Bump the npm_and_yarn group across 1 directory with 16 updates #5

dependabot · 2025-05-28T07:53:46Z

Bumps the npm_and_yarn group with 14 updates in the / directory:

Package	From	To
lodash	`4.17.13`	`4.17.21`
ajv	`6.7.0`	`6.12.6`
ajv	`6.10.0`	`6.12.6`
async	`2.6.1`	`2.6.4`
axios	`0.18.1`	`removed`
@google-cloud/bigquery	`1.3.0`	`8.0.0`
cross-spawn	`6.0.5`	`6.0.6`
eslint-utils	`1.3.1`	`1.4.3`
minimist	`0.0.8`	`1.2.8`
mkdirp	`0.5.1`	`0.5.6`
mocha	`5.2.0`	`11.5.0`
semver	`5.6.0`	`5.7.2`
y18n	`4.0.0`	`4.0.3`
yargs-parser	`11.1.1`	`22.0.0`
yargs	`12.0.5`	`18.0.0`

Updates lodash from 4.17.13 to 4.17.21

Commits

f299b52 Bump to v4.17.21
c4847eb Improve performance of toNumber, trim and trimEnd on large input strings
3469357 Prevent command injection through _.template's variable option
ded9bc6 Bump to v4.17.20.
63150ef Documentation fixes.
00f0f62 test.js: Remove trailing comma.
846e434 Temporarily use a custom fork of lodash-cli.
5d046f3 Re-enable Travis tests on 4.17 branch.
aa816b3 Remove /npm-package.
d7fbc52 Bump to v4.17.19
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by bnjmnt4n, a new releaser for lodash since your current version.

Updates ajv from 6.7.0 to 6.12.6

Release notes

Sourced from ajv's releases.

v6.12.6

Fix performance issue of "url" format.

v6.12.5

Fix uri scheme validation (@ChALkeR). Fix boolean schemas with strictKeywords option (#1270)

v6.12.4

Fix: coercion of one-item arrays to scalar that should fail validation (failing example).

v6.12.3

Pass schema object to processCode function Option for strictNumbers (@issacgerges, #1128) Fixed vulnerability related to untrusted schemas (CVE-2020-15366)

v6.12.2

Removed post-install script

v6.12.1

Docs and dependency updates

v6.12.0

Improved hostname validation (@sambauers, #1143) Option keywords to add custom keywords (@franciscomorais, #1137) Types fixes (@boenrobot, @MattiAstedrone) Docs:

error logging example (@RadiationSickness)

TypeScript usage notes (@thetric)

v6.11.0

Time formats support two digit and colon-less variants of timezone offset (#1061 , @cjpillsbury) Docs: RegExp related security considerations Tests: Disabled failing typescript test

v6.10.2

Fix: the unknown keywords were ignored with the option strictKeywords: true (instead of failing compilation) in some sub-schemas (e.g. anyOf), when the sub-schema didn't have known keywords.

v6.10.1

Fix types Fix addSchema (#1001) Update dependencies

v6.10.0

Option strictDefaults to report ignored defaults (#957, @not-an-aardvark) Option strictKeywords to report unknown keywords (#781)

v6.9.0

OpenAPI keyword nullable can be any boolean (and not only true). Custom keyword definition changes:

dependencies option in to require the presence of keywords in the same schema.

... (truncated)

Commits

fe59143 6.12.6
d580d3e Merge pull request #1298 from ajv-validator/fix-url
fd36389 fix: regular expression for "url" format
490e34c docs: link to v7-beta branch
9cd93a1 docs: note about v7 in readme
877d286 Merge pull request #1262 from b4h0-c4t/refactor-opt-object-type
f1c8e45 6.12.5
764035e Merge branch 'ChALkeR-chalker/fix-comma'
3798160 Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...
a3c7eba Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...
Additional commits viewable in compare view

Updates ajv from 6.10.0 to 6.12.6

Release notes

Sourced from ajv's releases.

v6.12.6

Fix performance issue of "url" format.

v6.12.5

Fix uri scheme validation (@ChALkeR). Fix boolean schemas with strictKeywords option (#1270)

v6.12.4

Fix: coercion of one-item arrays to scalar that should fail validation (failing example).

