Skip to content

chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.2.1#34

Open
renovate[bot] wants to merge 1 commit intomainfrom
renovate/cyclonedx-cyclonedx-npm-4.x
Open

chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.2.1#34
renovate[bot] wants to merge 1 commit intomainfrom
renovate/cyclonedx-cyclonedx-npm-4.x

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate bot commented Dec 8, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change OpenSSF
@cyclonedx/cyclonedx-npm devDependencies minor 4.0.34.2.1 OpenSSF Scorecard

Release Notes

CycloneDX/cyclonedx-node-npm (@​cyclonedx/cyclonedx-npm)

v4.2.1

Compare Source

  • Fixed

v4.2.0

Compare Source

  • Fixed
  • Changed
    • Take care of PackageURL generation ourselves, now (via #​1416)
      Previously, this was done at best-effort by a 3rd-party library.
  • Dependencies
    • Bumped dependency @cyclonedx/cyclonedx-library@^10.0.0 now, was @^8.4.0||^9.0.0 (via #​1416)
    • Added dependency packageurl-js@^2.0.1 (via #​1416)
    • Added dependency spdx-expression-parse@^3.0.1||^4.0.0 (via #​1416)

v4.1.2

Compare Source

  • Runtime Dependencies
    • Support runtime-dependency xmlbuilder2@​^3.0.2||^4.0.3, was @^3.0.2 (#​1392 via #​1390)
  • Style
    • Applied latest code standards (via #​1388)

v4.1.1

Compare Source

  • Fixed
    • Create output dir properly if needed (via #​1377)

v4.1.0

Compare Source

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@coderabbitai
Copy link
Copy Markdown

coderabbitai bot commented Dec 8, 2025
edited
Loading

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

  • 🔍 Trigger a full review

Comment @coderabbitai help to get the list of available commands and usage tips.

@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 3 times, most recently from 15c8ad6 to c8caf51 Compare December 8, 2025 16:01
@renovate renovate bot changed the title chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.1.1 chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.1.2 Dec 8, 2025
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 12 times, most recently from d8d9d34 to bb401dc Compare December 15, 2025 03:43
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 4 times, most recently from 395a3b0 to 5ce4090 Compare December 22, 2025 15:30
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 2 times, most recently from 0f6d192 to 862f9e1 Compare January 5, 2026 07:29
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 2 times, most recently from 90b210d to 43b92ca Compare January 19, 2026 03:28
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 2 times, most recently from 4a4b445 to 0a53f13 Compare February 2, 2026 11:24
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 3 times, most recently from 336f3b8 to a81b5d5 Compare February 9, 2026 11:47
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 3 times, most recently from ad43a86 to 8e633ce Compare February 23, 2026 06:09
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch from 8e633ce to b6bc18c Compare February 23, 2026 11:00
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 5 times, most recently from 8387dd6 to c827df7 Compare March 6, 2026 15:02
@renovate renovate bot changed the title chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.1.2 chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.2.0 Mar 6, 2026
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 2 times, most recently from 397e1ef to cc8eb10 Compare March 12, 2026 10:49
@renovate renovate bot changed the title chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.2.0 chore(deps): update dependency @cyclonedx/cyclonedx-npm to v4.2.1 Mar 12, 2026
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 2 times, most recently from 1dfa912 to bbd9418 Compare March 16, 2026 10:58
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch 2 times, most recently from ebd8a8b to fed9dfa Compare March 30, 2026 02:17
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch from fed9dfa to 769afe0 Compare March 30, 2026 06:35
@renovate renovate bot force-pushed the renovate/cyclonedx-cyclonedx-npm-4.x branch from 769afe0 to 31df6a3 Compare March 30, 2026 10:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Template: Frontend Template: Webcomponent Type: Dependency

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants