d)
  • ts-jest: upgrade to 29.4.9 (7ed5a0f)
  • typedoc: upgrade to 0.28.19 (acca60d)
Commits

Updates sinon from 21.1.2 to 22.0.0

Changelog

Sourced from sinon's changelog.

22.0.0

  • ed911df5 Update Ruby gems (Carl-Erik Kopseng)
  • 75a1e5b8 Update to Node 26 (Carl-Erik Kopseng)
  • 197d6608 Update documentation on faking timers to reflect the current state of fake-timers (Carl-Erik Kopseng)
  • c5ddf80b Update fake-timers@15.4: includes new Temporal API (Carl-Erik Kopseng)
  • f4ab02f6 Update updatable packages (Carl-Erik Kopseng)
  • 0536afc8 Quality: Global mutable call id can grow unbounded across long-lived processes (#2691) (tuanaiseo)
    • refactor: global mutable call id can grow unbounded across l

    callId is module-scoped and incremented on every invocation. In long-running test runners or embedded usage, this can grow indefinitely and eventually lose integer precision semantics for strict ordering comparisons.

    Affected files: proxy-invoke.js

    Signed-off-by: tuanaiseo 221258316+tuanaiseo@users.noreply.github.com

    • Wrap around for all values that are too high

    Signed-off-by: tuanaiseo 221258316+tuanaiseo@users.noreply.github.com Co-authored-by: Carl-Erik Kopseng carlerik@gmail.com

  • f4f7d93b Perform additional cleanup when calling callThrough() (#2670) (Cyrille)
  • 6199e9e4 improve GitHubworkflows by introducing zizmor for monitoring (#2686) (Till!)
    • fix(workflows): fetch-depth is for actions/checkout
    • chore(workflows): update
    • pin all actions to precise commits
    • avoid credential leakage from actions/checkout
    • group action updates going forward
    • add zimor config to ignore "secrets outside env"
    • add job to keep validating workflows
  • f7476b59 Use path.normalize() for path normalization (Carl-Erik Kopseng)
  • 2c975393 fix: make build and node test scripts cross-platform (laplace young)
  • a7692917 fix: isolate walk state from Object prototype (laplace young)
  • 66df977a Fix sinon.restore() cascade-restoring sub-sandboxes (#2704) (Charlie Leitheiser)

    The ESM port of createApi (#2683, shipped in 21.1.0) replaced createSandbox: createSandbox with a wrapper that pushes every newly-created sandbox into the root sandbox's fake collection:

... (truncated)

Commits
  • 52555af 22.0.0
  • ed911df Update Ruby gems
  • 75a1e5b Update to Node 26
  • 197d660 Update documentation on faking timers to reflect the current state of fake-ti...
  • c5ddf80 Update fake-timers@15.4: includes new Temporal API
  • f4ab02f Update updatable packages
  • 0536afc Quality: Global mutable call id can grow unbounded across long-lived processe...
  • f4f7d93 Perform additional cleanup when calling callThrough() (#2670)
  • 6199e9e improve GitHubworkflows by introducing zizmor for monitoring (#2686)
  • 1519009 Merge #2703: isolate walk state from Object prototype
  • Additional commits viewable in compare view

Updates testcontainers from 11.14.0 to 12.0.3

Release notes

Sourced from testcontainers's releases.

v12.0.3

Changes

🐛 Bug Fixes

📦 Dependency Updates

v12.0.2

Changes

🐛 Bug Fixes

📦 Dependency Updates

v12.0.1

Changes

🐛 Bug Fixes

🧹 Maintenance

📦 Dependency Updates

... (truncated)

Commits
  • a7fc211 Downgrade archiver to restore Jest CJS compatibility (#1366)
  • 79f9707 Bump testcontainers/sshd image from 1.3.0 to 1.4.0 (#1364)
  • d4c3ee1 v12.0.2
  • 549bfa5 Bump the dependencies group across 11 directories with 10 updates (#1362)
  • 6e7b6c8 Bump the dependencies group across 1 directory with 27 updates (#1363)
  • 4ad504f Reset stateful regex log waits between matches (#1352)
  • a1b87ed Fix Couchbase service configuration (#1356)
  • 84aba48 Configure Azurite custom service ports (#1354)
  • 1a32238 Preserve protocol-specific port bindings when filtering (#1350)
  • 3286470 Apply custom MSSQL wait messages (#1351)
  • Additional commits viewable in compare view

Updates typescript from 6.0.2 to 6.0.3

Release notes

Sourced from typescript's releases.

TypeScript 6.0.3

For release notes, check out the release announcement blog post.

Downloads are available on:

Commits
  • 050880c Bump version to 6.0.3 and LKG
  • eeae9dd 🤖 Pick PR #63401 (Also check package name validity in...) into release-6.0 (#...
  • ad1c695 🤖 Pick PR #63368 (Harden ATA package name filtering) into release-6.0 (#63372)
  • 0725fb4 🤖 Pick PR #63310 (Mark class property initializers as...) into release-6.0 (#...
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ith 10 updates

Bumps the dev-dependencies group with 10 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@biomejs/biome](https://github.com/biomejs/biome/tree/HEAD/packages/@biomejs/biome) | `2.4.11` | `2.5.0` |
| [@types/luxon](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/luxon) | `3.7.1` | `3.7.2` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `24.12.2` | `24.13.2` |
| [esmock](https://github.com/iambumblehead/esmock) | `2.7.3` | `2.7.6` |
| [mocha](https://github.com/mochajs/mocha) | `11.7.5` | `11.7.6` |
| [mockttp](https://github.com/httptoolkit/mockttp) | `4.3.0` | `4.4.2` |
| [mongodb-memory-server](https://github.com/typegoose/mongodb-memory-server/tree/HEAD/packages/mongodb-memory-server) | `11.0.1` | `11.2.0` |
| [sinon](https://github.com/sinonjs/sinon) | `21.1.2` | `22.0.0` |
| [testcontainers](https://github.com/testcontainers/testcontainers-node) | `11.14.0` | `12.0.3` |
| [typescript](https://github.com/microsoft/TypeScript) | `6.0.2` | `6.0.3` |



Updates `@biomejs/biome` from 2.4.11 to 2.5.0
- [Release notes](https://github.com/biomejs/biome/releases)
- [Changelog](https://github.com/biomejs/biome/blob/main/packages/@biomejs/biome/CHANGELOG.md)
- [Commits](https://github.com/biomejs/biome/commits/@biomejs/biome@2.5.0/packages/@biomejs/biome)

Updates `@types/luxon` from 3.7.1 to 3.7.2
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/luxon)

Updates `@types/node` from 24.12.2 to 24.13.2
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `esmock` from 2.7.3 to 2.7.6
- [Release notes](https://github.com/iambumblehead/esmock/releases)
- [Changelog](https://github.com/iambumblehead/esmock/blob/main/CHANGELOG.md)
- [Commits](iambumblehead/esmock@v2.7.3...v2.7.6)

Updates `mocha` from 11.7.5 to 11.7.6
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/v11.7.6/CHANGELOG.md)
- [Commits](mochajs/mocha@v11.7.5...v11.7.6)

Updates `mockttp` from 4.3.0 to 4.4.2
- [Release notes](https://github.com/httptoolkit/mockttp/releases)
- [Commits](httptoolkit/mockttp@v4.3.0...v4.4.2)

Updates `mongodb-memory-server` from 11.0.1 to 11.2.0
- [Release notes](https://github.com/typegoose/mongodb-memory-server/releases)
- [Changelog](https://github.com/typegoose/mongodb-memory-server/blob/master/CHANGELOG.md)
- [Commits](https://github.com/typegoose/mongodb-memory-server/commits/v11.2.0/packages/mongodb-memory-server)

Updates `sinon` from 21.1.2 to 22.0.0
- [Release notes](https://github.com/sinonjs/sinon/releases)
- [Changelog](https://github.com/sinonjs/sinon/blob/main/CHANGES.md)
- [Commits](sinonjs/sinon@v21.1.2...v22.0.0)

Updates `testcontainers` from 11.14.0 to 12.0.3
- [Release notes](https://github.com/testcontainers/testcontainers-node/releases)
- [Commits](testcontainers/testcontainers-node@v11.14.0...v12.0.3)

Updates `typescript` from 6.0.2 to 6.0.3
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Commits](microsoft/TypeScript@v6.0.2...v6.0.3)

---
updated-dependencies:
- dependency-name: "@biomejs/biome"
  dependency-version: 2.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: "@types/luxon"
  dependency-version: 3.7.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: "@types/node"
  dependency-version: 24.13.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: esmock
  dependency-version: 2.7.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: mocha
  dependency-version: 11.7.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: mockttp
  dependency-version: 4.4.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: mongodb-memory-server
  dependency-version: 11.2.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: sinon
  dependency-version: 22.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: testcontainers
  dependency-version: 12.0.3
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: typescript
  dependency-version: 6.0.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants