Skip to content

build(deps): bump the dependencies group across 1 directory with 19 updates #3300

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

build(deps): bump the dependencies group across 1 directory with 19 updates #3300

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 15, 2025
edited
Loading

Bumps the dependencies group with 19 updates in the / directory:

Package From To
@eslint/js 9.39.1 9.39.2
@types/node 24.10.1 25.0.2
eslint-plugin-jest 29.2.1 29.5.0
lerna 9.0.1 9.0.3
ts-jest 29.4.5 29.4.6
typescript-eslint 8.47.0 8.49.0
node-forge 1.3.1 1.3.3
@aws-sdk/client-route-53 3.936.0 3.948.0
body-parser 2.2.0 2.2.1
express 5.1.0 5.2.1
@types/express 5.0.1 5.0.6
@electron/rebuild 4.0.1 4.0.2
ipaddr.js 2.2.0 2.3.0
lru-cache 11.2.2 11.2.4
zod 4.1.13 4.2.0
nightwatch 3.12.3 3.13.0
terser-webpack-plugin 5.3.14 5.3.16
webpack-bundle-analyzer 5.0.1 5.1.0
pino-pretty 13.1.2 13.1.3

Updates @eslint/js from 9.39.1 to 9.39.2

Release notes

Sourced from @​eslint/js's releases.

v9.39.2

Bug Fixes

  • 5705833 fix: warn when eslint-env configuration comments are found (#20381) (sethamus)

Build Related

  • 506f154 build: add .scss files entry to knip (#20391) (Milos Djermanovic)

Chores

Commits

Updates @types/node from 24.10.1 to 25.0.2

Commits

Updates eslint-plugin-jest from 29.2.1 to 29.5.0

Release notes

Sourced from eslint-plugin-jest's releases.

v29.5.0

29.5.0 (2025-12-14)

Features

  • create new no-unneeded-async-expect-function rule (#1863) (6b8182d)

v29.4.1

29.4.1 (2025-12-14)

Bug Fixes

  • prefer-to-have-been-called-times: actually check that current matcher is toHaveLength (#1878) (3415744)

v29.4.0

29.4.0 (2025-12-13)

Features

  • create new prefer-to-have-been-called-times rule (281085a)
  • create new prefer-to-have-been-called rule (24e2acd)

v29.3.0

29.3.0 (2025-12-13)

Features

  • prefer-expect-assertions: support basic uses of hasAssertions in beforeEach and afterEach hooks (#1871) (eed9acb)

v29.2.3

29.2.3 (2025-12-13)

Bug Fixes

  • prefer-expect-assertions: use correct word in error message (#1873) (c48c48c)

v29.2.2

29.2.2 (2025-12-12)

Bug Fixes

Changelog

Sourced from eslint-plugin-jest's changelog.

29.5.0 (2025-12-14)

Features

  • create new no-unneeded-async-expect-function rule (#1863) (6b8182d)

29.4.1 (2025-12-14)

Bug Fixes

  • prefer-to-have-been-called-times: actually check that current matcher is toHaveLength (#1878) (3415744)

29.4.0 (2025-12-13)

Features

  • create new prefer-to-have-been-called-times rule (281085a)
  • create new prefer-to-have-been-called rule (24e2acd)

29.3.0 (2025-12-13)

Features

  • prefer-expect-assertions: support basic uses of hasAssertions in beforeEach and afterEach hooks (#1871) (eed9acb)

29.2.3 (2025-12-13)

Bug Fixes

  • prefer-expect-assertions: use correct word in error message (#1873) (c48c48c)

29.2.2 (2025-12-12)

Bug Fixes

Commits
  • 4297d50 chore(release): 29.5.0 [skip ci]
  • 6b8182d feat: create new no-unneeded-async-expect-function rule (#1863)
  • 48e78fc chore(release): 29.4.1 [skip ci]
  • 3415744 fix(prefer-to-have-been-called-times): actually check that current matcher is...
  • 45b4b11 test: always alias FlatCompatRuleTester as RuleTester (#1876)
  • 4a900e3 chore(release): 29.4.0 [skip ci]
  • 24e2acd feat: create new prefer-to-have-been-called rule
  • 281085a feat: create new prefer-to-have-been-called-times rule
  • 2646599 docs(prefer-called-with): remove references to toBeCalled matcher (#1874)
  • a12bc33 chore(release): 29.3.0 [skip ci]
  • Additional commits viewable in compare view

Updates lerna from 9.0.1 to 9.0.3

Release notes

Sourced from lerna's releases.

v9.0.3

9.0.3 (2025-11-27)

Bumped some dependencies to reduce audit warning noise.

NOTE: 9.0.2 does not exist because of a failed release

Changelog

Sourced from lerna's changelog.

9.0.3 (2025-11-27)

Note: Version bump only for package lerna

9.0.2 (2025-11-27)

Note: Version bump only for package lerna

Commits

Updates ts-jest from 29.4.5 to 29.4.6

Release notes

Sourced from ts-jest's releases.

v29.4.6

Please refer to CHANGELOG.md for details.

Changelog

Sourced from ts-jest's changelog.

29.4.6 (2025-12-01)

Bug Fixes

  • log hybrid module as warning instead of failing tests (#5144) (528d37c), closes #5130
Commits
  • 202bde5 chore(release): 29.4.6 (#5146)
  • 528d37c fix: log hybrid module as warning instead of failing tests (#5144)
  • 141e5af build(deps): update github/codeql-action digest to 497990d
  • d281cce build(deps): update google/osv-scanner-action action to v2.3.0
  • 0d20322 build(deps): update dependency memfs to ^4.51.0
  • 455dde2 build(deps): update dependency js-yaml to ^4.1.1
  • d579480 build(deps): update dependency @​types/node to v20.19.25
  • f6859d0 build(deps): update dependency @​types/yargs to ^17.0.35
  • 4d7e432 build(deps): update github/codeql-action digest to d3ced5c
  • 4ea70c9 build(deps): update actions/checkout digest to 34e1148
  • Additional commits viewable in compare view

Updates typescript-eslint from 8.47.0 to 8.49.0

Release notes

Sourced from typescript-eslint's releases.

v8.49.0

8.49.0 (2025-12-08)

🚀 Features

  • eslint-plugin: use Intl.Segmenter instead of graphemer (#11804)

🩹 Fixes

  • deps: update dependency prettier to v3.7.2 (#11820)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.48.1

8.48.1 (2025-12-02)

⏪ Reverts

  • eslint-plugin: revert "[no-redundant-type-constituents] use assignability checking for redundancy checks (#10744)" (#11812)

🩹 Fixes

  • eslint-plugin: [consistent-type-exports] check value flag before resolving alias (#11769)
  • eslint-plugin: honor ignored base types on generic classes (#11767)
  • eslint-plugin: [restrict-template-expressions] check base types in allow list (#11764, #11759)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.48.0

8.48.0 (2025-11-24)

🚀 Features

  • eslint-plugin: [no-redundant-type-constituents] use assignability checking for redundancy checks (#10744)
  • rule-tester: remove workaround for jest circular structure error (#11772)
  • typescript-estree: gate all errors behind allowInvalidAST (#11693)
  • typescript-estree: replace fast-glob with tinyglobby (#11740)

... (truncated)

Changelog

Sourced from typescript-eslint's changelog.

8.49.0 (2025-12-08)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.48.1 (2025-12-02)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.48.0 (2025-11-24)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

Updates node-forge from 1.3.1 to 1.3.3

Changelog

Sourced from node-forge's changelog.

1.3.3 - 2025-12-02

Fixed

  • [pkcs12] Make digestAlgorithm parameters optional to fix PKCS#12/PFX issues introduced in 1.3.2.

1.3.2 - 2025-11-25

Security

  • HIGH: ASN.1 Validator Desynchronization
    • An Interpretation Conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions.
    • Reported by Hunter Wodzenski.
    • CVE ID: CVE-2025-12816
    • GHSA ID: GHSA-5gfm-wpxj-wjgq
  • HIGH: ASN.1 Unbounded Recursion
    • An Uncontrolled Recursion (CWE-674) vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs.
    • Reported by Hunter Wodzenski.
    • CVE ID: CVE-2025-66031
    • GHSA ID: GHSA-554w-wpv2-vw27
  • MODERATE: ASN.1 OID Integer Truncation
    • An Integer Overflow (CWE-190) vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions.
    • Reported by Hunter Wodzenski.
    • CVE ID: CVE-2025-66030
    • GHSA ID: GHSA-65ch-62r8-g69g

Fixed

  • [asn1] Fix for vulnerability identified by CVE-2025-12816 PKCS#12 MAC verification bypass due to missing macData enforcement and improper asn1.validate routine.
  • [asn1] Add fromDer() max recursion depth check.
    • Add a asn1.maxDepth global configurable maximum depth of 256.
    • Add a asn1.fromDer() per-call maxDepth option.
    • NOTE: The default maximum is assumed to be higher than needed for valid data. If this assumption is false then this could be a breaking change. Please file an issue if there are use cases that need a higher maximum.
    • NOTE: The per-call maxDepth parameter has not been exposed up through all of the API stack due to the complexities involved. Please file an issue if there are use cases that require this instead of changing the default

... (truncated)

Commits

Updates @aws-sdk/client-route-53 from 3.936.0 to 3.948.0

Release notes

Sourced from @​aws-sdk/client-route-53's releases.

v3.948.0

3.948.0(2025-12-09)

Chores
  • middleware-recursion-detection: upgrade lambda-invoke-store dependency (#7559) (dbc65195)
New Features
  • clients: update client endpoints as of 2025-12-09 (012e1f9a)
  • client-mgn: Added parameters encryption, IPv4/IPv6 protocol configuration, and enhanced tagging support for replication operations. (a0a347c6)
  • client-guardduty: Adding support for Ec2LaunchTemplate Version field (4903763d)
  • client-appsync: Update Event API to require EventConfig parameter in creation and update requests. (6298ec44)
  • client-route-53: Amazon Route 53 now supports the EU (Germany) Region (eusc-de-east-1) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region (c21e90bc)
  • client-account: This release adds a new API (GetGovCloudAccountInformation) used to retrieve information about a linked GovCloud account from the standard AWS partition. (ae9e6fce)
  • client-ivs-realtime: Token Exchange introduces seamless token exchange capabilities for IVS RTX, enabling customers to upgrade or downgrade token capabilities and update token attributes within the IVS client SDK without forcing clients to disconnect and reconnect. (db225910)

For list of updated packages, view updated-packages.md in assets-3.948.0.zip

v3.947.0

3.947.0(2025-12-08)

Chores
  • codegen: service closure knowledge index (#7554) (731dbfef)
  • core/client: emit warning for Node.js 18.x end-of-support (#7540) (fee7ba1d)
Documentation Changes
  • add support policy section for Node.js/ECMAScript versions (#7556) (bf1f6e0b)
New Features
  • clients: update client endpoints as of 2025-12-08 (7e0d61b2)
  • client-cost-explorer: Add support for Cost Category resource associations including filtering by resource type on ListCostCategoryDefinitions and new ListCostCategoryResourceAssociations API. (011b4f65)
  • client-sesv2: Update Mail Manager Archive ARN validation (18c203b2)
  • client-redshift-serverless: Added GetIdentityCenterAuthToken API to retrieve encrypted authentication tokens for Identity Center integrated serverless workgroups. This API enables programmatic access to secure Identity Center tokens with proper error handling and parameter validation across supported SDK languages. (c3d27769)
  • client-identitystore: Updating AWS Identity Store APIs to support Attribute Extensions capability, with the first release adding Enterprise Attributes. This launch aligns Identity Store APIs with SCIM for enterprise attributes, reducing cases when customers are forced to use SCIM due to lack of SigV4 API support. (14887fde)
  • client-rds: Adding support for tagging RDS Instance/Cluster Automated Backups (41b9a139)
  • client-partnercentral-selling: Deal Sizing Service for AI-based deal size estimation with AWS service-level breakdown, supporting Expansion and Migration deals across Technology, and Reseller partner cohorts, including Pricing Calculator AddOn for MAP deals and funding incentives. (867598e2)
  • client-rolesanywhere: Increases certificate string length for trust anchor source data to support ML-DSA certificates. (481b863e)
  • client-ec2: Amazon EC2 P6-B300 instances provide 8x NVIDIA Blackwell Ultra GPUs with 2.1 TB high bandwidth GPU memory, 6.4 Tbps EFA networking, 300 Gbps dedicated ENA throughput, and 4 TB of system memory. Amazon EC2 C8a instances are powered by 5th Gen AMD EPYC processors with a maximum frequency of 4.5 GHz. (229ff011)
Tests
  • core/protocols: add test and additional condition for xml declaration (#7552) (c83c986a)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-route-53's changelog.

3.948.0 (2025-12-09)

Features

  • client-route-53: Amazon Route 53 now supports the EU (Germany) Region (eusc-de-east-1) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region (c21e90b)

3.947.0 (2025-12-08)

Note: Version bump only for package @​aws-sdk/client-route-53

3.946.0 (2025-12-05)

Note: Version bump only for package @​aws-sdk/client-route-53

3.943.0 (2025-12-02)

Note: Version bump only for package @​aws-sdk/client-route-53

3.940.0 (2025-11-25)

Features

  • client-route-53: Adds support for new route53 feature: accelerated recovery. (dbe0a58)

3.939.0 (2025-11-24)

Note: Version bump only for package @​aws-sdk/client-route-53

Commits
  • c6e71bf Publish v3.948.0
  • c21e90b feat(client-route-53): Amazon Route 53 now supports the EU (Germany) Region (...
  • 656bd00 Publish v3.947.0
  • 731dbfe chore(codegen): service closure knowledge index (#7554)
  • 309a20f Publish v3.946.0
  • da6eee7 chore(codegen): sync for typescript formatting (#7546)
  • eb4e29b chore(codegen): type imports and index tests (#7545)
  • 6900953 Publish v3.943.0
  • e9962f1 Publish v3.940.0
  • dbe0a58 feat(client-route-53): Adds support for new route53 feature: accelerated reco...
  • Additional commits viewable in compare view

Updates body-parser from 2.2.0 to 2.2.1

Release notes

Sourced from body-parser's releases.

v2.2.1

Important: Security

What's Changed

... (truncated)

Changelog

Sourced from body-parser's changelog.

2.2.1 / 2025-11-24

  • Security fix for GHSA-wqch-xfxh-vrr4
  • deps:
    • type-is@^2.0.1
    • iconv-lite@^0.7.0
      • Handle split surrogate pairs when encoding UTF-8
      • Avoid false positives in encodingExists by using prototype-less objects
    • raw-body@^3.0.1
    • debug@^4.4.3
Commits
  • d96b63d 2.2.1 (#659)
  • b204886 sec: security patch for CVE-2025-13466
  • e20e351 feat: remove history.md from being packaged on publish (#660)
  • 0d7ce71 docs: switch badges from badgen.net to shields.io (#661)
  • 168afff ci: also test on first supported node.js version (#646)
  • e539a71 build(deps): bump actions/setup-node from 5.0.0 to 6.0.0 (#654)
  • 9391612 build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (#655)
  • 57baafb build(deps): bump github/codeql-action from 3.30.5 to 4.31.2 (#656)
  • a6a088e build(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 (#657)
  • 10a114d test: add test for urlencoded invalid defaultCharset (#643)
  • Additional commits viewable in compare view

Updates express from 5.1.0 to 5.2.1

Release notes

Sourced from express's releases.

v5.2.1

What's Changed

[!IMPORTANT]
The prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.

Full Changelog: expressjs/express@v5.2.0...v5.2.1

v5.2.0

Important: Security

What's Changed

... (truncated)

Changelog

Sourced from express's changelog.

5.2.1 / 2025-12-01

  • Revert security fix for CVE-2024-51999 (GHSA-pj86-cfqh-vqx6)
    • The prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.

5.2.0 / 2025-12-01

  • Security fix for CVE-2024-51999 (GHSA-pj86-cfqh-vqx6)
  • deps: body-parser@^2.2.1
  • A deprecation warning was added when using res.redirect with undefined arguments, Express now emits a warning to help detect calls that pass undefined as the status or URL and make them easier to fix.
Commits
  • dbac741 5.2.1
  • 697547c Revert "sec: security patch for CVE-2024-51999"
  • 4007ad1 Release: 5.2.0 (#6...