v6.12.3

Pass schema object to processCode function Option for strictNumbers (@issacgerges, #1128) Fixed vulnerability related to untrusted schemas (CVE-2020-15366)

v6.12.2

Removed post-install script

v6.12.1

Docs and dependency updates

v6.12.0

Improved hostname validation (@sambauers, #1143) Option keywords to add custom keywords (@franciscomorais, #1137) Types fixes (@boenrobot, @MattiAstedrone) Docs:

error logging example (@RadiationSickness)

TypeScript usage notes (@thetric)

v6.11.0

Time formats support two digit and colon-less variants of timezone offset (#1061 , @cjpillsbury) Docs: RegExp related security considerations Tests: Disabled failing typescript test

v6.10.2

Fix: the unknown keywords were ignored with the option strictKeywords: true (instead of failing compilation) in some sub-schemas (e.g. anyOf), when the sub-schema didn't have known keywords.

v6.10.1

Fix types Fix addSchema (#1001) Update dependencies

v6.10.0

Option strictDefaults to report ignored defaults (#957, @not-an-aardvark) Option strictKeywords to report unknown keywords (#781)

v6.9.0

OpenAPI keyword nullable can be any boolean (and not only true). Custom keyword definition changes:

dependencies option in to require the presence of keywords in the same schema.

... (truncated)

Commits

fe59143 6.12.6
d580d3e Merge pull request #1298 from ajv-validator/fix-url
fd36389 fix: regular expression for "url" format
490e34c docs: link to v7-beta branch
9cd93a1 docs: note about v7 in readme
877d286 Merge pull request #1262 from b4h0-c4t/refactor-opt-object-type
f1c8e45 6.12.5
764035e Merge branch 'ChALkeR-chalker/fix-comma'
3798160 Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...
a3c7eba Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...
Additional commits viewable in compare view

Updates async from 2.6.1 to 2.6.4

Changelog

Sourced from async's changelog.

v2.6.4

Fix potential prototype pollution exploit (#1828)

v2.6.3

Updated lodash to squelch a security warning (#1675)

v2.6.2

Updated lodash to squelch a security warning (#1620)

Commits

c6bdaca Version 2.6.4
8870da9 Update built files
4df6754 update changelog
8f7f903 Fix prototype pollution vulnerability (#1828)
f1d8383 Version 2.6.3
2b674c1 update changelog
eab740f fix: udpate lodash. closes #1675
eaf32be Version 2.6.2
684b42e Update built files
e1bd3da update changelog
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by hargasinski, a new releaser for async since your current version.

Removes axios

Updates @google-cloud/bigquery from 1.3.0 to 8.0.0

Release notes

Sourced from @google-cloud/bigquery's releases.

v8.0.0

8.0.0 (2025-04-23)

⚠ BREAKING CHANGES

migrate to node 18 (#1458)

Miscellaneous Chores

Migrate to node 18 (#1458) (6cd706b)

v7.9.4

7.9.4 (2025-04-02)

Bug Fixes

MergeSchemaWithRows can be called with empty schema if result set is empty (#1455) (e608601)

v7.9.3

7.9.3 (2025-03-17)

Bug Fixes

Make sure to pass selectedFields to tabledata.list method (#1449) (206aff9)

v7.9.2

7.9.2 (2025-02-12)

Bug Fixes

Avoid schema field mutation when passing selectedFields opt (#1437) (27044d5)

v7.9.1

7.9.1 (2024-09-23)

Bug Fixes

Throw timeout error when using jobs.query (#1402) (cf962a5)

v7.9.0

7.9.0 (2024-08-01)

Features

... (truncated)

Changelog

Sourced from @google-cloud/bigquery's changelog.

8.0.0 (2025-04-23)

⚠ BREAKING CHANGES

migrate to node 18 (#1458)

Miscellaneous Chores

Migrate to node 18 (#1458) (6cd706b)

7.9.4 (2025-04-02)

Bug Fixes

MergeSchemaWithRows can be called with empty schema if result set is empty (#1455) (e608601)

7.9.3 (2025-03-17)

Bug Fixes

Make sure to pass selectedFields to tabledata.list method (#1449) (206aff9)

7.9.2 (2025-02-12)

Bug Fixes

Avoid schema field mutation when passing selectedFields opt (#1437) (27044d5)

7.9.1 (2024-09-23)

Bug Fixes

Throw timeout error when using jobs.query (#1402) (cf962a5)

7.9.0 (2024-08-01)

Features

Add retryOptions passing to underlying Service class (#1390) (a7cd3af)

Clean cached rows and responses after conversion (#1393) (3fd28b8)

Bug Fixes

... (truncated)

Commits

ee597c6 chore(main): release 8.0.0 (#1464)
448f618 Revert "chore(deps): update actions/setup-node action" (#1471)
10aa944 chore(deps): update dependency sinon to v20 (#1453)
0cee8a8 chore(deps): update dependency @octokit/rest to v21 (#1466)
940c255 chore(deps): update actions/setup-node action (#1421)
4d94a10 chore(deps): update actions/checkout action to v4.2.2 (#1467)
6c05777 chore(deps): update googleapis/code-suggester action to v5 (#1443)
6cd706b chore!: migrate to node 18 (#1458)
299c2ff chore(main): release 7.9.4 (#1456)
e608601 fix: mergeSchemaWithRows can be called with empty schema if result set is emp...
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by google-wombot, a new releaser for @google-cloud/bigquery since your current version.

Updates cross-spawn from 6.0.5 to 6.0.6

Changelog

Sourced from cross-spawn's changelog.

6.0.6 (2024-11-18)

Bug Fixes

disable regexp backtracking (#160) (ba5aaef)

core: support worker threads (#127) (f4af31c)

Commits

d35c865 chore(release): 6.0.6
5a37e19 chore: update package.json and package.lock
ba5aaef fix: disable regexp backtracking (#160)
f4af31c fix(core): support worker threads (#127)
See full diff in compare view

Updates eslint-utils from 1.3.1 to 1.4.3

Release notes

Sourced from eslint-utils's releases.

v1.4.3

🐛 Bug fixes

8f9e481ecc1204c7a1331b697f97903f90c75154 fixed false positive of ReferenceTracker.

v1.4.2

🐛 Bug fixes

e4cb01498df6096b66edb0c78965ee6f47d3ac77 fixed a regression of the previous release.

v1.4.1

🐛 Bug fixes

c119e832952c8c653bd4f21e39eb9f7ce48e5947 fixed getStaticValue() function to handle null literal correctly even if runtimes don't support BigInt natively.

587cca2f82c245f5fc4a8b9fb2cf6b35c0d02552 fixed getStringIfConstant() function to handle regular expression literals and BigInt literals even if runtimes don't support those.

08158db1c98fd71cf0f32ddefbc147e2620e724c fixed GHSA-3gx7-xhv7-5mx3.

v1.4.0

✨ Enhancements

66456c5356310fc4309b4fe2756995f27b907747 (and ebf5a8378d3f0a20a74adb158a7112cb616bce44, aac472e815551688d23cc8fd88f9044dbf276804) added isParenthesized() function that checks if a given node is parenthesized or not.

4f8407dd6cd52274ba115b3a8558153ec6d799a7 (and cb518c70ee037722f802d808bbbe93da83f07fb3) added hasSideEffect() function that checks if a given node may have side-effects or not.

Commits

23f4ddc 🔖 1.4.3
8f9e481 🐛 fix reference tracker false positive
6633278 ⚒ fix test scripts
7c8e67c ⚒ fix build scripts
41ff95e ⚒ update dependencies
4942012 ⚒ fix build scripts
f1c8d02 ⚒ update build scripts
a88598a Create FUNDING.yml
4e1bc07 1.4.2
e4cb014 🐛 add null test
Additional commits viewable in compare view

Updates https-proxy-agent from 2.2.1 to 5.0.1

Changelog

Sourced from https-proxy-agent's changelog.

https-proxy-agent

7.0.6

Patch Changes

913a49a: Only overwrite servername in tls connect when host is not an IP address

Updated dependencies [1699a09]

[email protected]

7.0.5

Patch Changes

5908e84: Remove net.isIP() check for TLS servername

7.0.4

Patch Changes

b88ab46: Import url instead of node:url 🤷‍♂️

7.0.3

Patch Changes

c3c405e: Add missing URL type import

7.0.2

Patch Changes

e625d10: Support SNI for proxy servers

7.0.1

Patch Changes

23fe1e3: Correct the header parsing logic to stop before the response content to avoid generating an exception.

7.0.0

Major Changes

b3860aa: Remove secureProxy getter

It was not meant to be a public property. If you were using it, just use agent.proxy.protocol === 'https:' instead.

6.2.1

... (truncated)

Commits

See full diff in compare view

Updates minimist from 0.0.8 to 1.2.8

Changelog

Sourced from minimist's changelog.

v1.2.8 - 2023-02-09

Merged

[Fix] Fix long option followed by single dash [#17](https://github.com/minimistjs/minimist/issues/17)

[Tests] Remove duplicate test [#12](https://github.com/minimistjs/minimist/issues/12)

[Fix] opt.string works with multiple aliases [#10](https://github.com/minimistjs/minimist/issues/10)

Fixed

[Fix] Fix long option followed by single dash (#17) [#15](https://github.com/minimistjs/minimist/issues/15)

[Tests] Remove duplicate test (#12) [#8](https://github.com/minimistjs/minimist/issues/8)

[Fix] Fix long option followed by single dash [#15](https://github.com/minimistjs/minimist/issues/15)

[Fix] opt.string works with multiple aliases (#10) [#9](https://github.com/minimistjs/minimist/issues/9)

[Fix] Fix handling of short option with non-trivial equals [#5](https://github.com/minimistjs/minimist/issues/5)

[Tests] Remove duplicate test [#8](https://github.com/minimistjs/minimist/issues/8)

[Fix] opt.string works with multiple aliases [#9](https://github.com/minimistjs/minimist/issues/9)

Commits

Merge tag 'v0.2.3' a026794

[eslint] fix indentation and whitespace 5368ca4

[eslint] fix indentation and whitespace e5f5067

[eslint] more cleanup 62fde7d

[eslint] more cleanup 36ac5d0

[meta] add auto-changelog 73923d2

[actions] add reusable workflows d80727d

[eslint] add eslint; rules to enable later are warnings 48bc06a

[eslint] fix indentation 34b0f1c

[readme] rename and add badges 5df0fe4

[Dev Deps] switch from covert to nyc a48b128

[Dev Deps] update covert, tape; remove unnecessary tap f0fb958

[meta] create FUNDING.yml; add funding in package.json 3639e0c

[meta] use npmignore to autogenerate an npmignore file be2e038

Only apps should have lockfiles 282b570

isConstructorOrProto adapted from PR ef9153f

[Dev Deps] update @ljharb/eslint-config, aud 098873c

[Dev Deps] update @ljharb/eslint-config, aud 3124ed3

[meta] add safe-publish-latest 4b927de

[Tests] add aud in posttest b32d9bd

[meta] update repo URLs f9fdfc0

[actions] Avoid 0.6 tests due to build failures ba92fe6

[Dev Deps] update tape 950eaa7

[Dev Deps] add missing npmignore dev dep 3226afa

Merge tag 'v0.2.2' 980d7ac

v1.2.7 - 2022-10-10

Commits

... (truncated)

Commits

6901ee2 v1.2.8
a026794 Merge tag 'v0.2.3'
c0b2661 v0.2.3
63b8fee [Fix] Fix long option followed by single dash (#17)
72239e6 [Tests] Remove duplicate test (#12)
34b0f1c [eslint] fix indentation
3226afa [Dev Deps] add missing npmignore dev dep
098873c [Dev Deps] update @ljharb/eslint-config, aud
9ec4d27 [Fix] Fix long option followed by single dash
ba92fe6 [actions] Avoid 0.6 tests due to build failures
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ljharb, a new releaser for minimist since your current version.

Updates mkdirp from 0.5.1 to 0.5.6

Commits

92f086d 0.5.6
2a28125 clean up tests
c905d65 update minimist
049cf18 0.5.5
bea6382 Remove unnecessary umask calls
42a012c 0.5.4
2867920 fix infinite loop on windows machines
d784e70 0.5.3
d612c5d add files list so this package isn't a monster
b2e7ba0 0.5.2
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for mkdirp since your current version.

Updates mocha from 5.2.0 to 11.5.0

Release notes

Sourced from mocha's releases.

v11.5.0

11.5.0 (2025-05-22)

🌟 Features

bump mimimatch from ^5.1.6 to ^9.0.5 (#5349) (a3dea85)

v11.4.0

11.4.0 (2025-05-19)

🌟 Features

bump diff from ^5.2.0 to ^7.0.0 (#5348) (554d6bb)

📚 Documentation

added CHANGELOG.md note around 11.1 yargs-parser update (#5362) (618415d)

v11.3.0

11.3.0 (2025-05-16)

🌟 Features

add option to use posix exit code upon fatal signal (#4989) (91bbf85)

📚 Documentation

Deploy new site alongside old one (#5360) (6c96545)

mention explicit browser support range (#5354) (c514c0b)

update Node.js version requirements for 11.x (#5329) (abf3dd9)

🧹 Chores

remove prerelease setting in release-please config (#5363) (8878f22)

v11.2.2

11.2.2 (2025-04-10)

🩹 Fixes

deps: update chokidar to v4 (#5256) (8af0f1a)

... (truncated)

Changelog

Sourced from mocha's changelog.

11.5.0 (2025-05-22)

🌟 Features

bump mimimatch from ^5.1.6 to ^9.0.5 (#5349) (a3dea85)

11.4.0 (2025-05-19)

🌟 Features

bump diff from ^5.2.0 to ^7.0.0 (#5348) (554d6bb)

📚 Documentation

added CHANGELOG.md note around 11.1 yargs-parser update (#5362) (618415d)

11.3.0 (2025-05-16)

🌟 Features

add option to use posix exit code upon fatal signal (#4989) (91bbf85)

📚 Documentation

Deploy new site alongside old one (#5360) (6c96545)

mention explicit browser support range (#5354) (c514c0b)

update Node.js version requirements for 11.x (#5329) (abf3dd9)

🧹 Chores

remove prerelease setting in release-please config (#5363) (8878f22)

11.2.2 (2025-04-10)

🩹 Fixes

deps: update chokidar to v4 (#5256) (8af0f1a)

📚 Documentation

add ClientRedirects.astro (#5324) (b88d441)

add example/tests.html to docs-next (#5325) (6ec5762)

... (truncated)

Commits

a7ed005 chore(main): release 11.5.0 (#5370)
a3dea85 feat: bump mimimatch from ^5.1.6 to ^9.0.5 (#5349)
5730dfc chore(main): release 11.4.0 (#5368)
618415d docs: added CHANGELOG.md note around 11.1 yargs-parser update (#5362)
554d6bb fix: bump diff from ^5.2.0 to ^7.0.0 (#5348)
fffe569 chore(main): release 11.3.0 (#5338)
91bbf85 feat: add option to use posix exit code upon fatal signal (#4989)
6c96545 docs: Deploy new site alongside old one (#5360)
8878f22 chore: remove prerelease setting in release-please config (#5363)
c514c0b docs: mention explicit browser support range (#5354)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by voxpelli, a new releaser for mocha since your current version.

Updates node-fetch from 2.3.0 to 3.3.2

Release notes

Sourced from node-fetch's releases.

v3.3.2

3.3.2 (2023-07-25)

Bug Fixes

Remove the default connection close header. (#1736) (8b3320d), closes #1735 #1473

v3.3.1

3.3.1 (2023-03-11)

Bug Fixes

release "Allow URL class object as an argument for fetch()" #1696 (#1716) (7b86e94)

v3.3.0

3.3.0 (2022-11-10)

Features

add static Response.json (#1670) (55a4870)

v3.2.10

3.2.10 (2022-07-31)

Bug Fixes

ReDoS referrer (#1611) (2880238)

v3.2.9

3.2.9 (2022-07-18)

Bug Fixes

Headers: don't forward secure headers on protocol change (#1599) (e87b093)

v3.2.8

3.2.8 (2022-07-12)

Bug Fixes

possibly flaky test (#1523) (11b7033)

... (truncated)

Commits

8b3320d fix: Remove the default connection close header. (#1736)
7b86e94 fix: release "Allow URL class object as an argument for fetch()" #1696 (#1716)
8ced5b9 docs: readme - non ESM example (#1707)
71e376b ci(release): use latest Node LTS (#1697)
e093030 Allow URL class object as an argument for fetch() (#1696)
55a4870 feat: add static Response.json (#1670)
c071406 (1138) - Fixed HTTPResponseError with correct constructor and usage (#1666)
6f72caa docs: fix missing comma in example (#1623)
2880238 fix: ReDoS referrer (#1611)
e87b093 fix(Headers): don't forward secure headers on protocol change (#1599)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by node-fetch-bot, a new releaser for node-fetch since your current version.

Updates semver from 5.6.0 to 5.7.2

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

2f8fd41 #585 better handling of whitespace (#585) (@joaomoreno, @lukekarrys)

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

2f8fd41 #585 better handling of whitespace (#585) (@joaomoreno, @lukekarrys)

5.7

Add minVersion method

5.6

Move boolean loose param to an options object, with backwards-compatibility protection.

Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

Add version coercion capabilities

5.4

Add intersection checking

5.3

Add minSatisfying method

5.2

Add prerelease(v) that returns prerelease components

5.1

Add Backus-Naur for ranges

Remove excessively cute inspection methods

5.0

Remove AMD/Browserified build artifacts

Fix ltr and gtr when using the * range

Fix for range * with a prerelease identifier

Commits

f8cc313 chore: release 5.7.2
2f8fd41 fix: better handling of whitespace (#585)
deb5ad5 chore: @npmcli/template-oss@4.16.0
c83c18c 5.7.1
956e228 Correct typo in README
8055dda 5.7.0
604e73d auto-publishing scripts
bed01e2 remove the nomin comments, since we don't minify any more anyway
9cb68f1 document parse method
38d42ca 5.7 changelog
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates y18n from 4.0.0 to 4.0.3

Changelog

Sourced from y18n's changelog.

4.0.3 (2021-04-07)

Bug Fixes

release: 4.x.x should not enforce Node 10 (#126) (1e21a53)

4.0.1 (2020-11-30)

Bug Fixes

address prototype pollution issue (#108) (a9ac604)

Commits

Description has been truncated

Bumps the npm_and_yarn group with 14 updates in the / directory: | Package | From | To | | --- | --- | --- | | [lodash](https://github.com/lodash/lodash) | `4.17.13` | `4.17.21` | | [ajv](https://github.com/ajv-validator/ajv) | `6.7.0` | `6.12.6` | | [ajv](https://github.com/ajv-validator/ajv) | `6.10.0` | `6.12.6` | | [async](https://github.com/caolan/async) | `2.6.1` | `2.6.4` | | [axios](https://github.com/axios/axios) | `0.18.1` | `removed` | | [@google-cloud/bigquery](https://github.com/googleapis/nodejs-bigquery) | `1.3.0` | `8.0.0` | | [cross-spawn](https://github.com/moxystudio/node-cross-spawn) | `6.0.5` | `6.0.6` | | [eslint-utils](https://github.com/mysticatea/eslint-utils) | `1.3.1` | `1.4.3` | | [minimist](https://github.com/minimistjs/minimist) | `0.0.8` | `1.2.8` | | [mkdirp](https://github.com/isaacs/node-mkdirp) | `0.5.1` | `0.5.6` | | [mocha](https://github.com/mochajs/mocha) | `5.2.0` | `11.5.0` | | [semver](https://github.com/npm/node-semver) | `5.6.0` | `5.7.2` | | [y18n](https://github.com/yargs/y18n) | `4.0.0` | `4.0.3` | | [yargs-parser](https://github.com/yargs/yargs-parser) | `11.1.1` | `22.0.0` | | [yargs](https://github.com/yargs/yargs) | `12.0.5` | `18.0.0` | Updates `lodash` from 4.17.13 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.13...4.17.21) Updates `ajv` from 6.7.0 to 6.12.6 - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](ajv-validator/ajv@v6.7.0...v6.12.6) Updates `ajv` from 6.10.0 to 6.12.6 - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](ajv-validator/ajv@v6.7.0...v6.12.6) Updates `async` from 2.6.1 to 2.6.4 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md) - [Commits](caolan/async@v2.6.1...v2.6.4) Removes `axios` Updates `@google-cloud/bigquery` from 1.3.0 to 8.0.0 - [Release notes](https://github.com/googleapis/nodejs-bigquery/releases) - [Changelog](https://github.com/googleapis/nodejs-bigquery/blob/main/CHANGELOG.md) - [Commits](googleapis/nodejs-bigquery@v1.3.0...v8.0.0) Updates `cross-spawn` from 6.0.5 to 6.0.6 - [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/v6.0.6/CHANGELOG.md) - [Commits](moxystudio/node-cross-spawn@v6.0.5...v6.0.6) Updates `eslint-utils` from 1.3.1 to 1.4.3 - [Release notes](https://github.com/mysticatea/eslint-utils/releases) - [Commits](mysticatea/eslint-utils@v1.3.1...v1.4.3) Updates `https-proxy-agent` from 2.2.1 to 5.0.1 - [Release notes](https://github.com/TooTallNate/proxy-agents/releases) - [Changelog](https://github.com/TooTallNate/proxy-agents/blob/main/packages/https-proxy-agent/CHANGELOG.md) - [Commits](https://github.com/TooTallNate/proxy-agents/commits/5.0.1/packages/https-proxy-agent) Updates `minimist` from 0.0.8 to 1.2.8 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v0.0.8...v1.2.8) Updates `mkdirp` from 0.5.1 to 0.5.6 - [Changelog](https://github.com/isaacs/node-mkdirp/blob/main/CHANGELOG.md) - [Commits](isaacs/node-mkdirp@0.5.1...v0.5.6) Updates `mocha` from 5.2.0 to 11.5.0 - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/main/CHANGELOG.md) - [Commits](mochajs/mocha@v5.2.0...v11.5.0) Updates `node-fetch` from 2.3.0 to 3.3.2 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@v2.3.0...v3.3.2) Updates `semver` from 5.6.0 to 5.7.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](npm/node-semver@v5.6.0...v5.7.2) Updates `y18n` from 4.0.0 to 4.0.3 - [Release notes](https://github.com/yargs/y18n/releases) - [Changelog](https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md) - [Commits](yargs/y18n@v4.0.0...y18n-v4.0.3) Updates `yargs-parser` from 11.1.1 to 22.0.0 - [Release notes](https://github.com/yargs/yargs-parser/releases) - [Changelog](https://github.com/yargs/yargs-parser/blob/main/CHANGELOG.md) - [Commits](yargs/yargs-parser@v11.1.1...yargs-parser-v22.0.0) Updates `yargs` from 12.0.5 to 18.0.0 - [Release notes](https://github.com/yargs/yargs/releases) - [Changelog](https://github.com/yargs/yargs/blob/main/CHANGELOG.md) - [Commits](yargs/yargs@v12.0.5...v18.0.0) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.17.21 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: ajv dependency-version: 6.12.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ajv dependency-version: 6.12.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: async dependency-version: 2.6.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: axios dependency-version: dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@google-cloud/bigquery" dependency-version: 8.0.0 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: cross-spawn dependency-version: 6.0.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: eslint-utils dependency-version: 1.4.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: https-proxy-agent dependency-version: 5.0.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-version: 1.2.8 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mkdirp dependency-version: 0.5.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mocha dependency-version: 11.5.0 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-version: 3.3.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: semver dependency-version: 5.7.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: y18n dependency-version: 4.0.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: yargs-parser dependency-version: 22.0.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: yargs dependency-version: 18.0.0 dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 28, 2025

dependabot bot mentioned this pull request May 28, 2025

Bump node-fetch from 2.3.0 to 2.7.0 #4

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the npm_and_yarn group across 1 directory with 16 updates #5

Bump the npm_and_yarn group across 1 directory with 16 updates #5

Uh oh!

dependabot bot commented on behalf of github May 28, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Bump the npm_and_yarn group across 1 directory with 16 updates #5

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directory with 16 updates #5

Uh oh!

Conversation

dependabot bot commented on behalf of github May 28, 2025

v6.12.6

v6.12.5

v6.12.4

v6.12.3

v6.12.2

v6.12.1

v6.12.0

v6.11.0

v6.10.2

v6.10.1

v6.10.0

v6.9.0

v6.12.6

v6.12.5

v6.12.4

v6.12.3

v6.12.2

v6.12.1

v6.12.0

v6.11.0

v6.10.2

v6.10.1

v6.10.0

v6.9.0

v2.6.4

v2.6.3

v2.6.2

v8.0.0

8.0.0 (2025-04-23)

⚠ BREAKING CHANGES

Miscellaneous Chores

v7.9.4

7.9.4 (2025-04-02)

Bug Fixes

v7.9.3

7.9.3 (2025-03-17)

Bug Fixes

v7.9.2

7.9.2 (2025-02-12)

Bug Fixes

v7.9.1

7.9.1 (2024-09-23)

Bug Fixes

v7.9.0

7.9.0 (2024-08-01)

Features

8.0.0 (2025-04-23)

⚠ BREAKING CHANGES

Miscellaneous Chores

7.9.4 (2025-04-02)

Bug Fixes

7.9.3 (2025-03-17)

Bug Fixes

7.9.2 (2025-02-12)

Bug Fixes

7.9.1 (2024-09-23)

Bug Fixes

7.9.0 (2024-08-01)

Features

Bug Fixes

6.0.6 (2024-11-18)

Bug Fixes

v1.4.3

🐛 Bug fixes

v1.4.2

🐛 Bug fixes

v1.4.1

🐛 Bug fixes

v1.4.0

✨ Enhancements

https-proxy-agent

7.0.6

Patch Changes

7.0.5