    Description has been truncated

    [!NOTE]
    Updates dependencies across the monorepo, including Express 5.2.1, Body-Parser 2.2.1, AWS Route53 SDK 3.948.0, Node‑Forge 1.3.3, and assorted tooling/library bumps.

    • Workspace (root):
      • Dev tooling bumps: @eslint/js, eslint-plugin-jest, @types/node, lerna, ts-jest, typescript-eslint.
    • Backend/Server packages:
      • @streamr/autocertifier-server: update @aws-sdk/client-route-53 to ^3.948.0, express to ^5.2.1, body-parser to ^2.2.1, @types/express to ^5.0.6.
      • @streamr/autocertifier-client: update node-forge to ^1.3.3.
      • @streamr/node: update express to ^5.2.1, zod to ^4.2.0, @types/express to ^5.0.6.
      • @streamr/test-utils / @streamr/geoip-location: update express to ^5.2.1 and @types/express where applicable.
    • Networking/SDK:
      • @streamr/dht / @streamr/sdk: bump ipaddr.js to ^2.3.0, lru-cache to ^11.2.4, and zod to ^4.2.0 (SDK).
    • Build/Tooling:
      • @streamr/sdk: bump nightwatch to ^3.13.0, terser-webpack-plugin to ^5.3.16, webpack-bundle-analyzer to ^5.1.0.
      • @streamr/browser-test-runner: bump @electron/rebuild to ^4.0.2.
      • @streamr/utils: bump pino-pretty to ^13.1.3.
    • Lockfile:
      • Synchronizes package-lock.json with the above versions (including transitive updates like debug, iconv-lite, raw-body, @smithy/*, etc.).

    Written by Cursor Bugbot for commit aefd73d. This will update automatically on new commits. Configure here.

@dependabot
build(deps): bump the dependencies group across 1 directory with 19 u…
aefd73d 
…pdates

Bumps the dependencies group with 19 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.39.1` | `9.39.2` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `24.10.1` | `25.0.2` |
| [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest) | `29.2.1` | `29.5.0` |
| [lerna](https://github.com/lerna/lerna/tree/HEAD/packages/lerna) | `9.0.1` | `9.0.3` |
| [ts-jest](https://github.com/kulshekhar/ts-jest) | `29.4.5` | `29.4.6` |
| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.47.0` | `8.49.0` |
| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |
| [@aws-sdk/client-route-53](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-route-53) | `3.936.0` | `3.948.0` |
| [body-parser](https://github.com/expressjs/body-parser) | `2.2.0` | `2.2.1` |
| [express](https://github.com/expressjs/express) | `5.1.0` | `5.2.1` |
| [@types/express](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/express) | `5.0.1` | `5.0.6` |
| [@electron/rebuild](https://github.com/electron/rebuild) | `4.0.1` | `4.0.2` |
| [ipaddr.js](https://github.com/whitequark/ipaddr.js) | `2.2.0` | `2.3.0` |
| [lru-cache](https://github.com/isaacs/node-lru-cache) | `11.2.2` | `11.2.4` |
| [zod](https://github.com/colinhacks/zod) | `4.1.13` | `4.2.0` |
| [nightwatch](https://github.com/nightwatchjs/nightwatch) | `3.12.3` | `3.13.0` |
| [terser-webpack-plugin](https://github.com/webpack/terser-webpack-plugin) | `5.3.14` | `5.3.16` |
| [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) | `5.0.1` | `5.1.0` |
| [pino-pretty](https://github.com/pinojs/pino-pretty) | `13.1.2` | `13.1.3` |



Updates `@eslint/js` from 9.39.1 to 9.39.2
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](https://github.com/eslint/eslint/commits/v9.39.2/packages/js)

Updates `@types/node` from 24.10.1 to 25.0.2
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `eslint-plugin-jest` from 29.2.1 to 29.5.0
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases)
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md)
- [Commits](jest-community/eslint-plugin-jest@v29.2.1...v29.5.0)

Updates `lerna` from 9.0.1 to 9.0.3
- [Release notes](https://github.com/lerna/lerna/releases)
- [Changelog](https://github.com/lerna/lerna/blob/main/packages/lerna/CHANGELOG.md)
- [Commits](https://github.com/lerna/lerna/commits/v9.0.3/packages/lerna)

Updates `ts-jest` from 29.4.5 to 29.4.6
- [Release notes](https://github.com/kulshekhar/ts-jest/releases)
- [Changelog](https://github.com/kulshekhar/ts-jest/blob/main/CHANGELOG.md)
- [Commits](kulshekhar/ts-jest@v29.4.5...v29.4.6)

Updates `typescript-eslint` from 8.47.0 to 8.49.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.49.0/packages/typescript-eslint)

Updates `node-forge` from 1.3.1 to 1.3.3
- [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md)
- [Commits](digitalbazaar/forge@v1.3.1...v1.3.3)

Updates `@aws-sdk/client-route-53` from 3.936.0 to 3.948.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-route-53/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.948.0/clients/client-route-53)

Updates `body-parser` from 2.2.0 to 2.2.1
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](expressjs/body-parser@v2.2.0...v2.2.1)

Updates `express` from 5.1.0 to 5.2.1
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@v5.1.0...v5.2.1)

Updates `@types/express` from 5.0.1 to 5.0.6
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/express)

Updates `@types/express` from 5.0.1 to 5.0.6
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/express)

Updates `@electron/rebuild` from 4.0.1 to 4.0.2
- [Release notes](https://github.com/electron/rebuild/releases)
- [Commits](electron/rebuild@v4.0.1...v4.0.2)

Updates `ipaddr.js` from 2.2.0 to 2.3.0
- [Changelog](https://github.com/whitequark/ipaddr.js/blob/main/Changes.md)
- [Commits](whitequark/ipaddr.js@v2.2.0...v2.3.0)

Updates `lru-cache` from 11.2.2 to 11.2.4
- [Changelog](https://github.com/isaacs/node-lru-cache/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-lru-cache@v11.2.2...v11.2.4)

Updates `zod` from 4.1.13 to 4.2.0
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Commits](colinhacks/zod@v4.1.13...v4.2.0)

Updates `nightwatch` from 3.12.3 to 3.13.0
- [Release notes](https://github.com/nightwatchjs/nightwatch/releases)
- [Commits](nightwatchjs/nightwatch@v3.12.3...v3.13.0)

Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16
- [Release notes](https://github.com/webpack/terser-webpack-plugin/releases)
- [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md)
- [Commits](webpack/terser-webpack-plugin@v5.3.14...v5.3.16)

Updates `webpack-bundle-analyzer` from 5.0.1 to 5.1.0
- [Changelog](https://github.com/webpack/webpack-bundle-analyzer/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack-bundle-analyzer@v5.0.1...v5.1.0)

Updates `pino-pretty` from 13.1.2 to 13.1.3
- [Release notes](https://github.com/pinojs/pino-pretty/releases)
- [Commits](pinojs/pino-pretty@v13.1.2...v13.1.3)

---
updated-dependencies:
- dependency-name: "@eslint/js"
  dependency-version: 9.39.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@types/node"
  dependency-version: 25.0.2
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: eslint-plugin-jest
  dependency-version: 29.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: lerna
  dependency-version: 9.0.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: ts-jest
  dependency-version: 29.4.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: typescript-eslint
  dependency-version: 8.49.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: node-forge
  dependency-version: 1.3.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@aws-sdk/client-route-53"
  dependency-version: 3.948.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: body-parser
  dependency-version: 2.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: express
  dependency-version: 5.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: "@types/express"
  dependency-version: 5.0.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@types/express"
  dependency-version: 5.0.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@electron/rebuild"
  dependency-version: 4.0.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: ipaddr.js
  dependency-version: 2.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: lru-cache
  dependency-version: 11.2.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: zod
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: nightwatch
  dependency-version: 3.13.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: terser-webpack-plugin
  dependency-version: 5.3.16
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: webpack-bundle-analyzer
  dependency-version: 5.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: pino-pretty
  dependency-version: 13.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Dec 15, 2025
@github-actions github-actions bot added test-utils Related to Test Utils Package dht Related to DHT package utils sdk node labels Dec 15, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 17, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 17, 2025
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/dependencies-20fc6f7cf3 branch December 17, 2025 15:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file dht Related to DHT package javascript Pull requests that update Javascript code node sdk test-utils Related to Test Utils Package utils

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant