{"id":21068,"name":"openpgp","ecosystem":"npm","repository_url":"https://github.com/openpgpjs/openpgpjs","issues_count":180,"created_at":"2025-06-07T02:21:19.749Z","updated_at":"2025-06-07T02:21:19.749Z","purl":"pkg:npm/openpgp","metadata":{"id":2139062,"name":"openpgp","ecosystem":"npm","description":"OpenPGP.js is a Javascript implementation of the OpenPGP protocol. This is defined in RFC 4880.","homepage":"https://openpgpjs.org/","licenses":"LGPL-3.0+","normalized_licenses":["LGPL-3.0+"],"repository_url":"https://github.com/openpgpjs/openpgpjs","keywords_array":["crypto","pgp","gpg","openpgp"],"namespace":null,"versions_count":183,"first_release_published_at":"2014-01-12T14:26:04.103Z","latest_release_published_at":"2025-05-19T11:59:22.873Z","latest_release_number":"6.1.1","last_synced_at":"2025-06-06T22:00:41.616Z","created_at":"2022-04-09T21:32:48.953Z","updated_at":"2025-06-06T22:00:41.616Z","registry_url":"https://www.npmjs.com/package/openpgp","install_command":"npm install openpgp","documentation_url":null,"metadata":{"funding":null,"dist-tags":{"latest":"6.1.1"}},"repo_metadata":{"id":1841425,"uuid":"2765899","full_name":"openpgpjs/openpgpjs","owner":"openpgpjs","description":"OpenPGP implementation for JavaScript","archived":false,"fork":false,"pushed_at":"2024-08-21T10:59:26.000Z","size":42653,"stargazers_count":5643,"open_issues_count":34,"forks_count":793,"subscribers_count":175,"default_branch":"main","last_synced_at":"2024-09-02T16:50:06.022Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://openpgpjs.org","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":"adamwulf/app-launch-guide","license":"lgpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/openpgpjs.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2011-11-13T10:36:43.000Z","updated_at":"2024-09-01T14:58:59.000Z","dependencies_parsed_at":"2023-01-13T11:26:25.138Z","dependency_job_id":"eda9b4bf-291f-49e5-8545-ca9014918b71","html_url":"https://github.com/openpgpjs/openpgpjs","commit_stats":{"total_commits":1992,"total_committers":134,"mean_commits":"14.865671641791044","dds":0.7319277108433735,"last_synced_commit":"726ee55de41a2ca305fce4c12fcd24696869bbc4"},"previous_names":[],"tags_count":173,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/openpgpjs","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":217592785,"owners_count":16201531,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"openpgpjs","name":"OpenPGP.js","uuid":"1206249","kind":"organization","description":"","email":null,"website":"https://openpgpjs.org","location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/1206249?v=4","repositories_count":21,"last_synced_at":"2024-04-08T08:59:06.867Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/openpgpjs","funding_links":[],"total_stars":5648,"followers":64,"following":0,"created_at":"2022-11-02T16:39:16.356Z","updated_at":"2024-04-08T08:59:13.498Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/openpgpjs","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/openpgpjs/repositories"},"tags":[{"name":"v6.0.0-beta.3","sha":"a3839f6db5aad673f14d6fa35df4010f82fae965","kind":"tag","published_at":"2024-09-05T11:28:10.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v6.0.0-beta.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v6.0.0-beta.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.3/manifests"},{"name":"v6.0.0-beta.2","sha":"c0b35306cb4b4568ac493b7dba6113e1853e9fe2","kind":"tag","published_at":"2024-07-05T13:12:14.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v6.0.0-beta.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v6.0.0-beta.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.2/manifests"},{"name":"v5.11.2","sha":"a0337780b77093716ba92acb4a70b3bb5ceec87d","kind":"tag","published_at":"2024-06-18T15:53:56.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.11.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.11.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.11.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.11.2/manifests"},{"name":"v6.0.0-beta.1","sha":"d138b5290b1be04e0dbc095ee5a118103a0b9c73","kind":"tag","published_at":"2024-05-17T12:13:46.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v6.0.0-beta.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v6.0.0-beta.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.1/manifests"},{"name":"v6.0.0-beta.0","sha":"2bf7c92469e4ed405a6b64af8d7072ca8019a187","kind":"tag","published_at":"2024-04-12T12:28:06.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v6.0.0-beta.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v6.0.0-beta.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-beta.0/manifests"},{"name":"v6.0.0-alpha.1","sha":"147d043a32e27ddfec82f5efffb790ac7803c34f","kind":"tag","published_at":"2024-02-28T12:22:41.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v6.0.0-alpha.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v6.0.0-alpha.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-alpha.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-alpha.1/manifests"},{"name":"v5.11.1","sha":"026b348cf87988cf95896dd9c5dd1a0c8129ddb1","kind":"tag","published_at":"2024-02-19T16:27:07.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.11.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.11.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.11.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.11.1/manifests"},{"name":"v6.0.0-alpha.0","sha":"7881b850ec303df735acff4614aa4dd31663a5ad","kind":"tag","published_at":"2023-10-25T10:55:43.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v6.0.0-alpha.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v6.0.0-alpha.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-alpha.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v6.0.0-alpha.0/manifests"},{"name":"v5.11.0","sha":"7003d19c71044fb731899b69403089f4b47eddc7","kind":"tag","published_at":"2023-10-25T10:04:48.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.11.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.11.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.11.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.11.0/manifests"},{"name":"v5.10.2","sha":"d6145ac73eebcf66bdeb0873aa60fc49361e1aeb","kind":"tag","published_at":"2023-09-18T12:47:25.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.10.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.10.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.10.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.10.2/manifests"},{"name":"v4.10.11","sha":"d8a1e25a5248a066356e0130668d4055209b5f74","kind":"commit","published_at":"2023-08-29T15:26:34.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.11","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.11/manifests"},{"name":"v5.10.1","sha":"5d02e3a03e45fd4e6153d309ff2f18882e9a810a","kind":"tag","published_at":"2023-08-29T14:52:34.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.10.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.10.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.10.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.10.1/manifests"},{"name":"v5.10.0","sha":"4df86e53a79ca1a2998326f6e526d3856992aee6","kind":"tag","published_at":"2023-08-29T12:59:17.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.10.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.10.0/manifests"},{"name":"v5.9.0","sha":"400b163f8411204f5de830b70e65fd86246cf933","kind":"tag","published_at":"2023-05-15T14:47:20.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.9.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.9.0/manifests"},{"name":"v5.8.0","sha":"726ee55de41a2ca305fce4c12fcd24696869bbc4","kind":"tag","published_at":"2023-04-18T17:21:24.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.8.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.8.0/manifests"},{"name":"v5.7.0","sha":"c60f2e3490c83b7c5499bf0e29124b668bbae4dd","kind":"tag","published_at":"2023-02-21T18:14:36.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.7.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.7.0/manifests"},{"name":"v5.6.0","sha":"0307111993f51ce58a4ce13c1fe8ab510ed78e92","kind":"tag","published_at":"2023-02-16T13:32:01.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.6.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.6.0/manifests"},{"name":"v5.5.0","sha":"d0be98feb9ab3ca3a7e22e04d0603e39bf762bcb","kind":"tag","published_at":"2022-08-31T11:56:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.5.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.5.0/manifests"},{"name":"v5.4.0","sha":"ca60884c050625b01656c03354c18434fe4bf275","kind":"tag","published_at":"2022-08-08T11:49:52.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.4.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.4.0/manifests"},{"name":"v5.3.1","sha":"5c02953b1c58d3e275bf4804b8ea2622550483e0","kind":"tag","published_at":"2022-06-29T19:02:15.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.3.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.3.1/manifests"},{"name":"v5.3.0","sha":"b677ab594954945db94021e5b43553ffb407f084","kind":"tag","published_at":"2022-06-08T14:10:17.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.3.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.3.0/manifests"},{"name":"v5.2.1","sha":"d677c30359fd3f8eff7968b3cf217830e176d47b","kind":"tag","published_at":"2022-03-15T13:59:45.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.2.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.2.1/manifests"},{"name":"v5.2.0","sha":"a1ef5f509f01504225ec9e7faf339b06ce467827","kind":"tag","published_at":"2022-03-02T20:35:43.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.2.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.2.0/manifests"},{"name":"v5.1.0","sha":"bd13edfc884cf6b6b7f715099529ac6a656733c6","kind":"tag","published_at":"2022-01-24T17:38:46.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.1.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.1.0/manifests"},{"name":"v5.0.1","sha":"05e435aae70596d1ef60af931884bd3085deb556","kind":"tag","published_at":"2021-11-17T20:46:14.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.1/manifests"},{"name":"v5.0.0","sha":"acafb2866128d11dd55b7d0927957cd3880c7422","kind":"tag","published_at":"2021-09-02T15:09:02.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0/manifests"},{"name":"v5.0.0-6","sha":"4f1c474433ec9c52d1a3e652afd651e2219cd76c","kind":"tag","published_at":"2021-08-20T13:34:03.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0-6","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0-6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-6/manifests"},{"name":"v5.0.0-5","sha":"f59b0dec60e9397193f1614401a9067f3cbe5841","kind":"tag","published_at":"2021-07-23T17:00:19.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0-5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0-5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-5/manifests"},{"name":"v5.0.0-4","sha":"183707701287f59deb63489ad33771602c9545bb","kind":"tag","published_at":"2021-07-20T17:41:10.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0-4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0-4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-4/manifests"},{"name":"v5.0.0-3","sha":"1bff8aad50a1a33406832952a61af4c82dd963e5","kind":"tag","published_at":"2021-05-28T15:36:44.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0-3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0-3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-3/manifests"},{"name":"v5.0.0-2","sha":"2d07c43030ad01e065a36c961912a881a123250c","kind":"tag","published_at":"2021-04-27T12:00:54.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0-2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0-2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-2/manifests"},{"name":"v5.0.0-1","sha":"4379d1856e3821f26518ca27b8a0c5328e603939","kind":"tag","published_at":"2021-03-03T19:28:16.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0-1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0-1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-1/manifests"},{"name":"v5.0.0-0","sha":"365a5efb631a2cbce433643d1cf5d7757e796427","kind":"tag","published_at":"2021-02-27T00:25:52.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v5.0.0-0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v5.0.0-0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v5.0.0-0/manifests"},{"name":"v4.10.10","sha":"1f237e6a9cbaa99fbc51ab0cfea2c55f7bd172fe","kind":"commit","published_at":"2021-01-24T15:47:40.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.10","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.10/manifests"},{"name":"v4.10.9","sha":"21f4ba46f8cba0b3950ccd070dd2f3bb65ce6ebf","kind":"commit","published_at":"2020-12-07T19:31:43.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.9","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.9/manifests"},{"name":"v4.10.8","sha":"aa89893773c2ff97e85846ad5b0a184a89dc1688","kind":"commit","published_at":"2020-08-28T14:42:25.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.8","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.8/manifests"},{"name":"v4.10.7","sha":"34b0928cca01114ff1f2a05e9be1cd035a0e2944","kind":"commit","published_at":"2020-07-21T13:21:20.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.7","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.7/manifests"},{"name":"v4.10.6","sha":"20c468cbd795b6478ad7488daaf0dc64645f8cee","kind":"commit","published_at":"2020-07-14T16:22:46.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.6","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.6/manifests"},{"name":"v4.10.5","sha":"1c41c725201c6e7ea3d1f03b7c9c07959ff4590c","kind":"commit","published_at":"2020-07-13T18:24:55.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.5/manifests"},{"name":"v4.10.4","sha":"2c6cbc4cb2d4ada62345a74218a8543f71f26c78","kind":"commit","published_at":"2020-04-22T17:28:01.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.4/manifests"},{"name":"v4.10.3","sha":"35b4380909f330cefbf3558591615893179ec517","kind":"commit","published_at":"2020-04-21T14:05:49.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.3/manifests"},{"name":"v4.10.2","sha":"04fb053fc8bb925a34be51ad74db08b1b780c905","kind":"commit","published_at":"2020-04-15T09:34:10.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.2/manifests"},{"name":"v4.10.1","sha":"b6a6f52ad8ceed8a1bcb0effe0ec7e77ce205bc0","kind":"commit","published_at":"2020-02-27T16:17:23.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.1/manifests"},{"name":"v4.10.0","sha":"f6507c30e1dcb6a53ee0fc188693e1f595ce69d9","kind":"commit","published_at":"2020-02-25T14:58:04.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.10.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.10.0/manifests"},{"name":"v4.9.1","sha":"3af8e32bf0b81e0505eeff329a3535f9f6d65676","kind":"commit","published_at":"2020-02-17T13:40:22.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.9.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.9.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.9.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.9.1/manifests"},{"name":"v4.9.0","sha":"93c5bed64bc50327a6d72cdb736cdcaa04305560","kind":"commit","published_at":"2020-02-02T19:15:24.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.9.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.9.0/manifests"},{"name":"v4.8.1","sha":"09e818763eedef61aa2b2aa8765b701545cbda11","kind":"commit","published_at":"2020-01-24T19:05:16.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.8.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.8.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.8.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.8.1/manifests"},{"name":"v4.8.0","sha":"1462affe88ee56cc9cfb107fae14e6ba3e447060","kind":"commit","published_at":"2020-01-14T17:10:37.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.8.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.8.0/manifests"},{"name":"v4.7.2","sha":"ba944c8948b8e864b10f3d7df4f7d596fd33ed84","kind":"commit","published_at":"2019-12-20T16:39:24.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.7.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.7.2/manifests"},{"name":"v4.7.1","sha":"5a62c4f3c3dffddd02fd62c050d0c177fe59521f","kind":"commit","published_at":"2019-11-29T10:47:49.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.7.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.7.1/manifests"},{"name":"v4.7.0","sha":"bc16d157f0aba7a8b8468c5b5d5b071c86256ea8","kind":"commit","published_at":"2019-11-18T19:10:50.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.7.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.7.0/manifests"},{"name":"v4.6.2","sha":"2877bac018f634b883e096db01c2285d2d2dba7d","kind":"commit","published_at":"2019-09-11T23:17:37.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.6.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.6.2/manifests"},{"name":"v4.6.1","sha":"a14b09c89b200c765c7c2658e1ed1b4891223acb","kind":"commit","published_at":"2019-09-11T16:45:16.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.6.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.6.1/manifests"},{"name":"v4.6.0","sha":"c685e34c7604c4d0ac0af39be9834d637908ef94","kind":"commit","published_at":"2019-08-12T17:18:04.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.6.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.6.0/manifests"},{"name":"v4.5.5","sha":"3a7db8ea600a284949d68492b87baff993afa4e7","kind":"commit","published_at":"2019-06-24T18:17:15.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.5.5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.5.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.5/manifests"},{"name":"v4.5.4","sha":"17c994865bd48060cefc625ad7e121a054c02308","kind":"commit","published_at":"2019-06-21T14:23:53.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.5.4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.5.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.4/manifests"},{"name":"v4.5.3","sha":"f00f256f50022a0ca654932abeefd2c15926adc5","kind":"commit","published_at":"2019-06-06T14:17:05.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.5.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.5.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.3/manifests"},{"name":"v4.5.2","sha":"72e3b491d7b559583fcf04290dd01686681a8dd7","kind":"commit","published_at":"2019-05-16T14:23:36.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.5.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.2/manifests"},{"name":"v4.5.1","sha":"54f3eb5870e4e0611965003e276af786ec419470","kind":"commit","published_at":"2019-05-06T11:17:19.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.5.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.1/manifests"},{"name":"v4.5.0","sha":"9f2346a9dca4bdd3ce4e2c8a4b7282a3f1cf1365","kind":"commit","published_at":"2019-05-02T11:54:35.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.5.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.5.0/manifests"},{"name":"v4.4.10","sha":"8d596e995640ae832af49426114beb20cf5d115f","kind":"commit","published_at":"2019-02-14T23:07:14.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.10","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.10/manifests"},{"name":"v4.4.9","sha":"f50ed731b95b5f233fd6a49c9fe1d2b9b7280828","kind":"commit","published_at":"2019-02-14T21:51:10.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.9","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.9/manifests"},{"name":"v4.4.8","sha":"2d3fb8c3c9f39b35fddabae7acb0e1b55bf428c9","kind":"commit","published_at":"2019-02-07T13:46:37.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.8","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.8/manifests"},{"name":"v4.4.7","sha":"e2d19a7414290887aed8e40b054f678fb102f9db","kind":"commit","published_at":"2019-02-06T18:45:15.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.7","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.7/manifests"},{"name":"v4.4.6","sha":"96eca0c281e065d0b362b9e74fa7440f0875cc46","kind":"commit","published_at":"2019-01-24T09:16:36.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.6","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.6/manifests"},{"name":"v4.4.5","sha":"1ec216a6b448ba6665cd9f041601759a53fbbd37","kind":"commit","published_at":"2019-01-15T19:46:22.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.5/manifests"},{"name":"v4.4.4","sha":"b904aef3a780ec51f768e6d6e87c54268f8daf3f","kind":"commit","published_at":"2019-01-15T10:51:28.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.4/manifests"},{"name":"v4.4.3","sha":"92ba73402a1c9a99260d491fec47ee7ef2090df5","kind":"commit","published_at":"2019-01-03T15:03:26.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.3/manifests"},{"name":"v4.4.2","sha":"83623b3d32977ba2259ab9702e63ebb0053715e6","kind":"commit","published_at":"2019-01-02T22:46:49.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.2/manifests"},{"name":"v4.4.1","sha":"ae1af189ef179936bf6918df169ddcd759f1fb11","kind":"commit","published_at":"2018-12-23T21:03:40.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.4.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.4.1/manifests"},{"name":"v4.3.0","sha":"d24bdd5fa21b501b2fd3defacab5af24c63dd322","kind":"commit","published_at":"2018-12-17T18:44:08.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.3.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.3.0/manifests"},{"name":"v4.2.2","sha":"6c1738ff34520d364fd9c0693404f377c7e21755","kind":"commit","published_at":"2018-12-07T12:51:03.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.2.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.2.2/manifests"},{"name":"v4.2.1","sha":"65de9b3e284cdde02eda40b84033c984cc43eefc","kind":"commit","published_at":"2018-11-06T12:42:15.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.2.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.2.1/manifests"},{"name":"v4.2.0","sha":"a6e20d7abdb25c9781c5c0e568faec35fa6bbea5","kind":"commit","published_at":"2018-11-05T13:14:49.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.2.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.2.0/manifests"},{"name":"v4.1.2","sha":"3c1d89bbb51290c550aa91f759480c8ea2813899","kind":"commit","published_at":"2018-10-20T17:03:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.1.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.1.2/manifests"},{"name":"v4.1.1","sha":"a6e3ada438aaad30402352dfb3d9d8b407005935","kind":"commit","published_at":"2018-10-05T06:43:46.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.1.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.1.1/manifests"},{"name":"v4.1.0","sha":"150222bee58a1230333d689481021709a842230d","kind":"commit","published_at":"2018-09-25T23:38:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.1.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.1.0/manifests"},{"name":"v4.0.2","sha":"cccebd0272fab8b1c7509f9d7cfbd46fc1b681e0","kind":"commit","published_at":"2018-09-17T20:18:05.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.0.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.0.2/manifests"},{"name":"v4.0.1","sha":"aab04c2ad276a5d600e35476e5ab72c285789a2a","kind":"commit","published_at":"2018-09-04T05:57:08.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.0.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.0.1/manifests"},{"name":"v3.1.3","sha":"7aef1db7efbbf060d9d0eb7485b52915e220d9ce","kind":"commit","published_at":"2018-09-04T05:47:33.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.1.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.1.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.3/manifests"},{"name":"v4.0.0","sha":"22c66c13a69de2cdf912ecbf803263da91f27c4d","kind":"commit","published_at":"2018-08-14T22:37:17.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v4.0.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v4.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v4.0.0/manifests"},{"name":"v3.1.2","sha":"5be838f9bb177428e2d6be2e58aec47f087940df","kind":"commit","published_at":"2018-08-03T12:55:04.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.1.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.2/manifests"},{"name":"v3.1.1","sha":"16762d02f003b1f219f0299c37e08e6634cd4d44","kind":"commit","published_at":"2018-08-01T14:50:23.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.1.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.1/manifests"},{"name":"v3.1.0","sha":"21449ebd500bd3913dc5791cc802df7312007b12","kind":"commit","published_at":"2018-07-19T16:13:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.1.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.1.0/manifests"},{"name":"v3.0.13","sha":"21c908a86a721f92551b5f41e0b08de706c18d17","kind":"commit","published_at":"2018-07-13T16:00:28.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.13","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.13/manifests"},{"name":"v3.0.12","sha":"96c1c2158e8b25795aed69986331562259f600cb","kind":"commit","published_at":"2018-07-02T09:55:53.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.12","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.12/manifests"},{"name":"v3.0.11","sha":"bf428b80d40ae3045ad40debe9798aeff98caa4e","kind":"commit","published_at":"2018-05-23T00:39:26.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.11","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.11/manifests"},{"name":"v3.0.10","sha":"400226c272b80e5392d200dad09a925b7810e12b","kind":"commit","published_at":"2018-05-15T06:43:38.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.10","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.10/manifests"},{"name":"v3.0.9","sha":"cf3c2790f256f2b2d2b8e09fe9eb254d073a0bcf","kind":"commit","published_at":"2018-04-30T21:58:14.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.9","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.9/manifests"},{"name":"v3.0.8","sha":"dbc195d4ce51e3ae3487791a7945cf6736572d7b","kind":"commit","published_at":"2018-04-25T18:11:57.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.8","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.8/manifests"},{"name":"v3.0.7","sha":"840a9811b4b1bd6e07866de6a59fb97f8a449586","kind":"commit","published_at":"2018-04-17T15:44:25.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.7","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.7/manifests"},{"name":"v3.0.6","sha":"d785df3325e7da1a0c7813988c3dd7cce2199567","kind":"commit","published_at":"2018-04-16T22:19:27.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.6","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.6/manifests"},{"name":"v3.0.4","sha":"f1714fd9b539d93d8469fec80973ad352f22c3fe","kind":"commit","published_at":"2018-04-05T14:20:48.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.4/manifests"},{"name":"v3.0.3","sha":"8ad37dad305a77d019417a21fa0245729cee5e7d","kind":"commit","published_at":"2018-03-19T07:15:58.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.3/manifests"},{"name":"v3.0.2","sha":"f80d53e1df73bb085891e66023d92171c1d68379","kind":"commit","published_at":"2018-03-16T19:29:33.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.2/manifests"},{"name":"v3.0.1","sha":"685d82d3b3e2e36a333324c5cb2b87b8795d311e","kind":"commit","published_at":"2018-03-15T18:32:09.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.1/manifests"},{"name":"v3.0.0","sha":"35a271b9b5d1414f8c81aec51f1f5b8074dde410","kind":"commit","published_at":"2018-03-08T21:01:56.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v3.0.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v3.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v3.0.0/manifests"},{"name":"v2.6.2","sha":"11b72d1dad1fb616d9918b0c883a9bca4424f31d","kind":"commit","published_at":"2018-01-22T07:13:22.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.6.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.6.2/manifests"},{"name":"v2.6.1","sha":"02851130e1b8031977b024bdf2d1a1af2c1fd8ec","kind":"commit","published_at":"2017-12-22T21:53:20.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.6.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.6.1/manifests"},{"name":"v2.6.0","sha":"d62162a3f1ae41d0a19df4df9dfcf5d0dda76d3e","kind":"commit","published_at":"2017-12-03T06:03:17.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.6.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.6.0/manifests"},{"name":"v2.5.14","sha":"edaf5811ba0c42e7dae851710e535781d2604715","kind":"commit","published_at":"2017-11-28T22:06:25.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.14","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.14","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.14","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.14/manifests"},{"name":"v2.5.13","sha":"1e0427468baa4cc3b5e3db1f82e9652b9c6addec","kind":"commit","published_at":"2017-11-06T21:46:54.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.13","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.13/manifests"},{"name":"v2.5.12","sha":"1cd0243082fa06d18595b4236b41fb617a4b6bd1","kind":"commit","published_at":"2017-10-10T17:49:23.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.12","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.12/manifests"},{"name":"v2.5.11","sha":"65be967db29590f8e72fe74ce9cc4a84c5e93af7","kind":"commit","published_at":"2017-09-20T17:25:54.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.11","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.11/manifests"},{"name":"v2.5.10","sha":"1df7eb4eea9798ad1f23b9ee66309671c1145d0e","kind":"commit","published_at":"2017-08-30T20:09:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.10","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.10/manifests"},{"name":"v2.5.9","sha":"ba8789a099e4eae84cab199b06cb05e4b984ed2a","kind":"commit","published_at":"2017-08-20T23:44:35.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.9","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.9/manifests"},{"name":"v2.5.8","sha":"a9a0e28ffbc44ca77fc135d9a5e6851745ddb748","kind":"commit","published_at":"2017-07-22T05:06:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.8","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.8/manifests"},{"name":"v2.5.7","sha":"87152a5dfad2eed67e982df20340b76b2076f931","kind":"commit","published_at":"2017-07-22T01:58:00.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.7","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.7/manifests"},{"name":"v2.5.6","sha":"79ca1f221b73726b5da1343fe2e5a726f66413a5","kind":"commit","published_at":"2017-07-13T17:13:17.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.6","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.6/manifests"},{"name":"v2.5.5","sha":"d879bc533fd99a8533e357bedb84b763644fb450","kind":"commit","published_at":"2017-07-06T23:27:44.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.5/manifests"},{"name":"v2.5.4","sha":"8164d8ff7a6808df9e33a21e543ac4e231c0506f","kind":"commit","published_at":"2017-04-06T05:40:17.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.4/manifests"},{"name":"v2.5.3","sha":"59c3811b2eb49e0d51c2340c89040fe519e5a2c6","kind":"commit","published_at":"2017-03-29T23:32:10.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.3/manifests"},{"name":"v2.5.2","sha":"c6661b242baaee20c73b55d62019abc414d865b3","kind":"commit","published_at":"2017-03-28T20:17:39.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.2/manifests"},{"name":"v2.5.1","sha":"aec51e0c6f244d573f1d71b2efc9614f9f888c9b","kind":"commit","published_at":"2017-03-16T02:56:22.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.1/manifests"},{"name":"v2.5.0","sha":"23195c2c98ac5e236e2a8a5640ae6d289e7c16cc","kind":"commit","published_at":"2017-03-15T02:13:17.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.5.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.5.0/manifests"},{"name":"v2.4.0","sha":"30728002866b52ca12e3a2386dd1bdd2672bf6bf","kind":"commit","published_at":"2017-03-05T20:30:15.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.4.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.4.0/manifests"},{"name":"v2.3.8","sha":"330b2c334b0ccf7ab0e9a506e54e9a9d25714eff","kind":"commit","published_at":"2017-02-27T19:09:41.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.8","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.8/manifests"},{"name":"v2.3.7","sha":"36026fb5574f6fc5d4ac6743990ea6c2a31ba805","kind":"commit","published_at":"2017-02-14T00:17:07.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.7","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.7/manifests"},{"name":"v2.3.6","sha":"d6875797ff853790b9e144ffd3bd4986b5e08e5e","kind":"commit","published_at":"2017-01-25T23:26:29.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.6","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.6/manifests"},{"name":"v2.3.5","sha":"80c433689b7868c29e1fd78f13a02d1ba94d09c2","kind":"commit","published_at":"2016-10-27T00:05:14.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.5/manifests"},{"name":"v2.3.4","sha":"dfbc5ea5a6719675b9ea4e9e8fc89f65db2a5358","kind":"commit","published_at":"2016-10-21T23:27:49.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.4/manifests"},{"name":"v2.3.3","sha":"edd415c9585f848bceec41965acfbc8bbcf1e662","kind":"commit","published_at":"2016-08-17T19:29:41.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.3/manifests"},{"name":"v2.3.2","sha":"3267bd534f6264ad58e48a3f4705996f575e2242","kind":"commit","published_at":"2016-06-08T09:58:28.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.2/manifests"},{"name":"v1.6.2","sha":"4cf604d6e7214787c017a741a82da07f473aecc7","kind":"commit","published_at":"2016-06-08T09:39:47.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.6.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.6.2/manifests"},{"name":"v1.6.1","sha":"c8c8c5aca625fea5b419e015d82095e3d89554ea","kind":"commit","published_at":"2016-06-07T16:51:34.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.6.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.6.1/manifests"},{"name":"v2.3.1","sha":"fb10fa075a9e2a04156f3c541622c159105d2862","kind":"commit","published_at":"2016-06-07T16:25:49.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.1/manifests"},{"name":"v2.3.0","sha":"ceee85ef35938dfbde581066418567a78ea16f33","kind":"commit","published_at":"2016-05-03T17:52:58.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.3.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.3.0/manifests"},{"name":"v2.2.2","sha":"528b5f2fe62b80f32808e2f75da409f6f9a2f649","kind":"commit","published_at":"2016-04-23T22:40:56.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.2.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.2.2/manifests"},{"name":"v1.6.0","sha":"43b4d9ddafff747954bad850aa1cb0b20bf436fa","kind":"commit","published_at":"2016-04-20T19:13:49.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.6.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.6.0/manifests"},{"name":"v2.2.1","sha":"8589e8bd4245f606d032017d7073e90dcb762789","kind":"commit","published_at":"2016-04-12T07:48:50.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.2.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.2.1/manifests"},{"name":"v2.2.0","sha":"acbaec2e6c509a49933fe9c7d4d8b44beda8cbba","kind":"commit","published_at":"2016-03-25T08:52:10.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.2.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.2.0/manifests"},{"name":"v2.1.0","sha":"5fc6167730d2561745720a5625d55e4fd8a586fb","kind":"commit","published_at":"2016-02-18T04:44:54.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.1.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.1.0/manifests"},{"name":"v2.0.1","sha":"5a1af6e698b3138c834733cab2c0b5d20888be90","kind":"commit","published_at":"2016-02-15T12:46:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.0.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.0.1/manifests"},{"name":"v2.0.0","sha":"1962760344f59291c2eae6e42789e75cf60e425d","kind":"commit","published_at":"2016-02-13T09:57:44.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v2.0.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v2.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v2.0.0/manifests"},{"name":"v1.5.7","sha":"a49b5ce1c557de5e62c6b5b68e70e6537b9b1910","kind":"commit","published_at":"2016-01-31T00:20:31.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.7","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.7/manifests"},{"name":"v1.5.6","sha":"06a1c1afe0341058749d2d811229393873ad5c1e","kind":"commit","published_at":"2016-01-30T11:45:18.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.6","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.6/manifests"},{"name":"v1.5.5","sha":"cec41bfa70713253fb55e81da49b5fe5cd536ade","kind":"commit","published_at":"2016-01-29T19:02:43.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.5/manifests"},{"name":"v1.5.4","sha":"3705f5b87a3930b21fa97104dc09c00c80ed7057","kind":"commit","published_at":"2016-01-29T13:20:46.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.4","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.4/manifests"},{"name":"v1.5.3","sha":"539b4458904e349c88b691480d1893bf1e549763","kind":"commit","published_at":"2016-01-29T12:06:51.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.3/manifests"},{"name":"v1.5.2","sha":"f67be9ea9f4694efe14defb7a1d79c98f86ab2aa","kind":"commit","published_at":"2016-01-29T11:49:59.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.2/manifests"},{"name":"v1.5.1","sha":"56ecc9e0cdbee061e6b433a9535d7457ff513a6c","kind":"commit","published_at":"2016-01-29T11:40:12.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.1/manifests"},{"name":"v1.5.0","sha":"73134fa18198cbb7344f562176558d7eb4416435","kind":"commit","published_at":"2016-01-23T02:28:47.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.5.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.5.0/manifests"},{"name":"v1.4.1","sha":"2fe10749a168b9473221bdc04841985f54fe3db7","kind":"commit","published_at":"2015-12-19T08:25:50.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.4.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.4.1/manifests"},{"name":"v1.4.0","sha":"5b937a671268f535c42f0d50d3a846a01e1e70be","kind":"commit","published_at":"2015-12-12T03:57:23.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.4.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.4.0/manifests"},{"name":"v1.3.0","sha":"0958a9ec02565faf18e85f99de29a091180c6e46","kind":"commit","published_at":"2015-10-05T07:35:19.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.3.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.3.0/manifests"},{"name":"v1.2.0","sha":"e2e04b04ea318b4c64cb95c6c174749a524f49ef","kind":"commit","published_at":"2015-06-12T14:41:00.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.2.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.2.0/manifests"},{"name":"v1.1.0","sha":"ac8d991bc3195371608ece9d68ca08c613bb8aae","kind":"commit","published_at":"2015-06-09T14:50:39.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.1.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.1.0/manifests"},{"name":"v1.0.1","sha":"05cd04f060d1a832031a33323678d6774ca7fbf2","kind":"commit","published_at":"2015-04-01T10:29:09.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.0.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.0.1/manifests"},{"name":"v1.0.0","sha":"d11d1383133238040d5aff60d5d35f5fd28e4f3d","kind":"commit","published_at":"2015-03-15T10:19:09.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v1.0.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v1.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v1.0.0/manifests"},{"name":"v0.11.1","sha":"37091175b1150d32886b2bce34088a1cf4e1db68","kind":"commit","published_at":"2015-03-04T06:27:01.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.11.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.11.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.11.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.11.1/manifests"},{"name":"v0.11.0","sha":"9ad364781fb91cf8bbc1248dae7a87fe83f02089","kind":"commit","published_at":"2015-02-16T10:02:39.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.11.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.11.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.11.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.11.0/manifests"},{"name":"v0.10.3","sha":"6835ff0872f42659f7a9bb62447ef7b8a3a7f528","kind":"commit","published_at":"2015-02-13T09:14:28.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.10.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.10.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.3/manifests"},{"name":"v0.10.2","sha":"2defd7f66b2b7027d886507c08d2ffca16d00d73","kind":"commit","published_at":"2015-02-13T07:16:02.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.10.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.10.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.2/manifests"},{"name":"v0.10.1","sha":"5b4931d92644c37043fa45747824889b1500c46c","kind":"commit","published_at":"2015-02-13T03:56:39.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.10.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.10.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.1/manifests"},{"name":"v0.10.0","sha":"d25c90bff1a6cb0f22b26210f15ec9c76d312ead","kind":"commit","published_at":"2015-02-11T13:20:42.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.10.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.10.0/manifests"},{"name":"v0.9.0","sha":"782d7dee6edd388b5f7c9327bf4013580f92c401","kind":"commit","published_at":"2014-12-09T14:50:47.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.9.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.9.0/manifests"},{"name":"v0.8.2","sha":"eedb722d7bd7112846199e6ac70de2bd3212d21b","kind":"commit","published_at":"2014-10-29T17:17:03.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.8.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.8.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.8.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.8.2/manifests"},{"name":"v0.8.1","sha":"f4682599be66ccd6d04739fd178b2a3caa4ce366","kind":"commit","published_at":"2014-10-20T16:30:26.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.8.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.8.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.8.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.8.1/manifests"},{"name":"v0.8.0","sha":"2362cce6427bd6ed392ee4ced6a314c31de9ec1f","kind":"commit","published_at":"2014-10-20T14:12:13.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.8.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.8.0/manifests"},{"name":"v0.7.2","sha":"132bd054de48fa032d8373eb882d3a9298f12720","kind":"commit","published_at":"2014-07-30T15:09:34.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.7.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.7.2/manifests"},{"name":"v0.7.1","sha":"8a278662252cefd21cb41cd1d76f32feabbf9b6b","kind":"commit","published_at":"2014-07-07T10:25:28.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.7.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.7.1/manifests"},{"name":"v0.7.0","sha":"74959b83b6c3cb2ca822a1ec69251616393e882e","kind":"commit","published_at":"2014-07-02T13:15:03.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.7.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.7.0/manifests"},{"name":"v0.6.5","sha":"2cbc232b0fafddd38ff1b339880e773006d83cf9","kind":"commit","published_at":"2014-07-01T14:28:58.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.6.5","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.6.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.5/manifests"},{"name":"v0.6.3","sha":"ecb6798441c2005b250743306aab571fc8ced561","kind":"commit","published_at":"2014-06-30T17:26:33.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.6.3","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.6.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.3/manifests"},{"name":"v0.6.2","sha":"ee02ca71cfa0f0d3ac72c06a720afd1effe76ac9","kind":"commit","published_at":"2014-06-28T14:52:18.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.6.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.2/manifests"},{"name":"v0.6.1","sha":"dd9e5c2a3571104f963b8fe0f72dc7baab65b699","kind":"commit","published_at":"2014-06-13T09:59:26.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.6.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.1/manifests"},{"name":"v0.6.0","sha":"7077cd2f93a8819ab409423733026d371c40067a","kind":"commit","published_at":"2014-05-09T08:46:06.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.6.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.6.0/manifests"},{"name":"v0.5.1","sha":"c107ef8d2f39bdc1aa06bfdb0dd4814d40b57502","kind":"commit","published_at":"2014-04-03T12:47:44.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.5.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.5.1/manifests"},{"name":"v0.5.0","sha":"fa451ec3f399db9f41e0b7fc96150be26357f6af","kind":"commit","published_at":"2014-03-31T14:38:53.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.5.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.5.0/manifests"},{"name":"v0.4.1","sha":"f6a72b0058be81f07621ce6a682793a8755674f3","kind":"commit","published_at":"2014-02-25T17:57:21.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.4.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.4.1/manifests"},{"name":"v0.4.0","sha":"af5f1e89f0baa953d7e38ac51671e14dcc32d3be","kind":"commit","published_at":"2014-02-12T21:36:43.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.4.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.4.0/manifests"},{"name":"v0.3.2","sha":"ce1239f4e8c63986c33eebb2f1d07ea26535a220","kind":"commit","published_at":"2014-02-02T17:38:09.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.3.2","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.3.2/manifests"},{"name":"v0.3.1","sha":"887124a74ea98d2144c60623a501a7e4180f518c","kind":"commit","published_at":"2014-01-31T15:26:52.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.3.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.3.1/manifests"},{"name":"v0.3.0","sha":"5b43f42c91320d1131cf7d80ecb9d0b45312d1d9","kind":"commit","published_at":"2014-01-21T15:17:46.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.3.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.3.0/manifests"},{"name":"v0.2.1","sha":"aae92e913db4c8e9139b1531956e4f94aed31b86","kind":"commit","published_at":"2014-01-13T19:27:20.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.2.1","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.2.1/manifests"},{"name":"v0.2.0","sha":"1eaf875696b2a62e6c286ff06bbd94432b5a0466","kind":"commit","published_at":"2014-01-10T18:26:03.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.2.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.2.0/manifests"},{"name":"v0.1.0","sha":"51b2b6e5591cda75eff54e5a96eb973082a2002b","kind":"commit","published_at":"2014-01-03T17:35:57.000Z","download_url":"https://codeload.github.com/openpgpjs/openpgpjs/tar.gz/v0.1.0","html_url":"https://github.com/openpgpjs/openpgpjs/releases/tag/v0.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/openpgpjs%2Fopenpgpjs/tags/v0.1.0/manifests"}]},"repo_metadata_updated_at":"2024-09-08T10:43:35.546Z","dependent_packages_count":289,"downloads":2260225,"downloads_period":"last-month","dependent_repos_count":1283,"rankings":{"downloads":0.2465527980927798,"dependent_repos_count":0.5488536337069603,"dependent_packages_count":0.17881472821338276,"stargazers_count":1.2827859485910948,"forks_count":1.3111578654907867,"docker_downloads_count":0.1179689180468918,"average":0.614355648690316},"purl":"pkg:npm/openpgp","advisories":[{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3amYtZmpqZi14Y3d3","url":"https://github.com/advisories/GHSA-77jf-fjjf-xcww","title":"Invalid Curve Attack in openpgp","description":"Versions of `openpgp` prior to 4.3.0 are vulnerable to an Invalid Curve Attack. The package's implementation of ECDH fails to verify the validity of the communication partner's public key. The package calculates the resulting key secret based on an altered curve instead of the specified elliptic curve. Attackers may exfiltrate the victim's private key by choosing the altered curve. An attack requires the attacker being able to initiate message decryption and record the result. Furthermore the victim's key must offer an ECDH public key.\n\n\n## Recommendation\n\nUpgrade to version 4.3.0 or later.\nIf you are upgrading from a version \u003c4.0.0 it is highly recommended to read the `High-Level API Changes` section of the `openpgp` 4.0.0 release: https://github.com/openpgpjs/openpgpjs/releases/tag/v4.0.0","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2019-08-23T21:42:22.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2019-9155","https://github.com/openpgpjs/openpgpjs/pull/853","https://github.com/openpgpjs/openpgpjs/pull/853/commits/7ba4f8c655e7fd7706e8d7334e44b40fdf56c43e","https://github.com/openpgpjs/openpgpjs/releases/tag/v4.3.0","https://sec-consult.com/en/blog/advisories/multiple-vulnerabilities-in-openpgp-js/","https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/Studies/Mailvelope_Extensions/Mailvelope_Extensions_pdf.html#download=1","https://snyk.io/vuln/SNYK-JS-OPENPGP-460225","https://www.npmjs.com/advisories/1159","http://packetstormsecurity.com/files/154191/OpenPGP.js-4.2.0-Signature-Bypass-Invalid-Curve-Attack.html","https://github.com/advisories/GHSA-77jf-fjjf-xcww"],"source_kind":"github","identifiers":["GHSA-77jf-fjjf-xcww","CVE-2019-9155"],"repository_url":"https://github.com/openpgpjs/openpgpjs","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.3.0","vulnerable_version_range":"\u003c 4.3.0"}],"ecosystem":"npm","package_name":"openpgp"}],"created_at":"2022-12-21T16:13:28.417Z","updated_at":"2023-02-01T05:02:35.000Z","epss_percentage":0.00285,"epss_percentile":0.51537},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3cWMtMjh3My1md3c2","url":"https://github.com/advisories/GHSA-qwqc-28w3-fww6","title":"Message Signature Bypass in openpgp","description":"Versions of `openpgp` prior to 4.2.0 are vulnerable to Message Signature Bypass. The package fails to verify that a message signature is of type `text`. This allows an attacker to to construct a message with a signature type that only verifies subpackets without additional input (such as `standalone` or `timestamp`). For example, an attacker that captures a `standalone` signature packet from a victim can construct arbitrary signed messages that would be verified correctly.\n\n\n## Recommendation\n\nUpgrade to version 4.2.0 or later.\nIf you are upgrading from a version \u003c4.0.0 it is highly recommended to read the `High-Level API Changes` section of the `openpgp` 4.0.0 release: https://github.com/openpgpjs/openpgpjs/releases/tag/v4.0.0","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2019-08-23T21:42:20.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2019-9153","https://github.com/openpgpjs/openpgpjs/pull/797/commits/327d3e5392a6f59a4270569d200c7f7a2bfc4cbc","https://github.com/openpgpjs/openpgpjs/pull/816","https://github.com/openpgpjs/openpgpjs/releases/tag/v4.2.0","https://sec-consult.com/en/blog/advisories/multiple-vulnerabilities-in-openpgp-js/","https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/Studies/Mailvelope_Extensions/Mailvelope_Extensions_pdf.html#download=1","https://snyk.io/vuln/SNYK-JS-OPENPGP-460248","https://www.npmjs.com/advisories/1160","http://packetstormsecurity.com/files/154191/OpenPGP.js-4.2.0-Signature-Bypass-Invalid-Curve-Attack.html","https://github.com/advisories/GHSA-qwqc-28w3-fww6"],"source_kind":"github","identifiers":["GHSA-qwqc-28w3-fww6","CVE-2019-9153"],"repository_url":"https://github.com/openpgpjs/openpgpjs","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.0","vulnerable_version_range":"\u003c= 4.1.2"}],"ecosystem":"npm","package_name":"openpgp"}],"created_at":"2022-12-21T16:13:28.408Z","updated_at":"2023-01-09T05:01:55.000Z","epss_percentage":0.00362,"epss_percentile":0.57506},{"uuid":"GSA_kwCzR0hTQS1jaDNjLXY0N3gtNHBncM4AA1i9","url":"https://github.com/advisories/GHSA-ch3c-v47x-4pgp","title":"Cleartext Signed Message Signature Spoofing in openpgp","description":"### Impact\nOpenPGP Cleartext Signed Messages are cryptographically signed messages where the signed text is readable without special tools:\n\n```\n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\nThis text is signed.\n-----BEGIN PGP SIGNATURE-----\n\nwnUEARMIACcFgmTkrNAJkInXCgj0fgcIFiEE1JlKzzDGQxZmmHkYidcKCPR+\nBwgAAKXDAQDWGhI7tPbhB+jlKwe4+yPJ+9X8aWDUG60XFNi/w8T7ZgEAsAGd\nWJrkm/H5AXGZsqyqqO6IWGF0geTCd4mWm/CsveM=\n-----END PGP SIGNATURE-----\n```\nThese messages typically contain a \"Hash: ...\" header declaring the hash algorithm used to compute the signature digest.\nOpenPGP.js up to v5.9.0 ignored any data preceding the \"Hash: ...\" texts when verifying the signature. As a result, malicious parties could add arbitrary text to a third-party Cleartext Signed Message, to lead the victim to believe that the arbitrary text was signed.\n\nA user or application is vulnerable to said attack vector if it verifies the CleartextMessage by only checking the returned `verified` property, discarding the associated `data` information, and instead _visually trusting_ the contents of the original message:\n\n```js\nconst cleartextMessage = `\n-----BEGIN PGP SIGNED MESSAGE-----\nThis text is not signed but you might think it is. Hash: SHA256\n\nThis text is signed.\n-----BEGIN PGP SIGNATURE-----\n\nwnUEARMIACcFgmTkrNAJkInXCgj0fgcIFiEE1JlKzzDGQxZmmHkYidcKCPR+\nBwgAAKXDAQDWGhI7tPbhB+jlKwe4+yPJ+9X8aWDUG60XFNi/w8T7ZgEAsAGd\nWJrkm/H5AXGZsqyqqO6IWGF0geTCd4mWm/CsveM=\n-----END PGP SIGNATURE-----\n`;\nconst message = await openpgp.readCleartextMessage({ cleartextMessage });\nconst verificationResult = await verifyCleartextMessage({ message, verificationKeys });\nconsole.log(await verificationResult.verified); // output: true\nconsole.log(verificationResult.data); // output: 'This text is signed.'\n```\nSince `verificationResult.data` would always contain the actual signed data, users and apps that check this information are not vulnerable.\nSimilarly, given a CleartextMessage object, retrieving the data using `getText()` or the `text` field returns only the contents that are considered when verifying the signature.\nFinally, re-armoring a CleartextMessage object (using `armor()` will also result in a \"sanitised\" version, with the extraneous text being removed.\nBecause of this, we consider the vulnerability impact to be very limited when the CleartextMessage is processed programmatically; this is reflected in the Severity CVSS assessment, specifically in the scope's score (\"Unchanged\").\n\n### Patches\n- v5.10.1 (current stable version) will reject messages when calling `openpgp.readCleartextMessage()`\n- v4.10.11 (legacy version) will reject messages when calling `openpgp.cleartext.readArmored()`\n\n### Workarounds\nCheck the contents of `verificationResult.data` to see what data was actually signed, rather than visually trusting the contents of the armored message.\n\n### References\nSimilar CVE: https://sec-consult.com/vulnerability-lab/advisory/cleartext-message-spoofing-in-go-cryptography-libraries-cve-2019-11841/\n","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-08-29T17:36:40.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-ch3c-v47x-4pgp","https://github.com/openpgpjs/openpgpjs/releases/tag/v4.10.11","https://github.com/openpgpjs/openpgpjs/releases/tag/v5.10.1","https://nvd.nist.gov/vuln/detail/CVE-2023-41037","https://github.com/openpgpjs/openpgpjs/commit/6b43e02a254853f5ff508ebd1b07541f78b7c566","https://github.com/advisories/GHSA-ch3c-v47x-4pgp"],"source_kind":"github","identifiers":["GHSA-ch3c-v47x-4pgp","CVE-2023-41037"],"repository_url":"https://github.com/openpgpjs/openpgpjs","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"5.10.1","vulnerable_version_range":"\u003e= 5.0.0, \u003c 5.10.1"},{"first_patched_version":"4.10.11","vulnerable_version_range":"\u003c 4.10.11"}],"ecosystem":"npm","package_name":"openpgp"}],"created_at":"2023-08-29T18:05:28.379Z","updated_at":"2023-11-06T05:00:40.000Z","epss_percentage":0.00076,"epss_percentile":0.23531},{"uuid":"GSA_kwCzR0hTQS04cWZmLXFyNXEtNXByOM4ABIHq","url":"https://github.com/advisories/GHSA-8qff-qr5q-5pr8","title":"OpenPGP.js's message signature verification can be spoofed","description":"### Impact\nA maliciously modified message can be passed to either `openpgp.verify` or `openpgp.decrypt`, causing these functions to return a valid signature verification result while returning data that was not actually signed.\n\nThis flaw allows signature verifications of inline (non-detached) signed messages (using `openpgp.verify`) and signed-and-encrypted messages (using `openpgp.decrypt` with `verificationKeys`) to be spoofed, since both functions return extracted data that may not match the data that was originally signed. Detached signature verifications are not affected, as no signed data is returned in that case.\n\nIn order to spoof a message, the attacker needs a single valid message signature (inline or detached) as well as the plaintext data that was legitimately signed, and can then construct an inline-signed message or signed-and-encrypted message with any data of the attacker's choice, which will appear as legitimately signed by affected versions of OpenPGP.js.\n\nIn other words. any inline-signed message can be modified to return any other data (while still indicating that the signature was valid), and the same is true for signed+encrypted messages if the attacker can obtain a valid signature and encrypt a new message (of the attacker's choice) together with that signature.\n\nBoth OpenPGP.js v6 and v5 are affected. OpenPGP.js v4 is not affected.\n\n### Patches\nThe issue has been patched in versions 5.11.3 and 6.1.1.\n\n### Workarounds\n- When verifying inline-signed messages, extract the message and signature(s) from the message returned by `openpgp.readMessage`, and verify the(/each) signature as a detached signature by passing the signature and a new message containing only the data (created using `openpgp.createMessage`) to `openpgp.verify`.\n- When decrypting and verifying signed+encrypted messages, decrypt and verify the message in two steps, by first calling `openpgp.decrypt` without `verificationKeys`, and then passing the returned signature(s) and a new message containing the decrypted data (created using `openpgp.createMessage`) to `openpgp.verify`.\n\n### Acknowledgements\nWe would like to thank:\n- Edoardo Geraci and Thomas Rinsma of [Codean Labs](https://codeanlabs.com/) for finding and reporting this vulnerability\n- The [Sovereign Tech Agency](https://www.sovereign.tech/) for sponsoring the [OpenPGP.js bug bounty program](https://yeswehack.com/programs/openpgp-js-bug-bounty-program)\n- [YesWeHack](https://www.yeswehack.com/) for hosting the [OpenPGP.js bug bounty program](https://yeswehack.com/programs/openpgp-js-bug-bounty-program)","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2025-05-19T21:54:43.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.7,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N","references":["https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8","https://nvd.nist.gov/vuln/detail/CVE-2025-47934","https://github.com/openpgpjs/openpgpjs/commit/43f5f4e2bd67d0514d06acc60b6ee571a049c229","https://github.com/openpgpjs/openpgpjs/commit/843a69d0adbdec0f87af09f9000a9223e6614e5c","https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356","https://github.com/openpgpjs/openpgpjs/releases/tag/v5.11.3","https://github.com/openpgpjs/openpgpjs/releases/tag/v6.1.1","https://github.com/advisories/GHSA-8qff-qr5q-5pr8"],"source_kind":"github","identifiers":["GHSA-8qff-qr5q-5pr8","CVE-2025-47934"],"repository_url":"https://github.com/openpgpjs/openpgpjs","blast_radius":27.041571910461876,"packages":[{"versions":[{"first_patched_version":"6.1.1","vulnerable_version_range":"\u003e= 6.0.0-alpha.0, \u003c= 6.1.0"},{"first_patched_version":"5.11.3","vulnerable_version_range":"\u003e= 5.0.1, \u003c= 5.11.2"}],"ecosystem":"npm","package_name":"openpgp"}],"created_at":"2025-05-19T22:07:59.170Z","updated_at":"2025-05-19T21:54:44.000Z","epss_percentage":null,"epss_percentile":null},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhmbWYtcTQzdi0yZmZq","url":"https://github.com/advisories/GHSA-hfmf-q43v-2ffj","title":"Improper Key Verification in openpgp","description":"Versions of `openpgp` prior to 4.2.0 are vulnerable to Improper Key Verification. The OpenPGP standard allows signature packets to have subpackets which may be hashed or unhashed. Unhashed subpackets are not cryptographically protected and cannot be trusted. The `openpgp` package does not verify whether a subpacket is hashed. Furthermore, due to the order of parsing a signature packet information from unhashed subpackets overwrites information from hashed subpackets. This may allow an attacker to modify the contents of a key certification signature or revocation signature. Doing so could convince a victim to use an obsolete key for encryption. An attack require a victim to import a manipulated key or update an existing key with a manipulated version.\n\n\n## Recommendation\n\nUpgrade to version 4.2.0 or later. \nIf you are upgrading from a version \u003c4.0.0 it is highly recommended to read the `High-Level API Changes` section of the `openpgp` 4.0.0 release: https://github.com/openpgpjs/openpgpjs/releases/tag/v4.0.0","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2019-08-23T21:42:18.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2019-9154","https://github.com/openpgpjs/openpgpjs/pull/797","https://github.com/openpgpjs/openpgpjs/pull/797/commits/47138eed61473e13ee8f05931119d3e10542c5e1","https://github.com/openpgpjs/openpgpjs/releases/tag/v4.2.0","https://sec-consult.com/en/blog/advisories/multiple-vulnerabilities-in-openpgp-js/","https://www.bsi.bund.de/SharedDocs/Downloads/EN/BSI/Publications/Studies/Mailvelope_Extensions/Mailvelope_Extensions_pdf.html#download=1","https://snyk.io/vuln/SNYK-JS-OPENPGP-460247","https://www.npmjs.com/advisories/1161","http://packetstormsecurity.com/files/154191/OpenPGP.js-4.2.0-Signature-Bypass-Invalid-Curve-Attack.html","https://github.com/advisories/GHSA-hfmf-q43v-2ffj"],"source_kind":"github","identifiers":["GHSA-hfmf-q43v-2ffj","CVE-2019-9154"],"repository_url":"https://github.com/openpgpjs/openpgpjs","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"4.2.0","vulnerable_version_range":"\u003c= 4.1.2"}],"ecosystem":"npm","package_name":"openpgp"}],"created_at":"2022-12-21T16:13:28.399Z","updated_at":"2023-01-09T05:02:03.000Z","epss_percentage":0.00389,"epss_percentile":0.58857},{"uuid":"GSA_kwCzR0hTQS1xbXZxLWYzZmotbTN3Z84AAa3s","url":"https://github.com/advisories/GHSA-qmvq-f3fj-m3wg","title":"OpenPGP 1.2.0 and earlier decrypts arbitrary messages","description":"s2k.js in OpenPGP.js will decrypt arbitrary messages regardless of passphrase for crafted PGP keys which allows remote attackers to bypass authentication if message decryption is used as an authentication mechanism via a crafted symmetrically encrypted PGP message.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2022-05-17T02:15:35.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2015-8013","https://github.com/openpgpjs/openpgpjs/commit/668a9bbe7033f3f475576209305eb57a54306d29","http://www.openwall.com/lists/oss-security/2015/10/30/5","https://github.com/advisories/GHSA-qmvq-f3fj-m3wg"],"source_kind":"github","identifiers":["GHSA-qmvq-f3fj-m3wg","CVE-2015-8013"],"repository_url":"https://github.com/openpgpjs/openpgpjs","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"1.3.0","vulnerable_version_range":"\u003c 1.3.0"}],"ecosystem":"npm","package_name":"openpgp"}],"created_at":"2022-12-21T16:12:18.717Z","updated_at":"2023-01-27T05:02:48.000Z","epss_percentage":0.0193,"epss_percentile":0.81741}],"docker_usage_url":"https://docker.ecosyste.ms/usage/npm/openpgp","docker_dependents_count":113,"docker_downloads_count":356839972,"usage_url":"https://repos.ecosyste.ms/usage/npm/openpgp","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/npm/openpgp/dependencies","status":null,"funding_links":[],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/openpgp/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/openpgp/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/openpgp/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/openpgp/related_packages","maintainers":[{"uuid":"larabr","login":"larabr","name":null,"email":"larabr@protonmail.com","url":null,"packages_count":21,"html_url":"https://www.npmjs.com/~larabr","role":null,"created_at":"2022-11-10T12:04:46.369Z","updated_at":"2022-11-10T12:04:46.369Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/larabr/packages"},{"uuid":"twiss","login":"twiss","name":null,"email":"d.huigens@protonmail.com","url":null,"packages_count":31,"html_url":"https://www.npmjs.com/~twiss","role":null,"created_at":"2022-11-10T12:04:46.363Z","updated_at":"2022-11-10T12:04:46.363Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/twiss/packages"},{"uuid":"bartbutler","login":"bartbutler","name":null,"email":"bartbutler@protonmail.com","url":null,"packages_count":29,"html_url":"https://www.npmjs.com/~bartbutler","role":null,"created_at":"2022-11-10T12:04:46.367Z","updated_at":"2022-11-10T12:04:46.367Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/bartbutler/packages"},{"uuid":"tanx","login":"tanx","name":null,"email":"info@tankredhase.de","url":null,"packages_count":25,"html_url":"https://www.npmjs.com/~tanx","role":null,"created_at":"2022-11-10T12:04:46.359Z","updated_at":"2022-11-10T12:04:46.359Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/tanx/packages"},{"uuid":"toberndo","login":"toberndo","name":null,"email":"toberndo@yarkon.de","url":null,"packages_count":2,"html_url":"https://www.npmjs.com/~toberndo","role":null,"created_at":"2022-11-10T12:04:46.356Z","updated_at":"2022-11-10T12:04:46.356Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/toberndo/packages"}],"registry":{"name":"npmjs.org","url":"https://registry.npmjs.org","ecosystem":"npm","default":true,"packages_count":5007760,"maintainers_count":1013018,"namespaces_count":295512,"keywords_count":700181,"github":"npm","metadata":{"funded_packages_count":150239},"icon_url":"https://github.com/npm.png","created_at":"2022-04-04T15:19:23.081Z","updated_at":"2025-06-06T05:58:05.971Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/namespaces"}},"unique_repositories_count":108,"unique_repositories_count_past_30_days":3,"recent_issues":[{"uuid":"4632606320","node_id":"PR_kwDOP5MuvM7k61r9","number":210,"state":"open","title":"build(deps): bump the minor-patches group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-10T15:23:42.000Z","updated_at":"2026-06-10T18:54:22.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-patches","update_count":17,"packages":[{"name":"@aws-sdk/client-lambda","old_version":"3.1061.0","new_version":"3.1065.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/client-secrets-manager","old_version":"3.1061.0","new_version":"3.1065.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/util-arn-parser","old_version":"3.972.12","new_version":"3.972.15","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@chakra-ui/theme-tools","old_version":"2.2.9","new_version":"2.2.10","repository_url":"https://github.com/chakra-ui/chakra-ui"},{"name":"@nestjs/common","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"@nestjs/core","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"@nestjs/platform-express","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"openpgp","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"react-hook-form","old_version":"7.77.0","new_version":"7.78.0","repository_url":"https://github.com/react-hook-form/react-hook-form"},{"name":"@nestjs/testing","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"@swc/core","old_version":"1.15.40","new_version":"1.15.41","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/react","old_version":"19.2.16","new_version":"19.2.17","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.60.1","new_version":"8.61.0","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"cypress","old_version":"15.16.0","new_version":"15.17.0","repository_url":"https://github.com/cypress-io/cypress"},{"name":"eslint-plugin-storybook","old_version":"10.4.2","new_version":"10.4.3","repository_url":"https://github.com/storybookjs/storybook"},{"name":"prettier","old_version":"3.8.3","new_version":"3.8.4","repository_url":"https://github.com/prettier/prettier"},{"name":"semantic-release","old_version":"25.0.3","new_version":"25.0.5","repository_url":"https://github.com/semantic-release/semantic-release"}],"path":null,"ecosystem":"npm"},"body":"Bumps the minor-patches group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@aws-sdk/client-lambda](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda) | `3.1061.0` | `3.1065.0` |\n| [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) | `3.1061.0` | `3.1065.0` |\n| [@aws-sdk/util-arn-parser](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/packages-internal/util-arn-parser) | `3.972.12` | `3.972.15` |\n| [@chakra-ui/theme-tools](https://github.com/chakra-ui/chakra-ui/tree/HEAD/packages/components/theme-tools) | `2.2.9` | `2.2.10` |\n| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `11.1.24` | `11.1.26` |\n| [@nestjs/core](https://github.com/nestjs/nest/tree/HEAD/packages/core) | `11.1.24` | `11.1.26` |\n| [@nestjs/platform-express](https://github.com/nestjs/nest/tree/HEAD/packages/platform-express) | `11.1.24` | `11.1.26` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.3.0` | `6.3.1` |\n| [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.77.0` | `7.78.0` |\n| [@nestjs/testing](https://github.com/nestjs/nest/tree/HEAD/packages/testing) | `11.1.24` | `11.1.26` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.40` | `1.15.41` |\n| [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.2.16` | `19.2.17` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.60.1` | `8.61.0` |\n| [cypress](https://github.com/cypress-io/cypress) | `15.16.0` | `15.17.0` |\n| [eslint-plugin-storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/eslint-plugin) | `10.4.2` | `10.4.3` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.3` | `3.8.4` |\n| [semantic-release](https://github.com/semantic-release/semantic-release) | `25.0.3` | `25.0.5` |\n\n\nUpdates `@aws-sdk/client-lambda` from 3.1061.0 to 3.1065.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e@​aws-sdk/client-lambda's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1065.0\u003c/h2\u003e\n\u003ch4\u003e3.1065.0(2026-06-09)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003elib-transfer-manager:\u003c/strong\u003e  sort scripts alphabetically (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8087\"\u003e#8087\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0441d8b754e75b86959a45240541d2665610885b\"\u003e0441d8b7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-06-09 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/935d71be412b58187acbaa20fbc3f8e1003f9a73\"\u003e935d71be\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-write:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/45148681a66afe8e7bbf6a3845eb86c1bf3c2d1a\"\u003e45148681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cloudwatch:\u003c/strong\u003e  This release adds the APIs (AssociateDatasetKmsKey, DisassociateDatasetKmsKey, GetDataset) to manage encryption at rest for OpenTelemetry metrics in CloudWatch using AWS KMS customer managed keys. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/67566cd62dec418034287e32dea4e2e88fc803e5\"\u003e67566cd6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-marketplace-commerce-analytics:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0adb8bd9484bbf97b40554fa13dc26fa1a5b2001\"\u003e0adb8bd9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Adds support for the Amazon Bedrock account-level data retention APIs PutAccountDataRetention and GetAccountDataRetention. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9acf4f7fb1df00c72c671a372e8712de0c98c0c5\"\u003e9acf4f7f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-odb:\u003c/strong\u003e  Releases Autonomous Database Serverless APIs, autonomousDatabaseOciIntegrationIamRoles, linkedOciTenancyId, linkedOciCompartmentId, and subscriptionErrors fields in GetOciOnboardingStatus API response. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/fad7009ced5a19c5953633ad1530c58c8d874046\"\u003efad7009c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-query:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/878fc723bc8d77161255f8b3c12aa5cb14e9382f\"\u003e878fc723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-dynamodb-streams:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/eeaa78277d41ca386013742e00281928b97b26ae\"\u003eeeaa7827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added TagFieldSpecifications to CreateFlowLogs and DescribeFlowLogs APIs. Customers can now specify tag keys in their Flow Logs subscriptions to capture associated EC2 resource tag values in their logs, enabling tag-based visibility. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6a382a8a858c47a3304b80ac242882d2f1073f26\"\u003e6a382a8a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore:\u003c/strong\u003e  Add RetryableConflictException (HTTP 409) to InvokeAgentRuntimeCommand and GetAgentCard to prevent orphaned VMs during concurrent session access. The SDK automatically retries this exception with backoff. Enforcement is not yet active and will be enabled in a future service update. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a9c4a0dac49fd624896af7d0c38950f39328df63\"\u003ea9c4a0da\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-outposts:\u003c/strong\u003e  Added AWS Outposts APIs for self-service Outposts quoting and ordering. New operations include CreateQuote, GetQuote, UpdateQuote, DeleteQuote, ListQuotes, and ListOrderableInstanceTypes. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb1279eff5d814bc9795836dfc2b9d47f75bf6b5\"\u003ebb1279ef\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-iotsitewise:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b9314d4a457e338d7975076f1b7923fea4febbdd\"\u003eb9314d4a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecredential-provider-sso:\u003c/strong\u003e  forward clientConfig to SSO token provider (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8089\"\u003e#8089\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4bacac32fc593bd47a48501504575cf15eaffaba\"\u003e4bacac32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecore:\u003c/strong\u003e  export legacy root symbols from submodules instead of relative paths (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8086\"\u003e#8086\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/abea090cb45feecf626d4abeffde999b774350a2\"\u003eabea090c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eTests\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-sdk-s3:\u003c/strong\u003e  use crypto.randomUUID for E2E test bucket names (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8088\"\u003e#8088\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ba4d1941fc941533bae5121efd5237d28dda012d\"\u003eba4d1941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1065.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1064.0\u003c/h2\u003e\n\u003ch4\u003e3.1064.0(2026-06-08)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003escripts:\u003c/strong\u003e  update pkg json linting (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8082\"\u003e#8082\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e86792c5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cost-optimization-hub:\u003c/strong\u003e  Adds new Idle Recommendation types in the Cost Optimization Hub API (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/872710e9a6c5d5ad7fa808fe46748c90e179f4b7\"\u003e872710e9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  Added optional identityCenterRegion parameter to AssociateMember APIs to allow managing memberships for users and groups in other regions. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5f03ea0e77154cb43a3f6cce30d32f87f8fb47fb\"\u003e5f03ea0e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-devops-agent:\u003c/strong\u003e  Add Asset APIs for managing versioned assets and asset files in AWS DevOps Agent agent spaces. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bcef96141a9661948e0336835e2548ab007827f6\"\u003ebcef9614\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mgn:\u003c/strong\u003e  AWS Transform discovery tool now supported as network migration input source. You can now use the AWS Transform Discovery tool as a source for network migration alongside modelizeIT, enabling hybrid network migrations for environments running both VMware and non-VMware workloads. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/2cff08e654ea5a3b2d9f16800f25e83e596e1b5b\"\u003e2cff08e6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mediapackagev2:\u003c/strong\u003e  Adds support for DASH Audio Timeline Patternization. This enables your DASH manifests to templatize the repeating patterns that emerge in audio segment timelines. This compacts the total timeline length, utilizing the repeat notation, such that manifests don't grow indefinitely long. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5aad0234fa646eda7b921b07d6b3472f124771a4\"\u003e5aad0234\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-lambda/CHANGELOG.md\"\u003e@​aws-sdk/client-lambda's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1064.0...v3.1065.0\"\u003e3.1065.0\u003c/a\u003e (2026-06-09)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1063.0...v3.1064.0\"\u003e3.1064.0\u003c/a\u003e (2026-06-08)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1062.0...v3.1063.0\"\u003e3.1063.0\u003c/a\u003e (2026-06-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1061.0...v3.1062.0\"\u003e3.1062.0\u003c/a\u003e (2026-06-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/62daf07c545b1fbac5753c554e2c8298ae6b820f\"\u003e\u003ccode\u003e62daf07\u003c/code\u003e\u003c/a\u003e Publish v3.1065.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bac71756a62d28fb08dce3e219176b365118eae4\"\u003e\u003ccode\u003ebac7175\u003c/code\u003e\u003c/a\u003e Publish v3.1064.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e\u003ccode\u003e86792c5\u003c/code\u003e\u003c/a\u003e chore(scripts): update pkg json linting (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/8082\"\u003e#8082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/85dabf4ef0c81d9db5405c483b3bfbd2126075d4\"\u003e\u003ccode\u003e85dabf4\u003c/code\u003e\u003c/a\u003e Publish v3.1063.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9bd1a86b9bec0f69c58dcfdda481c9e1797dd73f\"\u003e\u003ccode\u003e9bd1a86\u003c/code\u003e\u003c/a\u003e chore: update author URL in package.json (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/8080\"\u003e#8080\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0dfa4ad150e0283cf787cd231600aeb7d75695f0\"\u003e\u003ccode\u003e0dfa4ad\u003c/code\u003e\u003c/a\u003e test(clients): add client error deserialization tests (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/8075\"\u003e#8075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/f5235bbaa2e234435fed935ae69df09b33149d0c\"\u003e\u003ccode\u003ef5235bb\u003c/code\u003e\u003c/a\u003e Publish v3.1062.0\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1065.0/clients/client-lambda\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/client-secrets-manager` from 3.1061.0 to 3.1065.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e@​aws-sdk/client-secrets-manager's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1065.0\u003c/h2\u003e\n\u003ch4\u003e3.1065.0(2026-06-09)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003elib-transfer-manager:\u003c/strong\u003e  sort scripts alphabetically (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8087\"\u003e#8087\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0441d8b754e75b86959a45240541d2665610885b\"\u003e0441d8b7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-06-09 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/935d71be412b58187acbaa20fbc3f8e1003f9a73\"\u003e935d71be\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-write:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/45148681a66afe8e7bbf6a3845eb86c1bf3c2d1a\"\u003e45148681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cloudwatch:\u003c/strong\u003e  This release adds the APIs (AssociateDatasetKmsKey, DisassociateDatasetKmsKey, GetDataset) to manage encryption at rest for OpenTelemetry metrics in CloudWatch using AWS KMS customer managed keys. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/67566cd62dec418034287e32dea4e2e88fc803e5\"\u003e67566cd6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-marketplace-commerce-analytics:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0adb8bd9484bbf97b40554fa13dc26fa1a5b2001\"\u003e0adb8bd9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Adds support for the Amazon Bedrock account-level data retention APIs PutAccountDataRetention and GetAccountDataRetention. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9acf4f7fb1df00c72c671a372e8712de0c98c0c5\"\u003e9acf4f7f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-odb:\u003c/strong\u003e  Releases Autonomous Database Serverless APIs, autonomousDatabaseOciIntegrationIamRoles, linkedOciTenancyId, linkedOciCompartmentId, and subscriptionErrors fields in GetOciOnboardingStatus API response. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/fad7009ced5a19c5953633ad1530c58c8d874046\"\u003efad7009c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-query:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/878fc723bc8d77161255f8b3c12aa5cb14e9382f\"\u003e878fc723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-dynamodb-streams:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/eeaa78277d41ca386013742e00281928b97b26ae\"\u003eeeaa7827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added TagFieldSpecifications to CreateFlowLogs and DescribeFlowLogs APIs. Customers can now specify tag keys in their Flow Logs subscriptions to capture associated EC2 resource tag values in their logs, enabling tag-based visibility. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6a382a8a858c47a3304b80ac242882d2f1073f26\"\u003e6a382a8a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore:\u003c/strong\u003e  Add RetryableConflictException (HTTP 409) to InvokeAgentRuntimeCommand and GetAgentCard to prevent orphaned VMs during concurrent session access. The SDK automatically retries this exception with backoff. Enforcement is not yet active and will be enabled in a future service update. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a9c4a0dac49fd624896af7d0c38950f39328df63\"\u003ea9c4a0da\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-outposts:\u003c/strong\u003e  Added AWS Outposts APIs for self-service Outposts quoting and ordering. New operations include CreateQuote, GetQuote, UpdateQuote, DeleteQuote, ListQuotes, and ListOrderableInstanceTypes. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb1279eff5d814bc9795836dfc2b9d47f75bf6b5\"\u003ebb1279ef\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-iotsitewise:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b9314d4a457e338d7975076f1b7923fea4febbdd\"\u003eb9314d4a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecredential-provider-sso:\u003c/strong\u003e  forward clientConfig to SSO token provider (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8089\"\u003e#8089\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4bacac32fc593bd47a48501504575cf15eaffaba\"\u003e4bacac32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecore:\u003c/strong\u003e  export legacy root symbols from submodules instead of relative paths (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8086\"\u003e#8086\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/abea090cb45feecf626d4abeffde999b774350a2\"\u003eabea090c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eTests\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-sdk-s3:\u003c/strong\u003e  use crypto.randomUUID for E2E test bucket names (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8088\"\u003e#8088\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ba4d1941fc941533bae5121efd5237d28dda012d\"\u003eba4d1941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1065.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1064.0\u003c/h2\u003e\n\u003ch4\u003e3.1064.0(2026-06-08)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003escripts:\u003c/strong\u003e  update pkg json linting (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8082\"\u003e#8082\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e86792c5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cost-optimization-hub:\u003c/strong\u003e  Adds new Idle Recommendation types in the Cost Optimization Hub API (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/872710e9a6c5d5ad7fa808fe46748c90e179f4b7\"\u003e872710e9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  Added optional identityCenterRegion parameter to AssociateMember APIs to allow managing memberships for users and groups in other regions. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5f03ea0e77154cb43a3f6cce30d32f87f8fb47fb\"\u003e5f03ea0e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-devops-agent:\u003c/strong\u003e  Add Asset APIs for managing versioned assets and asset files in AWS DevOps Agent agent spaces. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bcef96141a9661948e0336835e2548ab007827f6\"\u003ebcef9614\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mgn:\u003c/strong\u003e  AWS Transform discovery tool now supported as network migration input source. You can now use the AWS Transform Discovery tool as a source for network migration alongside modelizeIT, enabling hybrid network migrations for environments running both VMware and non-VMware workloads. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/2cff08e654ea5a3b2d9f16800f25e83e596e1b5b\"\u003e2cff08e6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mediapackagev2:\u003c/strong\u003e  Adds support for DASH Audio Timeline Patternization. This enables your DASH manifests to templatize the repeating patterns that emerge in audio segment timelines. This compacts the total timeline length, utilizing the repeat notation, such that manifests don't grow indefinitely long. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5aad0234fa646eda7b921b07d6b3472f124771a4\"\u003e5aad0234\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-secrets-manager/CHANGELOG.md\"\u003e@​aws-sdk/client-secrets-manager's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1064.0...v3.1065.0\"\u003e3.1065.0\u003c/a\u003e (2026-06-09)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1063.0...v3.1064.0\"\u003e3.1064.0\u003c/a\u003e (2026-06-08)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1062.0...v3.1063.0\"\u003e3.1063.0\u003c/a\u003e (2026-06-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1061.0...v3.1062.0\"\u003e3.1062.0\u003c/a\u003e (2026-06-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/62daf07c545b1fbac5753c554e2c8298ae6b820f\"\u003e\u003ccode\u003e62daf07\u003c/code\u003e\u003c/a\u003e Publish v3.1065.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bac71756a62d28fb08dce3e219176b365118eae4\"\u003e\u003ccode\u003ebac7175\u003c/code\u003e\u003c/a\u003e Publish v3.1064.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e\u003ccode\u003e86792c5\u003c/code\u003e\u003c/a\u003e chore(scripts): update pkg json linting (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/8082\"\u003e#8082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/85dabf4ef0c81d9db5405c483b3bfbd2126075d4\"\u003e\u003ccode\u003e85dabf4\u003c/code\u003e\u003c/a\u003e Publish v3.1063.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9bd1a86b9bec0f69c58dcfdda481c9e1797dd73f\"\u003e\u003ccode\u003e9bd1a86\u003c/code\u003e\u003c/a\u003e chore: update author URL in package.json (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/8080\"\u003e#8080\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/f5235bbaa2e234435fed935ae69df09b33149d0c\"\u003e\u003ccode\u003ef5235bb\u003c/code\u003e\u003c/a\u003e Publish v3.1062.0\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1065.0/clients/client-secrets-manager\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/util-arn-parser` from 3.972.12 to 3.972.15\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/packages-internal/util-arn-parser/CHANGELOG.md\"\u003e@​aws-sdk/util-arn-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.972.15 (2026-06-09)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eutil-arn-parser:\u003c/strong\u003e update dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.14 (2026-06-08)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003escripts:\u003c/strong\u003e update pkg json linting (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/8082\"\u003e#8082\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e86792c5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.13 (2026-06-05)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate author URL in package.json (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/8080\"\u003e#8080\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9bd1a86b9bec0f69c58dcfdda481c9e1797dd73f\"\u003e9bd1a86\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/HEAD/packages-internal/util-arn-parser\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@chakra-ui/theme-tools` from 2.2.9 to 2.2.10\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/chakra-ui/chakra-ui/commits/@chakra-ui/theme-tools@2.2.10/packages/components/theme-tools\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/common` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/common's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/common/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/1634915597884f677b823ec0d77931f1637dede7\"\u003e\u003ccode\u003e1634915\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for cli-colors utility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/380bf5c13c7f22d24b871af8a412852f36d7030a\"\u003e\u003ccode\u003e380bf5c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/common/issues/17058\"\u003e#17058\u003c/a\u003e from Se3do/test/extend-metadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/af4542b9c0f56262090bf0097444b71456cb0139\"\u003e\u003ccode\u003eaf4542b\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for assignCustomParameterMetadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/b67aea1505d568c6b80318707c2642ba395a5510\"\u003e\u003ccode\u003eb67aea1\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for extendArrayMetadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/e1e401444ba0c32a11ab5f82994f408be0b65eba\"\u003e\u003ccode\u003ee1e4014\u003c/code\u003e\u003c/a\u003e test(common): Tighten throw assertions in validateModuleKeys spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6b97771a58068e885f7adf3f888f1a660ac3a08f\"\u003e\u003ccode\u003e6b97771\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for validateModuleKeys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/5a57222c0aea9e36d2f8780bc8b5558039e659bd\"\u003e\u003ccode\u003e5a57222\u003c/code\u003e\u003c/a\u003e test(common): add unit test for Optional decorator\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/deed1b32ff9a71454dc106c776b12f7ac38f6046\"\u003e\u003ccode\u003edeed1b3\u003c/code\u003e\u003c/a\u003e docs(common): add \u003ca href=\"https://github.com/see\"\u003e\u003ccode\u003e@​see\u003c/code\u003e\u003c/a\u003e reference to Res alias JSDoc\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/core` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/core's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/core/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0f398fd86de387fce28669ddd7a4049d4054f9e5\"\u003e\u003ccode\u003e0f398fd\u003c/code\u003e\u003c/a\u003e test: fix broken unit test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/d152eec8ebba6a38eb448021a83018b43372192e\"\u003e\u003ccode\u003ed152eec\u003c/code\u003e\u003c/a\u003e fix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/core/issues/17098\"\u003e#17098\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/e2ad4e23f637bef1ce804ee6e93367a1d875b9e9\"\u003e\u003ccode\u003ee2ad4e2\u003c/code\u003e\u003c/a\u003e Update package.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/396cf81a9e5db8a33fad7adbe26c5e893b459bf0\"\u003e\u003ccode\u003e396cf81\u003c/code\u003e\u003c/a\u003e refactor(core): avoid duplicating sse intercept call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/55cd6991f7e68d64ba8be93236d2857a47229247\"\u003e\u003ccode\u003e55cd699\u003c/code\u003e\u003c/a\u003e fix(core): preserve deferred SSE handlers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/7b5ca835a6ea449476107595416c93cf775c5786\"\u003e\u003ccode\u003e7b5ca83\u003c/code\u003e\u003c/a\u003e fix(core): register SSE close listener before async setup\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/platform-express` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/platform-express's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/platform-express/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/platform-express\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.3.0 to 6.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e for argon2 memory limit (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1943\"\u003e#1943\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2014\"\u003e#2014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix RSA signing using SHA3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1952\"\u003e#1952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow creating signature notations when generating/reformatting keys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1953\"\u003e#1953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003e'node16'\u003c/code\u003e/\u003ccode\u003e'nodenext'\u003c/code\u003e compatibility, and emit type declarations for .ts files with external exports under \u003ccode\u003edist/types\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1987\"\u003e#1987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix AnyPacket declaration to also include \u003ccode\u003eBasePacket\u0026lt;true\u0026gt;\u003c/code\u003e subclasses (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1991\"\u003e#1991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-zero IV usages for AES-CFB (spec compliance issue; no security or interoperability impact) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ac0048404b74a3595d503125b53f3b3d0486bec\"\u003e\u003ccode\u003e2ac0048\u003c/code\u003e\u003c/a\u003e 6.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/3c6abc9a9b1ad33a02a96a6e420857f63ba387c9\"\u003e\u003ccode\u003e3c6abc9\u003c/code\u003e\u003c/a\u003e Argon2: set hard limit for \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e to cap memory at ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cba29041e089b18a44d32d0defa1ccf0414bb938\"\u003e\u003ccode\u003ecba2904\u003c/code\u003e\u003c/a\u003e Internal: fix \u003ccode\u003ereadExactSubarray\u003c/code\u003e to correctly enforce end boundary (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2013\"\u003e#2013\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/4318a48703d9bd606d3062a4e485ef14d08dfd4c\"\u003e\u003ccode\u003e4318a48\u003c/code\u003e\u003c/a\u003e Run npm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/dd9274e9e23ef3e25cb14df9e3b6ff4177758757\"\u003e\u003ccode\u003edd9274e\u003c/code\u003e\u003c/a\u003e Fix non-zero IV usages for AES-CFB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/0a67d5e9b056f7696c2c21a53981c8cbfd6a1cf9\"\u003e\u003ccode\u003e0a67d5e\u003c/code\u003e\u003c/a\u003e npm: add \u003ccode\u003emin-release-age\u003c/code\u003e constraint (for manual installs)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ba545d4015ca65e35b93c2d1facd310ce1e94fb\"\u003e\u003ccode\u003e2ba545d\u003c/code\u003e\u003c/a\u003e Bump the dev-dependencies group across 1 directory with 9 updates (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2011\"\u003e#2011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/657ac6495e3aa78f78bdfd18edad38a042fcb066\"\u003e\u003ccode\u003e657ac64\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-unicorn from 62.0.0 to 64.0.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1999\"\u003e#1999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/df8c044392042cd2a1fac50d74081aefbf598e51\"\u003e\u003ccode\u003edf8c044\u003c/code\u003e\u003c/a\u003e Bump fflate from 0.8.2 to 0.8.3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2007\"\u003e#2007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/38915311010a1984078a41f6df90e898751e3acb\"\u003e\u003ccode\u003e3891531\u003c/code\u003e\u003c/a\u003e Bump fast-xml-builder (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2003\"\u003e#2003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `react-hook-form` from 7.77.0 to 7.78.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/react-hook-form/react-hook-form/releases\"\u003ereact-hook-form's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 7.78.0\u003c/h2\u003e\n\u003cp\u003e🦷 update type dirtyFields typing for field arrays with undefined entries (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13492\"\u003e#13492\u003c/a\u003e)\n🐞 fix: recover Controller fields after reset without rerender (RN issue \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13455\"\u003e#13455\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13497\"\u003e#13497\u003c/a\u003e)\n🐞 fix useFormState().isDirty race with async resolver in onChange mode (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13495\"\u003e#13495\u003c/a\u003e)\n🐞 fix: use reactive values prop over defaultValues when shouldUnregister is true (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13485\"\u003e#13485\u003c/a\u003e)\n🐞 fix deepEqual for empty non-plain objects (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13493\"\u003e#13493\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003ethanks to \u003ca href=\"https://github.com/cyphercodes\"\u003e\u003ccode\u003e@​cyphercodes\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md\"\u003ereact-hook-form's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/23ab3a7b9f3c46af17d62bdedd0f9101684ebfa7\"\u003e\u003ccode\u003e23ab3a7\u003c/code\u003e\u003c/a\u003e 7.78.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/29fbd7dd35f0ee443c24dd442d7c87a48fd34918\"\u003e\u003ccode\u003e29fbd7d\u003c/code\u003e\u003c/a\u003e 🪭 close \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13506\"\u003e#13506\u003c/a\u003e add regression test for useFormState\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/b0005091e3c160af1cf505d8a8de5e0202f9794b\"\u003e\u003ccode\u003eb000509\u003c/code\u003e\u003c/a\u003e 📝 test: fix \u0026quot;allow to\u0026quot; grammar in test descriptions (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13504\"\u003e#13504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/76187c308a3266cd58401bb895a514149abec586\"\u003e\u003ccode\u003e76187c3\u003c/code\u003e\u003c/a\u003e 🧪 add unit test for regression render submit with useWatch \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13035\"\u003e#13035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/16c35fbe83b4d24391fda375ac193c8aa0b47912\"\u003e\u003ccode\u003e16c35fb\u003c/code\u003e\u003c/a\u003e 🫡 add regression coverage for dynamic Controller names with keepDirtyValues/k...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/0bd39fa25cc20f69fc8fdb10241102016aaf20c0\"\u003e\u003ccode\u003e0bd39fa\u003c/code\u003e\u003c/a\u003e 🐞 fix: recover Controller fields after reset without rerender (RN issue \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/1345\"\u003e#1345\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/6a501e04c533831d0e98a7315447fc995e509559\"\u003e\u003ccode\u003e6a501e0\u003c/code\u003e\u003c/a\u003e 🦷 update type dirtyFields typing for field arrays with undefined entries (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13\"\u003e#13\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/d681dc57a84fa037a4bfda5b4094bebc8f71cfed\"\u003e\u003ccode\u003ed681dc5\u003c/code\u003e\u003c/a\u003e 🐞 fix \u003ccode\u003euseFormState().isDirty\u003c/code\u003e race with async resolver in \u003ccode\u003eonChange\u003c/code\u003e mode (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/a9b8a6fb919c7ec9e0ea671b64712e1c39fc9f15\"\u003e\u003ccode\u003ea9b8a6f\u003c/code\u003e\u003c/a\u003e 🐞 fix: use reactive values prop over defaultValues when shouldUnregister is t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/686da3f73d59ed94c7e112f82023aed9786fe0df\"\u003e\u003ccode\u003e686da3f\u003c/code\u003e\u003c/a\u003e 🐞 fix deepEqual for empty non-plain objects (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13493\"\u003e#13493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/react-hook-form/react-hook-form/compare/v7.77.0...v7.78.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/testing` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/testing's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/testing/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/testing\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@swc/core` from 1.15.40 to 1.15.41\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/swc-project/swc/blob/main/CHANGELOG.md\"\u003e@​swc/core's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.15.41] - 2026-06-09\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(bindings/node)\u003c/strong\u003e Preserve source context for AST transforms (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11920\"\u003e#11920\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/b6dfa74d9e518904f93a39ad05ab2e17e3229d2d\"\u003eb6dfa74\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/codegen)\u003c/strong\u003e Emit \u003ccode\u003eexport as namespace\u003c/code\u003e correctly (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11923\"\u003e#11923\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4e1f8326295932d77faa3d617a5b7cb8ba993a38\"\u003e4e1f832\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/codegen)\u003c/strong\u003e Emit \u003ccode\u003eexport as namespace\u003c/code\u003e minified correctly (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11924\"\u003e#11924\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/71574992dde5c4ef5de6a564ea096d48d739b6e2\"\u003e7157499\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/compat)\u003c/strong\u003e Rewrite this in destructuring defaults (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11909\"\u003e#11909\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/68af779eff35120407a7147b3b60700c54db243c\"\u003e68af779\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/decorators)\u003c/strong\u003e Delay 2022 decorator initializers after private fields (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11847\"\u003e#11847\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/3f1a4f59670f58533d6f7545b671704d0ef469de\"\u003e3f1a4f5\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/decorators)\u003c/strong\u003e Handle import types in decorator metadata (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11916\"\u003e#11916\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/f4114297983e1f62220f57caaa4e2138ab906f5d\"\u003ef411429\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/fixer)\u003c/strong\u003e Preserve new tagged template callee parens (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11922\"\u003e#11922\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/242a03a5fcd6542eab527dfdcb67590b0b477eba\"\u003e242a03a\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/minifier)\u003c/strong\u003e Handle unknown member props (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11927\"\u003e#11927\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/e59ba6890764a2f121c38df1a71d5f70e179b08d\"\u003ee59ba68\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/parser)\u003c/strong\u003e Handle Flow async generic arrows (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11926\"\u003e#11926\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/b9b8993391168e6b83e9f84b3c4c063cf4ccd4f7\"\u003eb9b8993\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/renamer)\u003c/strong\u003e Avoid duplicate mangled names across eval scope boundaries (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11913\"\u003e#11913\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4a1af846d2cc0039b3a0d6e997f8c1c131e22a2b\"\u003e4a1af84\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(plugin)\u003c/strong\u003e Avoid importing __free from env (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11908\"\u003e#11908\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4584296629bd87f7186a09b0ec37d5ab3dd3ff94\"\u003e4584296\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(swc)\u003c/strong\u003e Preserve plugin error context (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11904\"\u003e#11904\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4e2e9fc3900475085e3f426e59e81d3a51fa34fa\"\u003e4e2e9fc\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(swc_common)\u003c/strong\u003e Fix sourcemap panic for multibyte mapping positions (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11918\"\u003e#11918\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/40c16011bc5487732483164886d8031f3f03cf79\"\u003e40c1601\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix architecture fixer link (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11911\"\u003e#11911\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/51cbc8c8d24021c59895c7787aa800d4a5fb4110\"\u003e51cbc8c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/swc-project/swc/commit/7a72340b21d080cc61e109296ff083bb2cfc91d5\"\u003e\u003ccode\u003e7a72340\u003c/code\u003e\u003c/a\u003e chore: Publish \u003ccode\u003e1.15.41\u003c/code\u003e with \u003ccode\u003eswc_core\u003c/code\u003e \u003ccode\u003ev68.0.6\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/swc-project/swc/commit/82ae083b7fbfd623d1c665feca556cfa710f68ce\"\u003e\u003ccode\u003e82ae083\u003c/code\u003e\u003c/a\u003e chore: Publish \u003ccode\u003e1.15.41-nightly-20260609.1\u003c/code\u003e with \u003ccode\u003eswc_core\u003c/code\u003e \u003ccode\u003ev68.0.6\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/swc-project/swc/commit/b6dfa74d9e518904f93a39ad05ab2e17e3229d2d\"\u003e\u003ccode\u003eb6dfa74\u003c/code\u003e\u003c/a\u003e fix(bindings/node): Preserve source context for AST transforms (\u003ca href=\"https://github.com/swc-project/swc/tree/HEAD/packages/core/issues/11920\"\u003e#11920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/swc-project/swc/commits/v1.15.41/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/react` from 19.2.16 to 19.2.17\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@typescript-eslint/eslint-plugin` from 8.60.1 to 8.61.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003e@​typescript-eslint/eslint-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.61.0\u003c/h2\u003e\n\u003ch2\u003e8.61.0 (2026-06-08)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003east-spec:\u003c/strong\u003e change type of \u003ccode\u003eUnaryExpression.prefix\u003c/code\u003e to always \u003ccode\u003etrue\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12372\"\u003e#12372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003east-spec:\u003c/strong\u003e tighten types of \u003ccode\u003eArrowFunction\u003c/code\u003e, \u003ccode\u003eYieldExpression\u003c/code\u003e, \u003ccode\u003eTSTypePredicate\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12373\"\u003e#12373\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erule-schema-to-typescript-types:\u003c/strong\u003e respect ECMAScript line terminators (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12374\"\u003e#12374\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.61.0\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md\"\u003e@​typescript-eslint/eslint-plugin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.61.0 (2026-06-08)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003east-spec:\u003c/strong\u003e change type of \u003ccode\u003eUnaryExpression.prefix\u003c/code\u003e to always \u003ccode\u003etrue\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12372\"\u003e#12372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.61.0\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/16a5b247affc32af21b695cf96dfd75d7ded50a3\"\u003e\u003ccode\u003e16a5b24\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.61.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ef1fd28c68b10da2e5b56823da8491f10f2c2b97\"\u003e\u003ccode\u003eef1fd28\u003c/code\u003e\u003c/a\u003e feat(ast-spec): change type of \u003ccode\u003eUnaryExpression.prefix\u003c/code\u003e to always \u003ccode\u003etrue\u003c/code\u003e (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12\"\u003e#12\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.61.0/packages/eslint-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cypress` from 15.16.0 to 15.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cypress-io/cypress/releases\"\u003ecypress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev15.17.0\u003c/h2\u003e\n\u003cp\u003eChangelog: \u003ca href=\"https://docs.cypress.io/app/references/changelog#15-17-0\"\u003ehttps://docs.cypress.io/app/references/changelog#15-17-0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/b22780a9bb118b86730e22243aba16e25e7a5bed\"\u003e\u003ccode\u003eb22780a\u003c/code\u003e\u003c/a\u003e chore: Update Chrome (stable) to 149.0.7827.102 and Chrome for Testing (stabl...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/ada42a7c2f69f19877c089327724d24478219fb3\"\u003e\u003ccode\u003eada42a7\u003c/code\u003e\u003c/a\u003e chore: send standard identity headers on cy-prompt/studio session requests (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/6017154185cd8fbffbae90fde90cea7c78108730\"\u003e\u003ccode\u003e6017154\u003c/code\u003e\u003c/a\u003e perf(server): release pending automation requests after response (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34037\"\u003e#34037\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/6be559a1bd4375beb2918a94c26cf7cc5f30d1a8\"\u003e\u003ccode\u003e6be559a\u003c/code\u003e\u003c/a\u003e chore: don't redeclare inherited observable Session.name (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34034\"\u003e#34034\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/437a08e149563695b1eb5d91c0c3aaf50712ee14\"\u003e\u003ccode\u003e437a08e\u003c/code\u003e\u003c/a\u003e chore: update need help link for auto provision project slug error modal (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34\"\u003e#34\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/04dd2965f1bf70c06e8b6d380cacaed0860e3667\"\u003e\u003ccode\u003e04dd296\u003c/code\u003e\u003c/a\u003e refactor(proxy): request/response interception adapters and wire middleware (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/482cd419704a381b9a56778f6431da7b4c1d5a9e\"\u003e\u003ccode\u003e482cd41\u003c/code\u003e\u003c/a\u003e chore: reporter support for test replay embedding (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34031\"\u003e#34031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/f3de1b27f194a3d3dc5ad87bce2852e5b253a016\"\u003e\u003ccode\u003ef3de1b2\u003c/code\u003e\u003c/a\u003e chore: reorder changelog entries for release by popularity of issue (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34032\"\u003e#34032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/b60b68f9b83b5f93c49b88c6ca74505f535476f8\"\u003e\u003ccode\u003eb60b68f\u003c/code\u003e\u003c/a\u003e misc: warn when a --spec pattern matches no spec files (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34023\"\u003e#34023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/e0fe6e097f9414175c25cfd6f7264cad497a1526\"\u003e\u003ccode\u003ee0fe6e0\u003c/code\u003e\u003c/a\u003e perf: Fix Command Log performance regression on hover (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34029\"\u003e#34029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cypress-io/cypress/compare/v15.16.0...v15.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `eslint-plugin-storybook` from 10.4.2 to 10.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/storybookjs/storybook/releases\"\u003eeslint-plugin-storybook's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.4.3\u003c/h2\u003e\n\u003ch2\u003e10.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddon Docs: Fix Primary and Controls blocks not rendering in custom MDX pages - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34496\"\u003e#34496\u003c/a\u003e, thanks \u003ca href=\"https://github.com/NYCU-Chung\"\u003e\u003ccode\u003e@​NYCU-Chung\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eCore: Respect !dev tag on MDX docs in sidebar - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35031\"\u003e#35031\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JReinhold\"\u003e\u003ccode\u003e@​JReinhold\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eReact: Add support for resolving subcomponents attached as properties of a parent component - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34967\"\u003e#34967\u003c/a\u003e, thanks \u003ca href=\"https://github.com/yatishgoel\"\u003e\u003ccode\u003e@​yatishgoel\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eUI: Prevent docs page scroll reset on HMR re-render - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35021\"\u003e#35021\u003c/a\u003e, thanks \u003ca href=\"https://github.com/LongTangGithub\"\u003e\u003ccode\u003e@​LongTangGithub\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md\"\u003eeslint-plugin-storybook's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e10.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddon Docs: Fix Primary and Controls blocks not rendering in custom MDX pages - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34496\"\u003e#34496\u003c/a\u003e, thanks \u003ca href=\"https://github.com/NYCU-Chung\"\u003e\u003ccode\u003e@​NYCU-Chung\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eCore: Respect !dev tag on MDX docs in sidebar - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35031\"\u003e#35031\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JReinhold\"\u003e\u003ccode\u003e@​JReinhold\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eReact: Add support for resolving subcomponents attached as properties of a parent component - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34967\"\u003e#34967\u003c/a\u003e, thanks \u003ca href=\"https://github.com/yatishgoel\"\u003e\u003ccode\u003e@​yatishgoel\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eUI: Prevent docs page scroll reset on HMR re-render - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35021\"\u003e#35021\u003c/a\u003e, thanks \u003ca href=\"https://github.com/LongTangGithub\"\u003e\u003ccode\u003e@​LongTangGithub\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/storybookjs/storybook/commit/624e6187fd462e56719cbd80c1b4bfb67b68fc89\"\u003e\u003ccode\u003e624e618\u003c/code\u003e\u003c/a\u003e Bump version from \u0026quot;10.4.2\u0026quot; to \u0026quot;10.4.3\u0026quot; [skip ci]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/storybookjs/storybook/commits/v10.4.3/code/lib/eslint-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `prettier` from 3.8.3 to 3.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/releases\"\u003eprettier's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.8.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMarkdown: Fix blank lines between list items and nested sub-lists being removed in Markdown/MDX (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/17746\"\u003eprettier/prettier#17746\u003c/a\u003e by \u003ca href=\"https://github.com/byplayer\"\u003e\u003ccode\u003e@​byplayer\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🔗 \u003ca href=\"https://github.com/prettier/prettier/blob/3.8.4/CHANGELOG.md#384\"\u003eChangelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md\"\u003eprettier's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.8.4\u003c/h1\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/prettier/prettier/compare/3.8.3...3.8.4\"\u003ediff\u003c/a\u003e\u003c/p\u003e\n\u003ch4\u003eMarkdown: Fix blank lines between list items and nested sub-lists being removed in Markdown/MDX (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/17746\"\u003e#17746\u003c/a\u003e by \u003ca href=\"https://github.com/byplayer\"\u003e\u003ccode\u003e@​byplayer\u003c/code\u003e\u003c/a\u003e)\u003c/h4\u003e\n\u003cp\u003ePrettier was removing blank lines between list items and their nested sub-lists, converting loose lists into tight lists and changing their semantic meaning.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre lang=\"markdown\"\u003e\u003ccode\u003e\u0026lt;!-- Input --\u0026gt;\n- a\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eb\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ec\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u0026lt;!-- Prettier 3.8.3 --\u0026gt;\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ea\n\u003cul\u003e\n\u003cli\u003eb\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003ec\n\u003cul\u003e\n\u003cli\u003ed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u0026lt;!-- Prettier 3.8.4 --\u0026gt;\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ea\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eb\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ec\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ed\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/1c6ba5539141552e0e8e22d401ea620d8fdff468\"\u003e\u003ccode\u003e1c6ba55\u003c/code\u003e\u003c/a\u003e Release 3.8.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/4a673dc9b59ddf7296bbab9822093d2971da84a8\"\u003e\u003ccode\u003e4a673dc\u003c/code\u003e\u003c/a\u003e Fix blank lines between list items and nested sub-lists being removed in Mark...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/074aaedbb052a288e89d15eb0a4214de37a08866\"\u003e\u003ccode\u003e074aaed\u003c/code\u003e\u003c/a\u003e Replace \u003ccode\u003emain\u003c/code\u003e branch in changelog link with tags (\u003ca href=\"https://redirect.github.com/prettier/prettier/issues/19054\"\u003e#19054\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/c22a003ae97917c5043e8685b4fdff0f93e978f9\"\u003e\u003ccode\u003ec22a003\u003c/code\u003e\u003c/a\u003e Bump Prettier dependency to 3.8.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/07bad1f04536e9799927007baf466e67151576f0\"\u003e\u003ccode\u003e07bad1f\u003c/code\u003e\u003c/a\u003e Clean changelog_unreleased\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/prettier/prettier/compare/3.8.3...3.8.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `semantic-release` from 25.0.3 to 25.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/semantic-release/semantic-release/releases\"\u003esemantic-release's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev25.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/compare/v25.0.4...v25.0.5\"\u003e25.0.5\u003c/a\u003e (2026-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erevert:\u003c/strong\u003e next (\u003ca href=\"https://redirect.github.com/semantic-release/semantic-release/issues/4200\"\u003e#4200\u003c/a\u003e) (\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/db8ffaad90139532f30c0fcd955cf52ffdc1a267\"\u003edb8ffaa\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/compare/v25.0.3...v25.0.4\"\u003e25.0.4\u003c/a\u003e (2026-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecode-quality:\u003c/strong\u003e add missing comma in context object for consistency (\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/493d6cdaa1ed697427acea596d0d25eb53b462a2\"\u003e493d6cd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/db8ffaad90139532f30c0fcd955cf52ffdc1a267\"\u003e\u003ccode\u003edb8ffaa\u003c/code\u003e\u003c/a\u003e fix(revert): next (\u003ca href=\"https://redirect.github.com/semantic-release/semantic-release/issues/4200\"\u003e#4200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/4e476dee14bb9ee4c20aebd51970efc827769e68\"\u003e\u003ccode\u003e4e476de\u003c/code\u003e\u003c/a\u003e docs: update README to include information about the new core engine integration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/493d6cdaa1ed697427acea596d0d25eb53b462a2\"\u003e\u003ccode\u003e493d6cd\u003c/code\u003e\u003c/a\u003e fix(code-quality): add missing comma in context object for consistency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/d05e160668e8d31c534864cc00075a16fd683eeb\"\u003e\u003ccode\u003ed05e160\u003c/code\u003e\u003c/a\u003e refactor: replace direct logger and env-ci replacements with a mockCore funct...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/4f464a72ae102fd1f4ffc2633fbb04ed0b220054\"\u003e\u003ccode\u003e4f464a7\u003c/code\u003e\u003c/a\u003e test: add tests for core delegation and dry-run policy hand...\n\n_Description has been truncated_","html_url":"https://github.com/Ed-Fi-Alliance-OSS/Ed-Fi-AdminApp/pull/210","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ed-Fi-Alliance-OSS%2FEd-Fi-AdminApp/issues/210","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/210/packages"},{"uuid":"4615234604","node_id":"PR_kwDORHVKbc7kBhxb","number":86,"state":"closed","title":"deps: bump the production-deps group across 1 directory with 26 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-14T00:08:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-08T17:44:24.000Z","updated_at":"2026-06-14T00:08:59.000Z","time_to_close":455073,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"production-deps","update_count":26,"packages":[{"name":"@passwordless-id/webauthn","old_version":"2.3.5","new_version":"2.4.0","repository_url":"https://github.com/passwordless-id/webauthn"},{"name":"@tauri-apps/api","old_version":"2.10.1","new_version":"2.11.0","repository_url":"https://github.com/tauri-apps/tauri"},{"name":"@tauri-apps/plugin-deep-link","old_version":"2.4.8","new_version":"2.4.9","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-dialog","old_version":"2.7.0","new_version":"2.7.1","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-fs","old_version":"2.5.0","new_version":"2.5.1","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-global-shortcut","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-opener","old_version":"2.5.3","new_version":"2.5.4","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"bits-ui","old_version":"2.18.0","new_version":"2.18.1","repository_url":"https://github.com/huntabyte/bits-ui"},{"name":"dexie","old_version":"4.4.2","new_version":"4.4.3","repository_url":"https://github.com/dexie/Dexie.js"},{"name":"dompurify","old_version":"3.4.2","new_version":"3.4.8","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"openpgp","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"preact","old_version":"10.29.1","new_version":"10.29.2","repository_url":"https://github.com/preactjs/preact"},{"name":"svelte","old_version":"5.55.1","new_version":"5.56.3","repository_url":"https://github.com/sveltejs/svelte"},{"name":"tailwind-merge","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/dcastil/tailwind-merge"},{"name":"@internationalized/date","old_version":"3.12.1","new_version":"3.12.2","repository_url":"https://github.com/adobe/react-spectrum"},{"name":"@playwright/test","old_version":"1.59.1","new_version":"1.60.0","repository_url":"https://github.com/microsoft/playwright"},{"name":"@tailwindcss/postcss","old_version":"4.2.4","new_version":"4.3.0","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tauri-apps/cli","old_version":"2.10.1","new_version":"2.11.2","repository_url":"https://github.com/tauri-apps/tauri"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.59.1","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"8.59.1","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"postcss","old_version":"8.5.13","new_version":"8.5.15","repository_url":"https://github.com/postcss/postcss"},{"name":"svelte-check","old_version":"4.4.7","new_version":"4.6.0","repository_url":"https://github.com/sveltejs/language-tools"},{"name":"svelte-eslint-parser","old_version":"1.6.0","new_version":"1.8.0","repository_url":"https://github.com/sveltejs/svelte-eslint-parser"},{"name":"tailwindcss","old_version":"4.2.4","new_version":"4.3.0","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"typescript-eslint","old_version":"8.59.1","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"workbox-cli","old_version":"7.4.0","new_version":"7.4.1","repository_url":"https://github.com/googlechrome/workbox"}],"path":null,"ecosystem":"npm"},"body":"Bumps the production-deps group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@passwordless-id/webauthn](https://github.com/passwordless-id/webauthn) | `2.3.5` | `2.4.0` |\n| [@tauri-apps/api](https://github.com/tauri-apps/tauri) | `2.10.1` | `2.11.0` |\n| [@tauri-apps/plugin-deep-link](https://github.com/tauri-apps/plugins-workspace) | `2.4.8` | `2.4.9` |\n| [@tauri-apps/plugin-dialog](https://github.com/tauri-apps/plugins-workspace) | `2.7.0` | `2.7.1` |\n| [@tauri-apps/plugin-fs](https://github.com/tauri-apps/plugins-workspace) | `2.5.0` | `2.5.1` |\n| [@tauri-apps/plugin-global-shortcut](https://github.com/tauri-apps/plugins-workspace) | `2.3.1` | `2.3.2` |\n| [@tauri-apps/plugin-opener](https://github.com/tauri-apps/plugins-workspace) | `2.5.3` | `2.5.4` |\n| [bits-ui](https://github.com/huntabyte/bits-ui) | `2.18.0` | `2.18.1` |\n| [dexie](https://github.com/dexie/Dexie.js) | `4.4.2` | `4.4.3` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.4.2` | `3.4.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.3.0` | `6.3.1` |\n| [preact](https://github.com/preactjs/preact) | `10.29.1` | `10.29.2` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `5.55.1` | `5.56.3` |\n| [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.5.0` | `3.6.0` |\n| [@internationalized/date](https://github.com/adobe/react-spectrum) | `3.12.1` | `3.12.2` |\n| [@playwright/test](https://github.com/microsoft/playwright) | `1.59.1` | `1.60.0` |\n| [@tailwindcss/postcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-postcss) | `4.2.4` | `4.3.0` |\n| [@tauri-apps/cli](https://github.com/tauri-apps/tauri) | `2.10.1` | `2.11.2` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.59.1` | `8.60.1` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.59.1` | `8.60.1` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.13` | `8.5.15` |\n| [svelte-check](https://github.com/sveltejs/language-tools) | `4.4.7` | `4.6.0` |\n| [svelte-eslint-parser](https://github.com/sveltejs/svelte-eslint-parser) | `1.6.0` | `1.8.0` |\n| [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.2.4` | `4.3.0` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.59.1` | `8.60.1` |\n| [workbox-cli](https://github.com/googlechrome/workbox) | `7.4.0` | `7.4.1` |\n\n\nUpdates `@passwordless-id/webauthn` from 2.3.5 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/passwordless-id/webauthn/releases\"\u003e@​passwordless-id/webauthn's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.4.0\u003c/h2\u003e\n\u003cp\u003eIMPORTANT NOTE: In this version the \u003ccode\u003ebrowser\u003c/code\u003e field was removed in \u003ccode\u003epackage.json\u003c/code\u003e due to issues how various tooling interpret it. Check out \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/108\"\u003e#108\u003c/a\u003e for more details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/bd0718956aa7a30cd02b4264d59030be3f3e0bb6\"\u003e\u003ccode\u003ebd07189\u003c/code\u003e\u003c/a\u003e Removed \u0026quot;browser\u0026quot; field and updated authenticator devices metadata/icons\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/40e3c218a420c1871ac054667a919b561a91cdd1\"\u003e\u003ccode\u003e40e3c21\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/112\"\u003e#112\u003c/a\u003e from passwordless-id/dependabot/npm_and_yarn/npm_and_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/3926a2fb53b7d57164127318668f14ae2a6a1447\"\u003e\u003ccode\u003e3926a2f\u003c/code\u003e\u003c/a\u003e chore(deps): bump the npm_and_yarn group across 1 directory with 4 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/ec427194f17b1582f878c00706682f949c79b79b\"\u003e\u003ccode\u003eec42719\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/110\"\u003e#110\u003c/a\u003e from passwordless-id/dependabot/npm_and_yarn/npm_and_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/3b514d8f18186bf935ec7044776aaaee3640f93a\"\u003e\u003ccode\u003e3b514d8\u003c/code\u003e\u003c/a\u003e chore(deps): bump minimatch in the npm_and_yarn group across 1 directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/efd757ad5bd39ca34bebaa4389a1443e2ac17d63\"\u003e\u003ccode\u003eefd757a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/109\"\u003e#109\u003c/a\u003e from passwordless-id/dependabot/npm_and_yarn/npm_and_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/3fcfbce8b19dce14345f5c5e83bc9c95e967ccce\"\u003e\u003ccode\u003e3fcfbce\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump qs in the npm_and_yarn group across 1 directory\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/passwordless-id/webauthn/compare/2.3.5...2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/api` from 2.10.1 to 2.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/tauri/releases\"\u003e@​tauri-apps/api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tauri-apps/api\u003c/code\u003e v2.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003eNo known vulnerabilities found\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e[2.11.0]\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/074299c08dd99d2e1c57796f55ab24bc1d3976cc\"\u003e\u003ccode\u003e074299c08\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/14307\"\u003e#14307\u003c/a\u003e) Add Bring All to Front predefined menu item type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/a12142a481f7a19b69e88ee36a438b1db71b36f5\"\u003e\u003ccode\u003ea12142a48\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/14357\"\u003e#14357\u003c/a\u003e) Add macos support for setting the icon and icon template state in the same step of the main thread, to prevent flickering.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/001c8fe3d288802de9a8c29cfd2f46f9220d97c5\"\u003e\u003ccode\u003e001c8fe3d\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/14722\"\u003e#14722\u003c/a\u003e) Add a WebView option to control browser-level general autofill behavior. This option does not disable password or credit card autofill. On Windows (WebView2), setting it to true disables the general autofill \u0026quot;Suggestions\u0026quot; UI, which may appear even when \u003ccode\u003eautocomplete=\u0026quot;off\u0026quot;\u003c/code\u003e is specified on input elements. On Linux, macOS, iOS, and Android, this option is currently unsupported and performs no operation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/eb0312ea9e493954298ac0b3fdaae7eafb52750e\"\u003e\u003ccode\u003eeb0312ea9\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/15199\"\u003e#15199\u003c/a\u003e) Propagates the \u003ccode\u003eEvent::Suspended\u003c/code\u003e and \u003ccode\u003eEvent::Resumed\u003c/code\u003e events from \u003ccode\u003etao\u003c/code\u003e when they are emitted on mobile targets.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e\u0026gt; @tauri-apps/api@2.11.0 npm-publish /home/runner/work/tauri/tauri/packages/api\n\u0026gt; pnpm build \u0026amp;\u0026amp; cd ./dist \u0026amp;\u0026amp; pnpm publish --access public --loglevel silly --no-git-checks\n\u003cp\u003e\u0026gt; \u003ccode\u003e@​tauri-apps/api\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.11.0 build /home/runner/work/tauri/tauri/packages/api\n\u0026gt; rollup -c --configPlugin typescript\u003c/p\u003e\n\u003cp\u003e\u001b[36m\n\u001b[1m./src/app.ts, ./src/core.ts, ./src/dpi.ts, ./src/event.ts, ./src/image.ts, ./src/index.ts, ./src/menu.ts, ./src/mocks.ts, ./src/path.ts, ./src/tray.ts, ./src/webview.ts, ./src/webviewWindow.ts, ./src/window.ts\u001b[22m → \u001b[1m./dist, ./dist\u001b[22m...\u001b[39m\n\u001b[32mcreated \u001b[1m./dist, ./dist\u001b[22m in \u001b[1m1s\u001b[22m\u001b[39m\n\u001b[36m\n\u001b[1msrc/index.ts\u001b[22m → \u001b[1m../../crates/tauri/scripts/bundle.global.js\u001b[22m...\u001b[39m\n\u001b[32mcreated \u001b[1m../../crates/tauri/scripts/bundle.global.js\u001b[22m in \u001b[1m1.6s\u001b[22m\u001b[39m\nnpm verbose cli /opt/hostedtoolcache/node/24.14.1/x64/bin/node /opt/hostedtoolcache/node/24.14.1/x64/bin/npm\nnpm info using npm@11.11.0\nnpm info using node@v24.14.1\nnpm silly config load:file:/opt/hostedtoolcache/node/24.14.1/x64/lib/node_modules/npm/npmrc\nnpm silly config load:file:/tmp/62753b73fd2498862aee9b07ed29cc21/.npmrc\nnpm silly config load:file:/home/runner/.npmrc\nnpm silly config load:file:/home/runner/.config/pnpm/rc\nnpm verbose title npm publish tauri-apps-api-2.11.0.tgz\nnpm verbose argv \u0026quot;publish\u0026quot; \u0026quot;--ignore-scripts\u0026quot; \u0026quot;tauri-apps-api-2.11.0.tgz\u0026quot; \u0026quot;--access\u0026quot; \u0026quot;public\u0026quot; \u0026quot;--loglevel\u0026quot; \u0026quot;silly\u0026quot;\nnpm verbose logfile logs-max:10 dir:/home/runner/.npm/_logs/2026-04-30T15_51_13_171Z-\nnpm verbose logfile /home/runner/.npm/_logs/2026-04-30T15_51_13_171Z-debug-0.log\nnpm warn Unknown env config \u0026quot;verify-deps-before-run\u0026quot;. This will stop working in the next major version of npm. See \u003ccode\u003enpm help npmrc\u003c/code\u003e for supported config options.\nnpm warn Unknown env config \u0026quot;npm-globalconfig\u0026quot;. This will stop working in the next major version of npm. See \u003ccode\u003enpm help npmrc\u003c/code\u003e for supported config options.\nnpm warn Unknown env config \u0026quot;_jsr-registry\u0026quot;. This will stop working in the next major version of npm. See \u003ccode\u003enpm help npmrc\u003c/code\u003e for supported config options.\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/e60834fc67d87c10e2f44b2568052295cb61c325\"\u003e\u003ccode\u003ee60834f\u003c/code\u003e\u003c/a\u003e Apply Version Updates From Current Changes (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/15041\"\u003e#15041\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/df05c00563a91fc936bd15c6b10dd2825472f96b\"\u003e\u003ccode\u003edf05c00\u003c/code\u003e\u003c/a\u003e chore: minor bump for codegen crate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/13bea1777fed60c75e37fe67d7ded5dde0b2997d\"\u003e\u003ccode\u003e13bea17\u003c/code\u003e\u003c/a\u003e chore: fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/9808236ebf7755d498d674b614f3fc75eeac1ec4\"\u003e\u003ccode\u003e9808236\u003c/code\u003e\u003c/a\u003e fix(macOS): correct value for work_area.position.y (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14655\"\u003e#14655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/eb0312ea9e493954298ac0b3fdaae7eafb52750e\"\u003e\u003ccode\u003eeb0312e\u003c/code\u003e\u003c/a\u003e feat(mobile): Propagate tao::Event::Suspended and tao::Event::Resumed to the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/4ef5797f0fb27fa2df3f39f4a54e48ef319560ec\"\u003e\u003ccode\u003e4ef5797\u003c/code\u003e\u003c/a\u003e feat(ios): add --no-sign and --archive-only flags to ios build (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/15061\"\u003e#15061\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/110336c88a8c0a04476619db0a5c8f7694d969a5\"\u003e\u003ccode\u003e110336c\u003c/code\u003e\u003c/a\u003e fix(macOS): fix incorrect window position on multi-monitor setups (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/15250\"\u003e#15250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/c00a3dbffccd6e051d3b7332f706b6c63759865d\"\u003e\u003ccode\u003ec00a3db\u003c/code\u003e\u003c/a\u003e feat(macros): add support for rename command macro in tauri-macros \u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14173\"\u003e#14173\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/764b9139a32de149d8a914a6b5ec6cd1937c64eb\"\u003e\u003ccode\u003e764b913\u003c/code\u003e\u003c/a\u003e feat(cli): restart Android emulator if it is disconnected from adb (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14313\"\u003e#14313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/1035f12eeb8b23d9780881606d442d11c786e39e\"\u003e\u003ccode\u003e1035f12\u003c/code\u003e\u003c/a\u003e fix(windows): tauri-bundler detect arm system (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14923\"\u003e#14923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/tauri/compare/@tauri-apps/api-v2.10.1...@tauri-apps/api-v2.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-deep-link` from 2.4.8 to 2.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-deep-link's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003edeep-link-js v2.4.9\u003c/h2\u003e\n\u003ch2\u003e[2.4.9]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e6cdc9f52e2cd975b11b8e4c12879d597f1f76c3\"\u003e\u003ccode\u003ee6cdc9f5\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3396\"\u003e#3396\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix broken iOS custom URL schemes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-deep-link@2.4.9\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 6.2kB README.md\nnpm notice 3.5kB dist-js/index.cjs\nnpm notice 2.9kB dist-js/index.d.ts\nnpm notice 3.4kB dist-js/index.js\nnpm notice 801B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-deep-link\nnpm notice version: 2.4.9\nnpm notice filename: tauri-apps-plugin-deep-link-2.4.9.tgz\nnpm notice package size: 4.4 kB\nnpm notice unpacked size: 17.7 kB\nnpm notice shasum: ae56d59130380f806b533b3107c3f16654e66a8d\nnpm notice integrity: sha512-u0SKOUHnJ1wqe[...]hIvqLBRpgHJlA==\nnpm notice total files: 6\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011657\n+ @tauri-apps/plugin-deep-link@2.4.9\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003edeep-link v2.4.9\u003c/h2\u003e\n\u003ch2\u003e[2.4.9]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e6cdc9f52e2cd975b11b8e4c12879d597f1f76c3\"\u003e\u003ccode\u003ee6cdc9f5\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3396\"\u003e#3396\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix broken iOS custom URL schemes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/5c7668b6bb7c9a509f394d584568b3a922161e50\"\u003e\u003ccode\u003e5c7668b\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3397\"\u003e#3397\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec05401\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate toml to v1 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3323\"\u003e#3323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b86e999beb9fb48ef54adf3d0af631f94c06a5d0\"\u003e\u003ccode\u003eb86e999\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri packages to 2.11 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3407\"\u003e#3407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c463d8ab1422a4cf44f627a7b4e6ba9d3553f334\"\u003e\u003ccode\u003ec463d8a\u003c/code\u003e\u003c/a\u003e chore(deps): update rustls-webpki in lockfile, ignore core2 in audit (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3405\"\u003e#3405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/1bb7beb3076a8bf76b084223d0e4225bb2e53bc9\"\u003e\u003ccode\u003e1bb7beb\u003c/code\u003e\u003c/a\u003e chore(deps): bump openssl (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3402\"\u003e#3402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/3412fa2741b3b6e7a251e3548a43b21f2c26c635\"\u003e\u003ccode\u003e3412fa2\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (opener supports mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/af81fdac9881d4ed52fbc18b9511bf10f7540ebb\"\u003e\u003ccode\u003eaf81fda\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (mobile is supported)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b\u003c/code\u003e\u003c/a\u003e fix(opener): allow open network share locations (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3343\"\u003e#3343\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/250857b7b72cd59825a14caa046160dc2ba1bb12\"\u003e\u003ccode\u003e250857b\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency typescript to v6 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3363\"\u003e#3363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/964e13f124ad1feeb93c10168b265dc4936f738c\"\u003e\u003ccode\u003e964e13f\u003c/code\u003e\u003c/a\u003e fix(store): dead lock trying to set while exiting (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3395\"\u003e#3395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/deep-link-v2.4.8...deep-link-v2.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-dialog` from 2.7.0 to 2.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-dialog's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003edialog-js v2.7.1\u003c/h2\u003e\n\u003ch2\u003e[2.7.1]\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to \u003ccode\u003efs-js@2.5.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-dialog@2.7.1\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 3.5kB README.md\nnpm notice 6.9kB dist-js/index.cjs\nnpm notice 14.6kB dist-js/index.d.ts\nnpm notice 6.8kB dist-js/index.js\nnpm notice 11B dist-js/init.d.ts\nnpm notice 657B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-dialog\nnpm notice version: 2.7.1\nnpm notice filename: tauri-apps-plugin-dialog-2.7.1.tgz\nnpm notice package size: 6.7 kB\nnpm notice unpacked size: 33.3 kB\nnpm notice shasum: fc83387de807c8d064d2b64b1b813b84e8286a12\nnpm notice integrity: sha512-OK1UBXYt+ojcm[...]FmEOjIY9IhzOQ==\nnpm notice total files: 7\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011725\n+ @tauri-apps/plugin-dialog@2.7.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003edialog v2.7.1\u003c/h2\u003e\n\u003ch2\u003e[2.7.1]\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to \u003ccode\u003efs-js@2.5.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e7a68fa63755603b9fa12d28e077eea645551d24\"\u003e\u003ccode\u003ee7a68fa\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3068\"\u003e#3068\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b5550a3b0d199eb33abdc2ac981aea44afcb1379\"\u003e\u003ccode\u003eb5550a3\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f8\u003c/code\u003e\u003c/a\u003e fix: fix docsrs builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/4ee61e055e58da6ca1ad8b8da31cd61498bd3c9b\"\u003e\u003ccode\u003e4ee61e0\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;chore: temp delete updater changefile\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/06124af8d65968462af59bb6368ea37df674a5b8\"\u003e\u003ccode\u003e06124af\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/2972\"\u003e#2972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/060219e597b83eacd8d89426f0e2aeafec1ad854\"\u003e\u003ccode\u003e060219e\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.3.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3067\"\u003e#3067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c7e9766ff53cbe8496467ed83be96e51d1847f0f\"\u003e\u003ccode\u003ec7e9766\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri monorepo (v2) (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3058\"\u003e#3058\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/d4a8ce962b2e642d3aa5b2d36e39f38e06960c27\"\u003e\u003ccode\u003ed4a8ce9\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate tokio-tungstenite to 0.28 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3016\"\u003e#3016\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/cdc7eec4154f38a2e9fac6be576321aa167ad114\"\u003e\u003ccode\u003ecdc7eec\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.2.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3066\"\u003e#3066\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/6314b004abb0694f805004eaef351090ec852bc4\"\u003e\u003ccode\u003e6314b00\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/log-v2.7.0...log-v2.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-fs` from 2.5.0 to 2.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-fs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efs-js v2.5.1\u003c/h2\u003e\n\u003ch2\u003e[2.5.1]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec054013\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3323\"\u003e#3323\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e) Updated dependency \u003ccode\u003etoml\u003c/code\u003e from 0.9 to 1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-fs@2.5.1\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 2.4kB README.md\nnpm notice 32.8kB dist-js/index.cjs\nnpm notice 32.6kB dist-js/index.d.ts\nnpm notice 32.0kB dist-js/index.js\nnpm notice 697B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-fs\nnpm notice version: 2.5.1\nnpm notice filename: tauri-apps-plugin-fs-2.5.1.tgz\nnpm notice package size: 21.5 kB\nnpm notice unpacked size: 101.5 kB\nnpm notice shasum: e1b8643d41c74251699fcdecc800877d18a4a6fc\nnpm notice integrity: sha512-9Lz+Jopp6QyeE[...]tqPB/XEMS3NhQ==\nnpm notice total files: 6\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011689\n+ @tauri-apps/plugin-fs@2.5.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003efs v2.5.1\u003c/h2\u003e\n\u003ch2\u003e[2.5.1]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec054013\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3323\"\u003e#3323\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e) Updated dependency \u003ccode\u003etoml\u003c/code\u003e from 0.9 to 1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/5c7668b6bb7c9a509f394d584568b3a922161e50\"\u003e\u003ccode\u003e5c7668b\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3397\"\u003e#3397\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec05401\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate toml to v1 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3323\"\u003e#3323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b86e999beb9fb48ef54adf3d0af631f94c06a5d0\"\u003e\u003ccode\u003eb86e999\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri packages to 2.11 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3407\"\u003e#3407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c463d8ab1422a4cf44f627a7b4e6ba9d3553f334\"\u003e\u003ccode\u003ec463d8a\u003c/code\u003e\u003c/a\u003e chore(deps): update rustls-webpki in lockfile, ignore core2 in audit (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3405\"\u003e#3405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/1bb7beb3076a8bf76b084223d0e4225bb2e53bc9\"\u003e\u003ccode\u003e1bb7beb\u003c/code\u003e\u003c/a\u003e chore(deps): bump openssl (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3402\"\u003e#3402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/3412fa2741b3b6e7a251e3548a43b21f2c26c635\"\u003e\u003ccode\u003e3412fa2\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (opener supports mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/af81fdac9881d4ed52fbc18b9511bf10f7540ebb\"\u003e\u003ccode\u003eaf81fda\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (mobile is supported)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b\u003c/code\u003e\u003c/a\u003e fix(opener): allow open network share locations (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3343\"\u003e#3343\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/250857b7b72cd59825a14caa046160dc2ba1bb12\"\u003e\u003ccode\u003e250857b\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency typescript to v6 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3363\"\u003e#3363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/964e13f124ad1feeb93c10168b265dc4936f738c\"\u003e\u003ccode\u003e964e13f\u003c/code\u003e\u003c/a\u003e fix(store): dead lock trying to set while exiting (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3395\"\u003e#3395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/fs-v2.5.0...fs-v2.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-global-shortcut` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-global-shortcut's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eupload-js v2.3.2\u003c/h2\u003e\n\u003ch2\u003e[2.3.2]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f85\u003c/code\u003e\u003c/a\u003e Fixed an issue that caused docs.rs builds to fail. No user facing changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-upload@2.3.2\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 3.2kB README.md\nnpm notice 1.4kB dist-js/index.cjs\nnpm notice 507B dist-js/index.d.ts\nnpm notice 1.4kB dist-js/index.js\nnpm notice 729B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-upload\nnpm notice version: 2.3.2\nnpm notice filename: tauri-apps-plugin-upload-2.3.2.tgz\nnpm notice package size: 2.9 kB\nnpm notice unpacked size: 8.1 kB\nnpm notice shasum: 4c0d9af44b28f9b05905ff8972a5438b642fc260\nnpm notice integrity: sha512-h/V8RqsbVpJSt[...]RqpUr0Dk9DuGA==\nnpm notice total files: 6\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=644611265\n+ @tauri-apps/plugin-upload@2.3.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eupload v2.3.2\u003c/h2\u003e\n\u003ch2\u003e[2.3.2]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f85\u003c/code\u003e\u003c/a\u003e Fixed an issue that caused docs.rs builds to fail. No user facing changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003eUpdating crates.io index\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e7a68fa63755603b9fa12d28e077eea645551d24\"\u003e\u003ccode\u003ee7a68fa\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3068\"\u003e#3068\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b5550a3b0d199eb33abdc2ac981aea44afcb1379\"\u003e\u003ccode\u003eb5550a3\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f8\u003c/code\u003e\u003c/a\u003e fix: fix docsrs builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/4ee61e055e58da6ca1ad8b8da31cd61498bd3c9b\"\u003e\u003ccode\u003e4ee61e0\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;chore: temp delete updater changefile\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/06124af8d65968462af59bb6368ea37df674a5b8\"\u003e\u003ccode\u003e06124af\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/2972\"\u003e#2972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/060219e597b83eacd8d89426f0e2aeafec1ad854\"\u003e\u003ccode\u003e060219e\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.3.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3067\"\u003e#3067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c7e9766ff53cbe8496467ed83be96e51d1847f0f\"\u003e\u003ccode\u003ec7e9766\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri monorepo (v2) (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3058\"\u003e#3058\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/d4a8ce962b2e642d3aa5b2d36e39f38e06960c27\"\u003e\u003ccode\u003ed4a8ce9\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate tokio-tungstenite to 0.28 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3016\"\u003e#3016\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/cdc7eec4154f38a2e9fac6be576321aa167ad114\"\u003e\u003ccode\u003ecdc7eec\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.2.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3066\"\u003e#3066\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/6314b004abb0694f805004eaef351090ec852bc4\"\u003e\u003ccode\u003e6314b00\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/os-v2.3.1...os-v2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​tauri-apps/plugin-global-shortcut\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-opener` from 2.5.3 to 2.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-opener's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopener-js v2.5.4\u003c/h2\u003e\n\u003ch2\u003e[2.5.4]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b3\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3343\"\u003e#3343\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix \u003ccode\u003erevealItemInDir\u003c/code\u003e/\u003ccode\u003ereveal_items_in_dir\u003c/code\u003e can't reveal network paths like \u003ccode\u003e\\\\wsl.localhost\\Ubuntu\\etc\u003c/code\u003e on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-opener@2.5.4\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 4.2kB README.md\nnpm notice 3.1kB dist-js/index.cjs\nnpm notice 2.0kB dist-js/index.d.ts\nnpm notice 3.1kB dist-js/index.js\nnpm notice 11B dist-js/init.d.ts\nnpm notice 730B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-opener\nnpm notice version: 2.5.4\nnpm notice filename: tauri-apps-plugin-opener-2.5.4.tgz\nnpm notice package size: 3.5 kB\nnpm notice unpacked size: 14.1 kB\nnpm notice shasum: b37883e4d36125b8c5a0c74f683395958a65bd7d\nnpm notice integrity: sha512-1HnPkb+AmgO29[...]aUJtT57lfO9CQ==\nnpm notice total files: 7\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011743\n+ @tauri-apps/plugin-opener@2.5.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eopener v2.5.4\u003c/h2\u003e\n\u003ch2\u003e[2.5.4]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b3\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3343\"\u003e#3343\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix \u003ccode\u003erevealItemInDir\u003c/code\u003e/\u003ccode\u003ereveal_items_in_dir\u003c/code\u003e can't reveal network paths like \u003ccode\u003e\\\\wsl.localhost\\Ubuntu\\etc\u003c/code\u003e on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e7a68fa63755603b9fa12d28e077eea645551d24\"\u003e\u003ccode\u003ee7a68fa\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3068\"\u003e#3068\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b5550a3b0d199eb33abdc2ac981aea44afcb1379\"\u003e\u003ccode\u003eb5550a3\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f8\u003c/code\u003e\u003c/a\u003e fix: fix docsrs builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/4ee61e055e58da6ca1ad8b8da31cd61498bd3c9b\"\u003e\u003ccode\u003e4ee61e0\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;chore: temp delete updater changefile\u0026quot;\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/http-v2.5.3...http-v2.5.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bits-ui` from 2.18.0 to 2.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/huntabyte/bits-ui/releases\"\u003ebits-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ebits-ui@2.18.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix(text-selection-layer): snapshot enabled and pointer handlers for listeners (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/pull/2041\"\u003e#2041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix(Tooltip): set wrapper pointer-events when hoverable content is disabled (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/pull/2041\"\u003e#2041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix(Menu): prevent page scroll-jump on item hover when \u003ccode\u003escroll-padding\u003c/code\u003e is set (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/pull/2035\"\u003e#2035\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/25f81378415fe35932ab7a6214149bb4ec4f520c\"\u003e\u003ccode\u003e25f8137\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/issues/2042\"\u003e#2042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/158364e9c0f63a58919e55500aed95d9847c77ee\"\u003e\u003ccode\u003e158364e\u003c/code\u003e\u003c/a\u003e fix(menu): use preventScroll when focusing items on hover and content on item...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/5a3f7ce7279828e52230a6b155757e1b7f03b2be\"\u003e\u003ccode\u003e5a3f7ce\u003c/code\u003e\u003c/a\u003e fix(Tooltip): pointer event handling (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/issues/2041\"\u003e#2041\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/788fc03ee6a961f30222913c71800920c6b44a50\"\u003e\u003ccode\u003e788fc03\u003c/code\u003e\u003c/a\u003e chore: update workflows to Node 24 and latest action versions (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/issues/2032\"\u003e#2032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/huntabyte/bits-ui/compare/bits-ui@2.18.0...bits-ui@2.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dexie` from 4.4.2 to 4.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexie/Dexie.js/releases\"\u003edexie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDexie v4.4.3\u003c/h2\u003e\n\u003cp\u003eThis is a maintenance release with bug fixes and a configuration API improvement.\u003c/p\u003e\n\u003ch2\u003eRelated Package Releases\u003c/h2\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003ePackage\u003c/th\u003e\n\u003cth\u003eVersion\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003edexie\u003c/td\u003e\n\u003ctd\u003e4.4.3\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003edexie-cloud-addon\u003c/td\u003e\n\u003ctd\u003e4.4.13\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003ch3\u003edexie@4.4.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: \u003ccode\u003edelByKeyPath()\u003c/code\u003e creates empty intermediate objects on missing path\u003c/strong\u003e — \u003ccode\u003eDexie.delByKeyPath(obj, \u0026quot;foo.bar\u0026quot;)\u003c/code\u003e on an object without \u003ccode\u003efoo\u003c/code\u003e would create \u003ccode\u003e{foo: {}}\u003c/code\u003e as a side effect instead of doing nothing. This caused a real-world bug in dexie-cloud-addon where clearing a dotted key from a changeSpec (e.g. \u003ccode\u003eclaims.sub\u003c/code\u003e) would leave \u003ccode\u003e{claims: {}}\u003c/code\u003e in the spec, which then overwrote the inline primary key with \u003ccode\u003eundefined\u003c/code\u003e, resulting in: \u003ccode\u003eDataError: Evaluating the object store's key path did not yield a value\u003c/code\u003e. Fixed in \u003ccode\u003esetByKeyPath\u003c/code\u003e to bail out early when value is \u003ccode\u003eundefined\u003c/code\u003e and the intermediate path doesn't exist. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/issues/2303\"\u003e#2303\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: Collection.sortBy() mutates frozen array in immutable cache mode\u003c/strong\u003e — calling \u003ccode\u003e.sortBy()\u003c/code\u003e on a table when using immutable cache mode could throw \u003ccode\u003eTypeError: Cannot assign to read only property\u003c/code\u003e because \u003ccode\u003eArray.sort()\u003c/code\u003e was called on a frozen array. Fixed by sorting on a copy instead. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2294\"\u003e#2294\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003edexie-cloud-addon@4.4.12\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003erename: \u003ccode\u003emaxStringLength\u003c/code\u003e → \u003ccode\u003elargeStringThreshold\u003c/code\u003e\u003c/strong\u003e — the string offloading option is renamed for clarity. The old name is kept as a backward-compatible alias. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2290\"\u003e#2290\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: blob writebacks routed through BlobSavingQueue to avoid PSD context loss\u003c/strong\u003e — after an async native \u003ccode\u003efetch\u003c/code\u003e (blob download), Dexie's PSD zone is no longer active, causing \u003ccode\u003etable.mutate()\u003c/code\u003e to crash with \u003ccode\u003eCannot read properties of undefined (reading 'table')\u003c/code\u003e. This surfaced as \u003ccode\u003e[dexie-cloud:blobResolve] Failed to resolve BlobRefs\u003c/code\u003e. Fixed by always routing blob writebacks through \u003ccode\u003eBlobSavingQueue.saveBlobs()\u003c/code\u003e, which opens a proper Dexie rw-transaction in a fresh JS task. Fixes lazy blob mode crash when using Dexie hooks with dexie-cloud-addon. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: eager blob downloader could starve RAM\u003c/strong\u003e — the eager downloader triggered \u003ccode\u003eblobResolveMiddleware\u003c/code\u003e which resolved all pending blobs into memory at once. Fixed by downloading blobs in chunks with a query limit, so memory usage stays bounded regardless of how many blobs are pending. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: in-flight blob downloads are now deduplicated\u003c/strong\u003e — if a blob is requested after download starts but before it is persisted, the existing download promise is reused instead of starting a new download. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: use \u003ccode\u003ecache: no-store\u003c/code\u003e for blob fetch requests\u003c/strong\u003e — avoids the browser caching raw blob responses and double-storing them. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003edexie-cloud-addon@4.4.13\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: DataError when applying server-side \u003ccode\u003e$logins\u003c/code\u003e update\u003c/strong\u003e — when a user received a server update for the \u003ccode\u003e$logins\u003c/code\u003e table, dexie-cloud-addon tried to clear \u003ccode\u003eclaims.sub\u003c/code\u003e from the changeSpec using \u003ccode\u003edelByKeyPath\u003c/code\u003e. Due to the bug above, this left \u003ccode\u003e{claims: {}}\u003c/code\u003e in the spec, overwriting the inline primary key with \u003ccode\u003eundefined\u003c/code\u003e and causing \u003ccode\u003eDataError: Evaluating the object store's key path did not yield a value\u003c/code\u003e. Fixed by guarding against empty changeSpec objects after key deletion. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2304\"\u003e#2304\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003edexie-observable\u003c/code\u003e and \u003ccode\u003edexie-syncable\u003c/code\u003e README updated to mark them as legacy/unmaintained, with a recommendation to use \u003ccode\u003edexie-cloud-addon\u003c/code\u003e for sync. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/30134f6bc3e32a3a2a31cb12e69eb6bc838b0dcd\"\u003e\u003ccode\u003e30134f6\u003c/code\u003e\u003c/a\u003e Trigger new dev build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/9dd614d4fe78915dd157c9b6c717508999806aae\"\u003e\u003ccode\u003e9dd614d\u003c/code\u003e\u003c/a\u003e DataError after updating a user in dexie cloud when that user got an update f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/0919742f12b3567d24c07fd3fa164b2108174a39\"\u003e\u003ccode\u003e0919742\u003c/code\u003e\u003c/a\u003e Trigger dev build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/27103018a91cd8b72914f3fcf1c7d166beae821e\"\u003e\u003ccode\u003e2710301\u003c/code\u003e\u003c/a\u003e Fix delByKeyPath so that it does not create empty object when keyPath is dott...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/a02483137c2c86c209cf253d7bd06fee54d42137\"\u003e\u003ccode\u003ea024831\u003c/code\u003e\u003c/a\u003e dexie-cloud-addon@4.4.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/988ec9c8220f4751c97d14bf95a7cc4fff8754a5\"\u003e\u003ccode\u003e988ec9c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexie/Dexie.js/issues/2302\"\u003e#2302\u003c/a\u003e from dexie/liz/fix-blobsave-hooks-psd-context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/b74758fb196071875323c7c28cff80bf224334af\"\u003e\u003ccode\u003eb74758f\u003c/code\u003e\u003c/a\u003e Use cache: no-store to avoid double storing blobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/ed59f5c7d7f6bf5452818784c1e9b7f31dfd0c5b\"\u003e\u003ccode\u003eed59f5c\u003c/code\u003e\u003c/a\u003e Implify one bit more\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/f0bb943189e3504124331118f676482f88fd63ae\"\u003e\u003ccode\u003ef0bb943\u003c/code\u003e\u003c/a\u003e Simplified the loop in eagerBlobDownloader by requesting keys first.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/d2c3ef08b3f572c868f7daa53ce23845ecd4de3d\"\u003e\u003ccode\u003ed2c3ef0\u003c/code\u003e\u003c/a\u003e Bugfix: eager blob downloader would trigger blobResolveMiddleware and resolve...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexie/Dexie.js/compare/v4.4.2...v4.4.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 3.4.2 to 3.4.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCleaned up the repository root, renamed some and removed unneeded files\u003c/li\u003e\n\u003cli\u003eFixed an issue with handling of Trusted Types policies, thanks \u003ca href=\"https://github.com/fulstadev\"\u003e\u003ccode\u003e@​fulstadev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the node iterator for better template scrubbing, thanks \u003ca href=\"https://github.com/IamLeandrooooo\"\u003e\u003ccode\u003e@​IamLeandrooooo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncluded formerly missing LICENSE-MPL in published npm package, thanks \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHardened the handling of Shadow Roots when using \u003ccode\u003eIN_PLACE\u003c/code\u003e, thanks \u003ca href=\"https://github.com/GameZoneHacker\"\u003e\u003ccode\u003e@​GameZoneHacker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved a problem leading to permanent hook pollution, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactored the test suite and expanded test coverage significantly\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed several issues with DOM Clobbering in \u003ccode\u003eIN_PLACE\u003c/code\u003e mode, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHardened the checks for cross-realm \u003ccode\u003eIN_PLACE\u003c/code\u003e and Shadow DOM sanitization, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded more test coverage for \u003ccode\u003eIN_PLACE\u003c/code\u003e and general DOM Clobbering attacks\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a bypass caused by the new HTML element \u003ccode\u003eselectedcontent\u003c/code\u003e added in 3.4.4, thanks \u003ca href=\"https://github.com/KabirAcharya\"\u003e\u003ccode\u003e@​KabirAcharya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNote that this is a security release for an issue introduced in 3.4.4 and should be upgraded to immediately.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003eselectedcontent\u003c/code\u003e element to default allow-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded the \u003ccode\u003ecommand\u003c/code\u003e and \u003ccode\u003ecommandfor\u003c/code\u003e attributes to default allowed-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better template scrubbing for \u003ccode\u003eIN_PLACE\u003c/code\u003e operations, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded stronger checks for cross-realm windows, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/fg0x0\"\u003e\u003ccode\u003e@​fg0x0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated demo website and made sure it uses the latest from main\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, dependabot, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🚨 \u003cstrong\u003eThis release had been flagged as deprecated, please use DOMPurify 3.4.5 instead\u003c/strong\u003e 🚨\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with handling of nested Shadow DOM trees, thanks \u003ca href=\"https://github.com/fishjojo1\"\u003e\u003ccode\u003e@​fishjojo1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the template regexes to be more robust against ReDoS attacks, thanks \u003ca href=\"https://github.com/aleung27\"\u003e\u003ccode\u003e@​aleung27\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the node iteration code to catch more Shadow DOM related issues\u003c/li\u003e\n\u003cli\u003eUpdated Playwright and added Node 26 to test matrix\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bcdd8285412dc9c4c149652aed2d712e790d6ccf\"\u003e\u003ccode\u003ebcdd828\u003c/code\u003e\u003c/a\u003e release: 3.4.8 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1439\"\u003e#1439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/ca30f070c360df162a3e3848e80e6fd3c9e74bff\"\u003e\u003ccode\u003eca30f07\u003c/code\u003e\u003c/a\u003e release: 3.4.7 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1414\"\u003e#1414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bb7739e5bccec7e1ab3dae3f3e42d02db3acaaae\"\u003e\u003ccode\u003ebb7739e\u003c/code\u003e\u003c/a\u003e release: 3.4.6 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1394\"\u003e#1394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/011b0c78f2a0f57ee54f5fcccb697a46ca6e63ea\"\u003e\u003ccode\u003e011b0c7\u003c/code\u003e\u003c/a\u003e release: 3.4.5 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1382\"\u003e#1382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5817ad969c15e67dfcd6cb37248d6e9c1553e7c3\"\u003e\u003ccode\u003e5817ad9\u003c/code\u003e\u003c/a\u003e release: 3.4.4 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/520edb0371a9638f9b51f1798051299a250c686b\"\u003e\u003ccode\u003e520edb0\u003c/code\u003e\u003c/a\u003e release: 3.4.3 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1352\"\u003e#1352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/3.4.2...3.4.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.3.0 to 6.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e for argon2 memory limit (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1943\"\u003e#1943\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2014\"\u003e#2014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix RSA signing using SHA3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1952\"\u003e#1952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow creating signature notations when generating/reformatting keys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1953\"\u003e#1953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003e'node16'\u003c/code\u003e/\u003ccode\u003e'nodenext'\u003c/code\u003e compatibility, and emit type declarations for .ts files with external exports under \u003ccode\u003edist/types\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1987\"\u003e#1987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix AnyPacket declaration to also include \u003ccode\u003eBasePacket\u0026lt;true\u0026gt;\u003c/code\u003e subclasses (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1991\"\u003e#1991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-zero IV usages for AES-CFB (spec compliance issue; no security or interoperability impact) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ac0048404b74a3595d503125b53f3b3d0486bec\"\u003e\u003ccode\u003e2ac0048\u003c/code\u003e\u003c/a\u003e 6.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/3c6abc9a9b1ad33a02a96a6e420857f63ba387c9\"\u003e\u003ccode\u003e3c6abc9\u003c/code\u003e\u003c/a\u003e Argon2: set hard limit for \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e to cap memory at ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cba29041e089b18a44d32d0defa1ccf0414bb938\"\u003e\u003ccode\u003ecba2904\u003c/code\u003e\u003c/a\u003e Internal: fix \u003ccode\u003ereadExactSubarray\u003c/code\u003e to correctly enforce end boundary (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2013\"\u003e#2013\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/4318a48703d9bd606d3062a4e485ef14d08dfd4c\"\u003e\u003ccode\u003e4318a48\u003c/code\u003e\u003c/a\u003e Run npm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/dd9274e9e23ef3e25cb14df9e3b6ff4177758757\"\u003e\u003ccode\u003edd9274e\u003c/code\u003e\u003c/a\u003e Fix non-zero IV usages for AES-CFB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/0a67d5e9b056f7696c2c21a53981c8cbfd6a1cf9\"\u003e\u003ccode\u003e0a67d5e\u003c/code\u003e\u003c/a\u003e npm: add \u003ccode\u003emin-release-age\u003c/code\u003e constraint (for manual installs)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ba545d4015ca65e35b93c2d1facd310ce1e94fb\"\u003e\u003ccode\u003e2ba545d\u003c/code\u003e\u003c/a\u003e Bump the dev-dependencies group across 1 directory with 9 updates (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2011\"\u003e#2011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/657ac6495e3aa78f78bdfd18edad38a042fcb066\"\u003e\u003ccode\u003e657ac64\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-unicorn from 62.0.0 to 64.0.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1999\"\u003e#1999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/df8c044392042cd2a1fac50d74081aefbf598e51\"\u003e\u003ccode\u003edf8c044\u003c/code\u003e\u003c/a\u003e Bump fflate from 0.8.2 to 0.8.3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2007\"\u003e#2007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/38915311010a1984078a41f6df90e898751e3acb\"\u003e\u003ccode\u003e3891531\u003c/code\u003e\u003c/a\u003e Bump fast-xml-builder (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2003\"\u003e#2003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `preact` from 10.29.1 to 10.29.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/preactjs/preact/releases\"\u003epreact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e10.29.2\u003c/h2\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix hydration when we have defaultValue or value on a textarea (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5081\"\u003e#5081\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS for GitHub configuration (v10.x) (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5088\"\u003e#5088\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix trusted publishing workflow (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5084\"\u003e#5084\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTrusted publishing (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5072\"\u003e#5072\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/fce6ed7a6d5f2c7333d9c26fb09f5bb9e929a737\"\u003e\u003ccode\u003efce6ed7\u003c/code\u003e\u003c/a\u003e 10.29.2 (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5091\"\u003e#5091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/84581d0b9bcc8788058fa171f437445471fc0f9f\"\u003e\u003ccode\u003e84581d0\u003c/code\u003e\u003c/a\u003e Fix buggy edge case (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5090\"\u003e#5090\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/5a39554bbde4f7768e2537f19896e3ea7cbb592b\"\u003e\u003ccode\u003e5a39554\u003c/code\u003e\u003c/a\u003e Add CODEOWNERS for GitHub configuration (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5088\"\u003e#5088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/562e0f510bb98ccc73d0fea4e8c1339a3cb1da07\"\u003e\u003ccode\u003e562e0f5\u003c/code\u003e\u003c/a\u003e Fix trusted publishing workflow (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5084\"\u003e#5084\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/3a012555a9cd572fb85016c915ac61aecded51b7\"\u003e\u003ccode\u003e3a01255\u003c/code\u003e\u003c/a\u003e Trusted publishing (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5072\"\u003e#5072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/cae8d3a4a6695809e287ec7fddd992db377a1234\"\u003e\u003ccode\u003ecae8d3a\u003c/code\u003e\u003c/a\u003e Fix migrations when we have defaultValue or value on a textarea (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5081\"\u003e#5081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/preactjs/preact/compare/10.29.1...10.29.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for preact since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `svelte` from 5.55.1 to 5.56.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.56.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore errors that occur in destroyed effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18384\"\u003e#18384\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: type BigInts in \u003ccode\u003e$state.snapshot(...)\u003c/code\u003e return values (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18388\"\u003e#18388\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.56.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: properly track effect end node for async sibling component (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18371\"\u003e#18371\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent false-positive reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: bump esrap dependency (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18372\"\u003e#18372\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore declaration tags for animation directive (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18366\"\u003e#18366\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reject pending async deriveds on discard (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18308\"\u003e#18308\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.56.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: error at compile time on duplicate snippet/declaration tag definitions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18351\"\u003e#18351\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: parse declaration tag contents more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18353\"\u003e#18353\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly transform references to earlier declarators in a declaration tag (e.g. \u003ccode\u003e{let a = $state(0), b = $derived(a * 2)}\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid spurious \u003ccode\u003estate_referenced_locally\u003c/code\u003e warnings for \u003ccode\u003e$derived\u003c/code\u003e declarations in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: tolerate whitespace before \u003ccode\u003elet\u003c/code\u003e/\u003ccode\u003econst\u003c/code\u003e in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent infinite loop when a tag's expression ends with a trailing \u003ccode\u003e/\u003c/code\u003e at the end of the input (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18350\"\u003e#18350\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: more robust parsing of declaration tags with regards to \u003ccode\u003etype\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18330\"\u003e#18330\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: preserve newlines in spread input values when the \u003ccode\u003etype\u003c/code\u003e attribute is applied after \u003ccode\u003evalue\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18345\"\u003e#18345\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: update \u003ccode\u003eSvelteURLSearchParams\u003c/code\u003e when setting duplicate keys to the same joined value (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18336\"\u003e#18336\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: check references for blockers on server, too (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18352\"\u003e#18352\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.56.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow declarations in the template (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18282\"\u003e#18282\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.56.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore errors that occur in destroyed effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18384\"\u003e#18384\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: type BigInts in \u003ccode\u003e$state.snapshot(...)\u003c/code\u003e return values (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18388\"\u003e#18388\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.56.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: properly track effect end node for async sibling component (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18371\"\u003e#18371\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent false-positive reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: bump esrap dependency (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18372\"\u003e#18372\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore declaration tags for animation directive (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18366\"\u003e#18366\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reject pending async deriveds on discard (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18308\"\u003e#18308\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.56.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: error at compile time on duplicate snippet/declaration tag definitions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18351\"\u003e#18351\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: parse declaration tag contents more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18353\"\u003e#18353\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly transform references to earlier declarators in a declaration tag (e.g. \u003ccode\u003e{let a = $state(0), b = $derived(a * 2)}\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid spurious \u003ccode\u003estate_referenced_locally\u003c/code\u003e warnings for \u003ccode\u003e$derived\u003c/code\u003e declarations in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: tolerate whitespace before \u003ccode\u003elet\u003c/code\u003e/\u003ccode\u003econst\u003c/code\u003e in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent infinite loop when a tag's expression ends with a trailing \u003ccode\u003e/\u003c/code\u003e at the end of the input (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18350\"\u003e#18350\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e...\n\n_Description has been truncated_","html_url":"https://github.com/forwardemail/mail.forwardemail.net/pull/86","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/forwardemail%2Fmail.forwardemail.net/issues/86","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/86/packages"},{"uuid":"4608868448","node_id":"PR_kwDOBxlnvM7jsn-F","number":831,"state":"closed","title":"build(deps): bump the npm-deps group across 1 directory with 9 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-07T22:54:13.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-07T22:04:15.000Z","updated_at":"2026-06-07T22:54:14.000Z","time_to_close":2998,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm-deps","update_count":9,"packages":[{"name":"dompurify","old_version":"3.4.7","new_version":"3.4.8","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"squire-rte","old_version":"2.4.6","new_version":"2.4.7","repository_url":"https://github.com/neilj/Squire"},{"name":"@types/chrome","old_version":"0.1.42","new_version":"0.1.43","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@types/jquery","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"eslint-plugin-jsdoc","old_version":"63.0.0","new_version":"63.0.2","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"openpgp","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"stylelint","old_version":"17.12.0","new_version":"17.13.0","repository_url":"https://github.com/stylelint/stylelint"},{"name":"typescript-eslint","old_version":"8.60.0","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"undici-types","old_version":"8.3.0","new_version":"8.4.0","repository_url":"https://github.com/nodejs/undici"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-deps group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.4.7` | `3.4.8` |\n| [squire-rte](https://github.com/neilj/Squire) | `2.4.6` | `2.4.7` |\n| [@types/chrome](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/chrome) | `0.1.42` | `0.1.43` |\n| [@types/jquery](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jquery) | `4.0.0` | `4.0.1` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `63.0.0` | `63.0.2` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.3.0` | `6.3.1` |\n| [stylelint](https://github.com/stylelint/stylelint) | `17.12.0` | `17.13.0` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.60.0` | `8.60.1` |\n| [undici-types](https://github.com/nodejs/undici) | `8.3.0` | `8.4.0` |\n\n\nUpdates `dompurify` from 3.4.7 to 3.4.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCleaned up the repository root, renamed some and removed unneeded files\u003c/li\u003e\n\u003cli\u003eFixed an issue with handling of Trusted Types policies, thanks \u003ca href=\"https://github.com/fulstadev\"\u003e\u003ccode\u003e@​fulstadev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the node iterator for better template scrubbing, thanks \u003ca href=\"https://github.com/IamLeandrooooo\"\u003e\u003ccode\u003e@​IamLeandrooooo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncluded formerly missing LICENSE-MPL in published npm package, thanks \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bcdd8285412dc9c4c149652aed2d712e790d6ccf\"\u003e\u003ccode\u003ebcdd828\u003c/code\u003e\u003c/a\u003e release: 3.4.8 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1439\"\u003e#1439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/3.4.7...3.4.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `squire-rte` from 2.4.6 to 2.4.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastmail/Squire/blob/master/CHANGELOG.md\"\u003esquire-rte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.4.7] - 2026-06-02\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrag and drop of text/html is now handled by Squire rather than letting the\nbrowser do it. This gives consistency with cut/paste operations in terms of\ncleaning and sanitising HTML.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/neilj/Squire/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/chrome` from 0.1.42 to 0.1.43\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/jquery` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jquery\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `eslint-plugin-jsdoc` from 63.0.0 to 63.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/releases\"\u003eeslint-plugin-jsdoc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev63.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/compare/v63.0.1...v63.0.2\"\u003e63.0.2\u003c/a\u003e (2026-06-06)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow typedef returns that may be void; fixes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1390\"\u003e#1390\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1699\"\u003e#1699\u003c/a\u003e) (\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/319e84b21dfc21213f42998beee26e199660747c\"\u003e319e84b\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev63.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/compare/v63.0.0...v63.0.1\"\u003e63.0.1\u003c/a\u003e (2026-06-01)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eempty-tags\u003c/code\u003e:\u003c/strong\u003e preserve start and ending delimiters to avoid erros with single-line tags; fixes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1697\"\u003e#1697\u003c/a\u003e (\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/938a1f0caf9f5de4dc04acd269a9a5eb3e5eb424\"\u003e938a1f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/50a7fbcf4abf7b27ca2774f65397f2f74395ea41\"\u003e\u003ccode\u003e50a7fbc\u003c/code\u003e\u003c/a\u003e chore: update semver and devDeps.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/6041995ba873b5641e3b9bd1f95de004b4b9e7da\"\u003e\u003ccode\u003e6041995\u003c/code\u003e\u003c/a\u003e docs: fix in output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/319e84b21dfc21213f42998beee26e199660747c\"\u003e\u003ccode\u003e319e84b\u003c/code\u003e\u003c/a\u003e fix: allow typedef returns that may be void; fixes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1390\"\u003e#1390\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1699\"\u003e#1699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/938a1f0caf9f5de4dc04acd269a9a5eb3e5eb424\"\u003e\u003ccode\u003e938a1f0\u003c/code\u003e\u003c/a\u003e fix(\u003ccode\u003eempty-tags\u003c/code\u003e): preserve start and ending delimiters to avoid erros with s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/1f857a9e61ddb45539b65e5e8eb1f1ae3af4dab4\"\u003e\u003ccode\u003e1f857a9\u003c/code\u003e\u003c/a\u003e chore: update jsdoccomment, comment-parser, object-deep-merge, semver, devDeps.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/3d53b88baed2b49e04b4aa71599d1b449efcc3f8\"\u003e\u003ccode\u003e3d53b88\u003c/code\u003e\u003c/a\u003e docs: fix AST and Selectors links; closes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1691\"\u003e#1691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/a0b05f530b575a317c430c1cac7ac1a439828414\"\u003e\u003ccode\u003ea0b05f5\u003c/code\u003e\u003c/a\u003e chore(deps): bump minimatch from 3.0.5 to 10.2.5\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/compare/v63.0.0...v63.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.3.0 to 6.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e for argon2 memory limit (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1943\"\u003e#1943\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2014\"\u003e#2014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix RSA signing using SHA3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1952\"\u003e#1952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow creating signature notations when generating/reformatting keys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1953\"\u003e#1953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003e'node16'\u003c/code\u003e/\u003ccode\u003e'nodenext'\u003c/code\u003e compatibility, and emit type declarations for .ts files with external exports under \u003ccode\u003edist/types\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1987\"\u003e#1987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix AnyPacket declaration to also include \u003ccode\u003eBasePacket\u0026lt;true\u0026gt;\u003c/code\u003e subclasses (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1991\"\u003e#1991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-zero IV usages for AES-CFB (spec compliance issue; no security or interoperability impact) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ac0048404b74a3595d503125b53f3b3d0486bec\"\u003e\u003ccode\u003e2ac0048\u003c/code\u003e\u003c/a\u003e 6.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/3c6abc9a9b1ad33a02a96a6e420857f63ba387c9\"\u003e\u003ccode\u003e3c6abc9\u003c/code\u003e\u003c/a\u003e Argon2: set hard limit for \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e to cap memory at ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cba29041e089b18a44d32d0defa1ccf0414bb938\"\u003e\u003ccode\u003ecba2904\u003c/code\u003e\u003c/a\u003e Internal: fix \u003ccode\u003ereadExactSubarray\u003c/code\u003e to correctly enforce end boundary (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2013\"\u003e#2013\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/4318a48703d9bd606d3062a4e485ef14d08dfd4c\"\u003e\u003ccode\u003e4318a48\u003c/code\u003e\u003c/a\u003e Run npm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/dd9274e9e23ef3e25cb14df9e3b6ff4177758757\"\u003e\u003ccode\u003edd9274e\u003c/code\u003e\u003c/a\u003e Fix non-zero IV usages for AES-CFB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/0a67d5e9b056f7696c2c21a53981c8cbfd6a1cf9\"\u003e\u003ccode\u003e0a67d5e\u003c/code\u003e\u003c/a\u003e npm: add \u003ccode\u003emin-release-age\u003c/code\u003e constraint (for manual installs)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ba545d4015ca65e35b93c2d1facd310ce1e94fb\"\u003e\u003ccode\u003e2ba545d\u003c/code\u003e\u003c/a\u003e Bump the dev-dependencies group across 1 directory with 9 updates (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2011\"\u003e#2011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/657ac6495e3aa78f78bdfd18edad38a042fcb066\"\u003e\u003ccode\u003e657ac64\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-unicorn from 62.0.0 to 64.0.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1999\"\u003e#1999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/df8c044392042cd2a1fac50d74081aefbf598e51\"\u003e\u003ccode\u003edf8c044\u003c/code\u003e\u003c/a\u003e Bump fflate from 0.8.2 to 0.8.3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2007\"\u003e#2007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/38915311010a1984078a41f6df90e898751e3acb\"\u003e\u003ccode\u003e3891531\u003c/code\u003e\u003c/a\u003e Bump fast-xml-builder (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2003\"\u003e#2003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `stylelint` from 17.12.0 to 17.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stylelint/stylelint/releases\"\u003estylelint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e17.13.0\u003c/h2\u003e\n\u003cp\u003eIt fixes 3 bugs, including a false negative one.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: \u003ccode\u003edeclaration-block-no-duplicate-properties\u003c/code\u003e false negatives for interleaved non-consecutive duplicates with \u003ccode\u003eignore: [\u0026quot;consecutive-duplicates(-*)\u0026quot;]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9324\"\u003e#9324\u003c/a\u003e) (\u003ca href=\"https://github.com/sarathfrancis90\"\u003e\u003ccode\u003e@​sarathfrancis90\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-max-type\u003c/code\u003e false positives for nested selectors (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9319\"\u003e#9319\u003c/a\u003e) (\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-type-no-unknown\u003c/code\u003e false positives for \u003ccode\u003einstall\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9308\"\u003e#9308\u003c/a\u003e) (\u003ca href=\"https://github.com/Mouvedia\"\u003e\u003ccode\u003e@​Mouvedia\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md\"\u003estylelint's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e17.13.0 - 2026-06-06\u003c/h2\u003e\n\u003cp\u003eIt fixes 3 bugs, including a false negative one.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: \u003ccode\u003edeclaration-block-no-duplicate-properties\u003c/code\u003e false negatives for interleaved non-consecutive duplicates with \u003ccode\u003eignore: [\u0026quot;consecutive-duplicates(-*)\u0026quot;]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/pull/9324\"\u003e#9324\u003c/a\u003e) (\u003ca href=\"https://github.com/sarathfrancis90\"\u003e\u003ccode\u003e@​sarathfrancis90\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-max-type\u003c/code\u003e false positives for nested selectors (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/pull/9319\"\u003e#9319\u003c/a\u003e) (\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-type-no-unknown\u003c/code\u003e false positives for \u003ccode\u003einstall\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/pull/9308\"\u003e#9308\u003c/a\u003e) (\u003ca href=\"https://github.com/Mouvedia\"\u003e\u003ccode\u003e@​Mouvedia\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/7fcee2b3155adb43daa2078762a15c2d9a24e69b\"\u003e\u003ccode\u003e7fcee2b\u003c/code\u003e\u003c/a\u003e Release 17.13.0 (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9342\"\u003e#9342\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/3b7287b2eb88474f63f6d17474e87ba836bf1f43\"\u003e\u003ccode\u003e3b7287b\u003c/code\u003e\u003c/a\u003e Refactor to reuse shared utilities (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9337\"\u003e#9337\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/8e889c3394f410916343a5e4c2b372ec514184d0\"\u003e\u003ccode\u003e8e889c3\u003c/code\u003e\u003c/a\u003e Bump lint-staged from 17.0.4 to 17.0.5 (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9334\"\u003e#9334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/a74aab46df5a94afa0cf4fddc9faf6eeacf34293\"\u003e\u003ccode\u003ea74aab4\u003c/code\u003e\u003c/a\u003e Bump the stylelint-actions group with 5 updates (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9333\"\u003e#9333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/74c644828b839add46650d67390a0f1094dbcf7a\"\u003e\u003ccode\u003e74c6448\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003edeclaration-block-no-duplicate-properties\u003c/code\u003e false negatives for interleav...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/1cd26ac54ed16b92f77487f85b9305ca320f4085\"\u003e\u003ccode\u003e1cd26ac\u003c/code\u003e\u003c/a\u003e Skip changeset verification on fork PRs CI (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9331\"\u003e#9331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/712b9867f7a1fa631813f577d7941686a10d3a58\"\u003e\u003ccode\u003e712b986\u003c/code\u003e\u003c/a\u003e Fix vulnerable dependencies via \u003ccode\u003enpm audit fix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9328\"\u003e#9328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/27196b71dbc255bd612ad26dee40bf276a8123b0\"\u003e\u003ccode\u003e27196b7\u003c/code\u003e\u003c/a\u003e Fix CI badge in README.md (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9329\"\u003e#9329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/179bba2e5a3264f9e96baf3318afdf113ea4f8dc\"\u003e\u003ccode\u003e179bba2\u003c/code\u003e\u003c/a\u003e Refactor to use \u003ccode\u003e@import\u003c/code\u003e over \u003ccode\u003e@typedef\u003c/code\u003e for simple imports (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9326\"\u003e#9326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/94eab544e488dddb43829353649da8debd6427b5\"\u003e\u003ccode\u003e94eab54\u003c/code\u003e\u003c/a\u003e Document using our PR template (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9327\"\u003e#9327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/stylelint/stylelint/compare/17.12.0...17.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `typescript-eslint` from 8.60.0 to 8.60.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003etypescript-eslint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.60.1\u003c/h2\u003e\n\u003ch2\u003e8.60.1 (2026-06-01)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e respect ECMAScript line terminators in ts-comment rules (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12352\"\u003e#12352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-shadow] correct rule to match ESLint v10 handling (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12182\"\u003e#12182\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003cli\u003eNevette Bailey \u003ca href=\"https://github.com/nevette-bailey\"\u003e\u003ccode\u003e@​nevette-bailey\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.60.1\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md\"\u003etypescript-eslint's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.60.1 (2026-06-01)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for typescript-eslint to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.60.1\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/4f84a697aedc436559c3ae09b5b357d98b448d68\"\u003e\u003ccode\u003e4f84a69\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.60.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/1849b530c254fb4f89d7270160f3a998e4acd964\"\u003e\u003ccode\u003e1849b53\u003c/code\u003e\u003c/a\u003e chore: typecheck using tsgo (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint/issues/12139\"\u003e#12139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.60.1/packages/typescript-eslint\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `undici-types` from 8.3.0 to 8.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodejs/undici/releases\"\u003eundici-types's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: register connect listener before initiating requests in close-and-destroy test by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5272\"\u003enodejs/undici#5272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: stabilize tls-cert-leak regression by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5306\"\u003enodejs/undici#5306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace tspl with native test context in test/examples.js by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5300\"\u003enodejs/undici#5300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp2: remove redundant request stream binding by \u003ca href=\"https://github.com/trivikr\"\u003e\u003ccode\u003e@​trivikr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5302\"\u003enodejs/undici#5302\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: limit cache-tests workers on Windows by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5309\"\u003enodejs/undici#5309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: use test context cleanup hooks in parser issue tests by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5282\"\u003enodejs/undici#5282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd redirect option to strip headers on redirect by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5281\"\u003enodejs/undici#5281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(test): fix lint failure by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5316\"\u003enodejs/undici#5316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): use \u003ccode\u003enpm ci\u003c/code\u003e instead of \u003ccode\u003enpm install\u003c/code\u003e by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5315\"\u003enodejs/undici#5315\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify formData security considerations by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5320\"\u003enodejs/undici#5320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add EventSource server example by \u003ca href=\"https://github.com/Will-thom\"\u003e\u003ccode\u003e@​Will-thom\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5321\"\u003enodejs/undici#5321\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): simplify \u003ccode\u003eaddAbortListener\u003c/code\u003e util by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5317\"\u003enodejs/undici#5317\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump ws from 8.20.0 to 8.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5325\"\u003enodejs/undici#5325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump jsondiffpatch from 0.7.3 to 0.7.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5313\"\u003enodejs/undici#5313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: match undici EoL to node version it's bundled in by \u003ca href=\"https://github.com/trivikr\"\u003e\u003ccode\u003e@​trivikr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5330\"\u003enodejs/undici#5330\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle all HTTP/2 request stream sync errors by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5311\"\u003enodejs/undici#5311\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve timeout errors for HTTP/2 requests by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5091\"\u003enodejs/undici#5091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): normalize autoSelectFamily timeout AggregateError by \u003ca href=\"https://github.com/youcefzemmar\"\u003e\u003ccode\u003e@​youcefzemmar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5329\"\u003enodejs/undici#5329\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(core): define \u003ccode\u003ekEnumerableProperty\u003c/code\u003e atomically by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5332\"\u003enodejs/undici#5332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(core): use \u003ccode\u003eregex.exec\u003c/code\u003e instead of \u003ccode\u003estring.match\u003c/code\u003e by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5331\"\u003enodejs/undici#5331\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: reset invalid HTTP/2 sessions by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5310\"\u003enodejs/undici#5310\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(connect): add \u003ccode\u003epreferH2\u003c/code\u003e connector option to offer h2 first in ALPN by \u003ca href=\"https://github.com/Antamansid\"\u003e\u003ccode\u003e@​Antamansid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5327\"\u003enodejs/undici#5327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: fix flaky http2 trailers test by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5338\"\u003enodejs/undici#5338\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mock): restore single-arg MockCallHistory.filterCallsByX by \u003ca href=\"https://github.com/youcefzemmar\"\u003e\u003ccode\u003e@​youcefzemmar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5328\"\u003enodejs/undici#5328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: document missing error types in Errors.md by \u003ca href=\"https://github.com/cesarvspr\"\u003e\u003ccode\u003e@​cesarvspr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5339\"\u003enodejs/undici#5339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.35.3 to 4.36.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5346\"\u003enodejs/undici#5346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.9.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5347\"\u003enodejs/undici#5347\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump uWebSockets.js from v20.67.0 to v20.68.0 in /benchmarks by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5352\"\u003enodejs/undici#5352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump concurrently from 9.2.1 to 10.0.3 in /benchmarks by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5353\"\u003enodejs/undici#5353\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump step-security/harden-runner from 2.19.1 to 2.19.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5348\"\u003enodejs/undici#5348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 6.0.2 to 6.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5351\"\u003enodejs/undici#5351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump codecov/codecov-action from 6.0.0 to 6.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5349\"\u003enodejs/undici#5349\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: improve connect option documentation in Client.md by \u003ca href=\"https://github.com/AliMahmoudDev\"\u003e\u003ccode\u003e@​AliMahmoudDev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5344\"\u003enodejs/undici#5344\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mock): do not persist snapshots on close in playback mode by \u003ca href=\"https://github.com/GeoffreyBooth\"\u003e\u003ccode\u003e@​GeoffreyBooth\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5359\"\u003enodejs/undici#5359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(fetch): remove abort listener when request settles by \u003ca href=\"https://github.com/ATOM00blue\"\u003e\u003ccode\u003e@​ATOM00blue\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5318\"\u003enodejs/undici#5318\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add Node.js global fetch regression coverage by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5361\"\u003enodejs/undici#5361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(h2): make Client multiplex on h2 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4143\"\u003e#4143\u003c/a\u003e) by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5362\"\u003enodejs/undici#5362\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Will-thom\"\u003e\u003ccode\u003e@​Will-thom\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5321\"\u003enodejs/undici#5321\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/youcefzemmar\"\u003e\u003ccode\u003e@​youcefzemmar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5329\"\u003enodejs/undici#5329\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Antamansid\"\u003e\u003ccode\u003e@​Antamansid\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5327\"\u003enodejs/undici#5327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cesarvspr\"\u003e\u003ccode\u003e@​cesarvspr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5339\"\u003enodejs/undici#5339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AliMahmoudDev\"\u003e\u003ccode\u003e@​AliMahmoudDev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5344\"\u003enodejs/undici#5344\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ATOM00blue\"\u003e\u003ccode\u003e@​ATOM00blue\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5318\"\u003enodejs/undici#5318\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v8.3.0...v8.4.0\"\u003ehttps://github.com/nodejs/undici/compare/v8.3.0...v8.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/43725b9913ebb3668af1c89d71a24a9ea0085e4f\"\u003e\u003ccode\u003e43725b9\u003c/code\u003e\u003c/a\u003e Bumped v8.4.0 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5370\"\u003e#5370\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/0acef154034717945b3fd58d070f3c52c570163b\"\u003e\u003ccode\u003e0acef15\u003c/code\u003e\u003c/a\u003e fix(h2): make Client multiplex on h2 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4143\"\u003e#4143\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5362\"\u003e#5362\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/c28254602b861999235e6abfd5cc56c6c324a1a6\"\u003e\u003ccode\u003ec282546\u003c/code\u003e\u003c/a\u003e test: add Node.js global fetch regression coverage (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5361\"\u003e#5361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/313f4e01689993cdb9a90a2d501d721885a80347\"\u003e\u003ccode\u003e313f4e0\u003c/code\u003e\u003c/a\u003e fix(fetch): remove abort listener when request settles (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5318\"\u003e#5318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/2f66db7322f4eefa3a014ec990becde802f08436\"\u003e\u003ccode\u003e2f66db7\u003c/code\u003e\u003c/a\u003e fix(mock): do not persist snapshots on close in playback mode (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5359\"\u003e#5359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/9b1d58fccdfcbbf138edc72bc33434e135918731\"\u003e\u003ccode\u003e9b1d58f\u003c/code\u003e\u003c/a\u003e docs: improve connect option documentation in Client.md (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5344\"\u003e#5344\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/55d3a9f3db88fd13e6898a49e6f2ce0e777636f9\"\u003e\u003ccode\u003e55d3a9f\u003c/code\u003e\u003c/a\u003e build(deps): bump codecov/codecov-action from 6.0.0 to 6.0.1 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5349\"\u003e#5349\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/7a7bb9d3059a01e50157fe2712617fb678b7d07e\"\u003e\u003ccode\u003e7a7bb9d\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5351\"\u003e#5351\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/b056727f2c3d745b120f479f8fa81bc06cca8f10\"\u003e\u003ccode\u003eb056727\u003c/code\u003e\u003c/a\u003e build(deps): bump step-security/harden-runner from 2.19.1 to 2.19.4 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5348\"\u003e#5348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/1f1407dcec6ded4736e51292c0d25d2480e773af\"\u003e\u003ccode\u003e1f1407d\u003c/code\u003e\u003c/a\u003e build(deps): bump concurrently from 9.2.1 to 10.0.3 in /benchmarks (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5353\"\u003e#5353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodejs/undici/compare/v8.3.0...v8.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/4cm4k1/flowcrypt-browser/pull/831","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/4cm4k1%2Fflowcrypt-browser/issues/831","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/831/packages"},{"uuid":"4053727888","node_id":"PR_kwDOIf4Sk87Je3_m","number":14,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 21 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-11T00:09:22.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-10T19:19:29.000Z","updated_at":"2026-03-11T00:09:24.000Z","time_to_close":17393,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":21,"packages":[{"name":"diff","old_version":"7.0.0","new_version":"8.0.3","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"simple-git","old_version":"3.27.0","new_version":"3.32.3","repository_url":"https://github.com/steveukx/git-js"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.10","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"6.0.1","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.26.0","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.12","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.1","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 20 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `7.0.0` | `8.0.3` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.27.0` | `3.32.3` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.10` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.0.1` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.12` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the DefinitelyTyped types to JsDiff's own type definitions includes multiple fixes and also removes many exported types previously used for \u003ccode\u003eoptions\u003c/code\u003e arguments to diffing and patch-generation functions. (There are now different exported options types for abortable calls - ones with a \u003ccode\u003etimeout\u003c/code\u003e or \u003ccode\u003emaxEditLength\u003c/code\u003e that may give a result of \u003ccode\u003eundefined\u003c/code\u003e - and non-abortable calls.) See the TypeScript section of the README for some usage tips.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eDiff\u003c/code\u003e object is now a class\u003c/strong\u003e. Custom extensions of \u003ccode\u003eDiff\u003c/code\u003e, as described in the \u0026quot;Defining custom diffing behaviors\u0026quot; section of the README, can therefore now be done by writing a \u003ccode\u003eclass CustomDiff extends Diff\u003c/code\u003e and overriding methods, instead of the old way based on prototype inheritance. (I \u003cem\u003ethink\u003c/em\u003e code that did things the old way should still work, though!)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediff/lib/index.es6.js\u003c/code\u003e and \u003ccode\u003ediff/lib/index.mjs\u003c/code\u003e no longer exist, and the ESM version of the library is no longer bundled into a single file.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option for \u003ccode\u003ediffWords\u003c/code\u003e is no longer included in the type declarations\u003c/strong\u003e. The effect of passing \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e has always been to make \u003ccode\u003ediffWords\u003c/code\u003e just call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead, which was confusing, because that behaviour doesn't seem properly described as \u0026quot;ignoring\u0026quot; whitespace at all. The property remains available to non-TypeScript applications for the sake of backwards compatibility, but TypeScript applications will now see a type error if they try to pass \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e to \u003ccode\u003ediffWords\u003c/code\u003e and should change their code to call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJsDiff no longer purports to support ES3 environments. (I'm pretty sure it never truly did, despite claiming to in its README, since even the 1.0.0 release used \u003ccode\u003eArray.map\u003c/code\u003e which was added in ES5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/601\"\u003e#601\u003c/a\u003e - \u003cstrong\u003e\u003ccode\u003ediffJson\u003c/code\u003e's \u003ccode\u003estringifyReplacer\u003c/code\u003e option behaves more like \u003ccode\u003eJSON.stringify\u003c/code\u003e's \u003ccode\u003ereplacer\u003c/code\u003e argument now.\u003c/strong\u003e In particular:\n\u003cul\u003e\n\u003cli\u003eEach key/value pair now gets passed through the replacer once instead of twice\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ekey\u003c/code\u003e passed to the replacer when the top-level object is passed in as \u003ccode\u003evalue\u003c/code\u003e is now \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (previously, was \u003ccode\u003eundefined\u003c/code\u003e), and the \u003ccode\u003ekey\u003c/code\u003e passed with an array element is the array index as a string, like \u003ccode\u003e\u0026quot;0\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;1\u0026quot;\u003c/code\u003e (previously was whatever the key for the entire array was). Both the new behaviours match that of \u003ccode\u003eJSON.stringify\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/602\"\u003e#602\u003c/a\u003e - \u003cstrong\u003ediffing functions now consistently return \u003ccode\u003eundefined\u003c/code\u003e when called in async mode\u003c/strong\u003e (i.e. with a callback). Previously, there was an odd quirk where they would return \u003ccode\u003etrue\u003c/code\u003e if the strings being diffed were equal and \u003ccode\u003eundefined\u003c/code\u003e otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/1179ccb0d31f497449e998a6e67b1b9220565764\"\u003e\u003ccode\u003e1179ccb\u003c/code\u003e\u003c/a\u003e Ignore .zed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/949d6e2a44622b15b5a5be3ffcf196869c5a6b4c\"\u003e\u003ccode\u003e949d6e2\u003c/code\u003e\u003c/a\u003e Add test for the vuln I just fixed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/650\"\u003e#650\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/15a1585230748c8ae6f8274c202e0c87309142f5\"\u003e\u003ccode\u003e15a1585\u003c/code\u003e\u003c/a\u003e Fix the second denial-of-service vulnerability in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/649\"\u003e#649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/de95cca5329730cf9dcdd85c634633693b3ab3db\"\u003e\u003ccode\u003ede95cca\u003c/code\u003e\u003c/a\u003e Fix potentially cubic-time regex in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b9aeedef3fe4764c3408b52990767bd7ac0425ab\"\u003e\u003ccode\u003eb9aeede\u003c/code\u003e\u003c/a\u003e Allow more customisation of file headers in patches (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/641\"\u003e#641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/43c716c4a38aeb72939e41e7ef353a33615335bf\"\u003e\u003ccode\u003e43c716c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/636\"\u003e#636\u003c/a\u003e from kpdecker/dependabot/npm_and_yarn/node-forge-1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b8162c77d711e9c17e440e4f62bad7c88fad1a88\"\u003e\u003ccode\u003eb8162c7\u003c/code\u003e\u003c/a\u003e Bump node-forge from 1.3.1 to 1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad6dc1728e52e4124abcbf906072eaeaa9e63aea\"\u003e\u003ccode\u003ead6dc17\u003c/code\u003e\u003c/a\u003e Fix some bugs in the diffWords regex (and errors \u0026amp; ambiguities in the comment...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3e1774afcfadc806baa58ee780923e4d4097319a\"\u003e\u003ccode\u003e3e1774a\u003c/code\u003e\u003c/a\u003e Fix a comment typo (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/633\"\u003e#633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/7.0.0...v8.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.27.0 to 3.32.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ebc77774: Correctly identify current branch name when using \u003ccode\u003egit.status\u003c/code\u003e in a cloned empty repo.\u003c/p\u003e\n\u003cp\u003ePreviously \u003ccode\u003egit.status\u003c/code\u003e would report the current branch name as \u003ccode\u003eNo\u003c/code\u003e. Thank you to \u003ca href=\"https://github.com/MaddyGuthridge\"\u003e\u003ccode\u003e@​MaddyGuthridge\u003c/code\u003e\u003c/a\u003e for identifying this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.28.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2adf47d: Allow repeating git options like \u003ccode\u003e{'--opt': ['value1', 'value2']}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e22dc93f: Custom binary plugin should support the use of \u003ccode\u003e~\u003c/code\u003e character, used by Windows to shorten long folder names\nand folder names that have spaces in them (eg: \u003ccode\u003eC:\\Program Files\u003c/code\u003e might become \u003ccode\u003eC:\\PROGRA~1\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/skyshineb\"\u003e\u003ccode\u003e@​skyshineb\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/a1170e506eeeaade4a242bfbf6d0620d57872364\"\u003e\u003ccode\u003ea1170e5\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f7042088aa2dac59e3c49a84d7a2f4b26048a257\"\u003e\u003ccode\u003ef704208\u003c/code\u003e\u003c/a\u003e In extension to CVE-2022-25912, switch to case-insensitive check for `protoco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/4bb20811eb35c0fa5437553cad4eb8ebf8f6f6e6\"\u003e\u003ccode\u003e4bb2081\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7ae7537737bafc1e6559a28816785b10926fb095\"\u003e\u003ccode\u003e7ae7537\u003c/code\u003e\u003c/a\u003e Match tokens to word boundary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/c47ad103b07ce768cf69aec63e0c9f7f77a1ab0f\"\u003e\u003ccode\u003ec47ad10\u003c/code\u003e\u003c/a\u003e Lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/8d02097b726c2bc5360b4f55ee3ecb7e09648e4d\"\u003e\u003ccode\u003e8d02097\u003c/code\u003e\u003c/a\u003e Enhanced clone switch detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f6909a52807512cb4e29a654db2dcd409b019113\"\u003e\u003ccode\u003ef6909a5\u003c/code\u003e\u003c/a\u003e Remove test timeout override\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/77406267ceb19aa901495b6ae414020daf789ebf\"\u003e\u003ccode\u003e7740626\u003c/code\u003e\u003c/a\u003e Update plugin.unsafe.spec.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/b562a6c4c1a226d9c7789b72c76784f334c1efac\"\u003e\u003ccode\u003eb562a6c\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/23b070f0a4d320af5e745a42ae6176a629409566\"\u003e\u003ccode\u003e23b070f\u003c/code\u003e\u003c/a\u003e Fix regex for CLONE_OPTIONS constant (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.32.3/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for simple-git since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f\"\u003e\u003ccode\u003e7bc755d\u003c/code\u003e\u003c/a\u003e parse root off paths before sanitizing .. parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/c8cb84629dee649feedde03f2f4ea48f2e44e778\"\u003e\u003ccode\u003ec8cb846\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/1f0c2c9006b10199cf2686f8ef43e79a1773e1aa\"\u003e\u003ccode\u003e1f0c2c9\u003c/code\u003e\u003c/a\u003e 7.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/fbb08518bf290733b68ca4d4135f75becf73fd75\"\u003e\u003ccode\u003efbb0851\u003c/code\u003e\u003c/a\u003e build minified version as default export\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.0.1 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.26.0 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.12 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631...\n\n_Description has been truncated_","html_url":"https://github.com/omercnet/renovate/pull/14","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/omercnet%2Frenovate/issues/14","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/14/packages"},{"uuid":"4053726775","node_id":"PR_kwDOM3OYIc7Je3wo","number":8,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 22 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-11T03:01:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-10T19:19:12.000Z","updated_at":"2026-03-11T03:01:53.000Z","time_to_close":27758,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":22,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"simple-git","old_version":"3.26.0","new_version":"3.32.3","repository_url":"https://github.com/steveukx/git-js"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.10","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 21 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.26.0` | `3.32.3` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.10` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.26.0 to 3.32.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ebc77774: Correctly identify current branch name when using \u003ccode\u003egit.status\u003c/code\u003e in a cloned empty repo.\u003c/p\u003e\n\u003cp\u003ePreviously \u003ccode\u003egit.status\u003c/code\u003e would report the current branch name as \u003ccode\u003eNo\u003c/code\u003e. Thank you to \u003ca href=\"https://github.com/MaddyGuthridge\"\u003e\u003ccode\u003e@​MaddyGuthridge\u003c/code\u003e\u003c/a\u003e for identifying this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.28.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2adf47d: Allow repeating git options like \u003ccode\u003e{'--opt': ['value1', 'value2']}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.27.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e22dc93f: Custom binary plugin should support the use of \u003ccode\u003e~\u003c/code\u003e character, used by Windows to shorten long folder names\nand folder names that have spaces in them (eg: \u003ccode\u003eC:\\Program Files\u003c/code\u003e might become \u003ccode\u003eC:\\PROGRA~1\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/skyshineb\"\u003e\u003ccode\u003e@​skyshineb\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/a1170e506eeeaade4a242bfbf6d0620d57872364\"\u003e\u003ccode\u003ea1170e5\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f7042088aa2dac59e3c49a84d7a2f4b26048a257\"\u003e\u003ccode\u003ef704208\u003c/code\u003e\u003c/a\u003e In extension to CVE-2022-25912, switch to case-insensitive check for `protoco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/4bb20811eb35c0fa5437553cad4eb8ebf8f6f6e6\"\u003e\u003ccode\u003e4bb2081\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7ae7537737bafc1e6559a28816785b10926fb095\"\u003e\u003ccode\u003e7ae7537\u003c/code\u003e\u003c/a\u003e Match tokens to word boundary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/c47ad103b07ce768cf69aec63e0c9f7f77a1ab0f\"\u003e\u003ccode\u003ec47ad10\u003c/code\u003e\u003c/a\u003e Lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/8d02097b726c2bc5360b4f55ee3ecb7e09648e4d\"\u003e\u003ccode\u003e8d02097\u003c/code\u003e\u003c/a\u003e Enhanced clone switch detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f6909a52807512cb4e29a654db2dcd409b019113\"\u003e\u003ccode\u003ef6909a5\u003c/code\u003e\u003c/a\u003e Remove test timeout override\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/77406267ceb19aa901495b6ae414020daf789ebf\"\u003e\u003ccode\u003e7740626\u003c/code\u003e\u003c/a\u003e Update plugin.unsafe.spec.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/b562a6c4c1a226d9c7789b72c76784f334c1efac\"\u003e\u003ccode\u003eb562a6c\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/23b070f0a4d320af5e745a42ae6176a629409566\"\u003e\u003ccode\u003e23b070f\u003c/code\u003e\u003c/a\u003e Fix regex for CLONE_OPTIONS constant (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.32.3/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for simple-git since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f\"\u003e\u003ccode\u003e7bc755d\u003c/code\u003e\u003c/a\u003e parse root off paths before sanitizing .. parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/c8cb84629dee649feedde03f2f4ea48f2e44e778\"\u003e\u003ccode\u003ec8cb846\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/1f0c2c9006b10199cf2686f8ef43e79a1773e1aa\"\u003e\u003ccode\u003e1f0c2c9\u003c/code\u003e\u003c/a\u003e 7.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/fbb08518bf290733b68ca4d4135f75becf73fd75\"\u003e\u003ccode\u003efbb0851\u003c/code\u003e\u003c/a\u003e build minified version as default export\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6...\n\n_Description has been truncated_","html_url":"https://github.com/Jguest7/renovate/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"},{"uuid":"4037098545","node_id":"PR_kwDOP5MuvM7Ipjl1","number":83,"state":"closed","title":"build(deps): bump the minor-patches group across 1 directory with 46 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-07T05:52:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-07T02:49:30.000Z","updated_at":"2026-03-07T05:52:28.000Z","time_to_close":10977,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-patches","update_count":46,"packages":[{"name":"@aws-sdk/client-lambda","old_version":"3.940.0","new_version":"3.1004.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/client-secrets-manager","old_version":"3.940.0","new_version":"3.1004.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/util-arn-parser","old_version":"3.893.0","new_version":"3.972.3","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@casl/ability","old_version":"6.7.5","new_version":"6.8.0","repository_url":"https://github.com/stalniy/casl"},{"name":"@nestjs/throttler","old_version":"6.4.0","new_version":"6.5.0","repository_url":"https://github.com/nestjs/throttler"},{"name":"@tanstack/react-query","old_version":"5.90.11","new_version":"5.90.21","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-query-devtools","old_version":"5.91.1","new_version":"5.91.3","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-virtual","old_version":"3.13.12","new_version":"3.13.21","repository_url":"https://github.com/TanStack/virtual"},{"name":"class-validator","old_version":"0.14.3","new_version":"0.15.1","repository_url":"https://github.com/typestack/class-validator"},{"name":"express-session","old_version":"1.18.2","new_version":"1.19.0","repository_url":"https://github.com/expressjs/session"},{"name":"jotai","old_version":"2.15.1","new_version":"2.18.0","repository_url":"https://github.com/pmndrs/jotai"},{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"pg","old_version":"8.16.3","new_version":"8.20.0","repository_url":"https://github.com/brianc/node-postgres"},{"name":"react-error-boundary","old_version":"6.0.0","new_version":"6.1.1","repository_url":"https://github.com/bvaughn/react-error-boundary"},{"name":"react-hook-form","old_version":"7.67.0","new_version":"7.71.2","repository_url":"https://github.com/react-hook-form/react-hook-form"},{"name":"typeorm","old_version":"0.3.27","new_version":"0.3.28","repository_url":"https://github.com/typeorm/typeorm"},{"name":"@nestjs/schematics","old_version":"11.0.0","new_version":"11.0.9","repository_url":"https://github.com/nestjs/schematics"},{"name":"@nx/cypress","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/devkit","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/eslint","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/eslint-plugin","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/jest","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/js","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/nest","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/node","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/plugin","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/react","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/storybook","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/vite","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/web","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/webpack","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/workspace","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@swc/cli","old_version":"0.6.0","new_version":"0.8.0","repository_url":"https://github.com/swc-project/pkgs"},{"name":"@swc/core","old_version":"1.14.0","new_version":"1.15.18","repository_url":"https://github.com/swc-project/swc"},{"name":"@testing-library/react","old_version":"16.1.0","new_version":"16.3.2","repository_url":"https://github.com/testing-library/react-testing-library"},{"name":"babel-jest","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"eslint-config-prettier","old_version":"10.0.0","new_version":"10.1.8","repository_url":"https://github.com/prettier/eslint-config-prettier"},{"name":"eslint-plugin-import","old_version":"2.31.0","new_version":"2.32.0","repository_url":"https://github.com/import-js/eslint-plugin-import"},{"name":"eslint-plugin-jsx-a11y","old_version":"6.10.1","new_version":"6.10.2","repository_url":"https://github.com/jsx-eslint/eslint-plugin-jsx-a11y"},{"name":"html-webpack-plugin","old_version":"5.6.5","new_version":"5.6.6","repository_url":"https://github.com/jantimon/html-webpack-plugin"},{"name":"jest","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"jest-environment-jsdom","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"jest-util","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"jiti","old_version":"2.4.2","new_version":"2.6.1","repository_url":"https://github.com/unjs/jiti"},{"name":"nx","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"semantic-release","old_version":"25.0.2","new_version":"25.0.3","repository_url":"https://github.com/semantic-release/semantic-release"}],"path":null,"ecosystem":"npm"},"body":"Bumps the minor-patches group with 46 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@aws-sdk/client-lambda](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda) | `3.940.0` | `3.1004.0` |\n| [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) | `3.940.0` | `3.1004.0` |\n| [@aws-sdk/util-arn-parser](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/packages-internal/util-arn-parser) | `3.893.0` | `3.972.3` |\n| [@casl/ability](https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability) | `6.7.5` | `6.8.0` |\n| [@nestjs/throttler](https://github.com/nestjs/throttler) | `6.4.0` | `6.5.0` |\n| [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.90.11` | `5.90.21` |\n| [@tanstack/react-query-devtools](https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools) | `5.91.1` | `5.91.3` |\n| [@tanstack/react-virtual](https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual) | `3.13.12` | `3.13.21` |\n| [class-validator](https://github.com/typestack/class-validator) | `0.14.3` | `0.15.1` |\n| [express-session](https://github.com/expressjs/session) | `1.18.2` | `1.19.0` |\n| [jotai](https://github.com/pmndrs/jotai) | `2.15.1` | `2.18.0` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.2.2` | `6.3.0` |\n| [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg) | `8.16.3` | `8.20.0` |\n| [react-error-boundary](https://github.com/bvaughn/react-error-boundary) | `6.0.0` | `6.1.1` |\n| [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.67.0` | `7.71.2` |\n| [typeorm](https://github.com/typeorm/typeorm) | `0.3.27` | `0.3.28` |\n| [@nestjs/schematics](https://github.com/nestjs/schematics) | `11.0.0` | `11.0.9` |\n| [@nx/cypress](https://github.com/nrwl/nx/tree/HEAD/packages/cypress) | `22.1.3` | `22.5.4` |\n| [@nx/devkit](https://github.com/nrwl/nx/tree/HEAD/packages/devkit) | `22.1.3` | `22.5.4` |\n| [@nx/eslint](https://github.com/nrwl/nx/tree/HEAD/packages/eslint) | `22.1.3` | `22.5.4` |\n| [@nx/eslint-plugin](https://github.com/nrwl/nx/tree/HEAD/packages/eslint-plugin) | `22.1.3` | `22.5.4` |\n| [@nx/jest](https://github.com/nrwl/nx/tree/HEAD/packages/jest) | `22.1.3` | `22.5.4` |\n| [@nx/js](https://github.com/nrwl/nx/tree/HEAD/packages/js) | `22.1.3` | `22.5.4` |\n| [@nx/nest](https://github.com/nrwl/nx/tree/HEAD/packages/nest) | `22.1.3` | `22.5.4` |\n| [@nx/node](https://github.com/nrwl/nx/tree/HEAD/packages/node) | `22.1.3` | `22.5.4` |\n| [@nx/plugin](https://github.com/nrwl/nx/tree/HEAD/packages/plugin) | `22.1.3` | `22.5.4` |\n| [@nx/react](https://github.com/nrwl/nx/tree/HEAD/packages/react) | `22.1.3` | `22.5.4` |\n| [@nx/storybook](https://github.com/nrwl/nx/tree/HEAD/packages/storybook) | `22.1.3` | `22.5.4` |\n| [@nx/vite](https://github.com/nrwl/nx/tree/HEAD/packages/vite) | `22.1.3` | `22.5.4` |\n| [@nx/web](https://github.com/nrwl/nx/tree/HEAD/packages/web) | `22.1.3` | `22.5.4` |\n| [@nx/webpack](https://github.com/nrwl/nx/tree/HEAD/packages/webpack) | `22.1.3` | `22.5.4` |\n| [@nx/workspace](https://github.com/nrwl/nx/tree/HEAD/packages/workspace) | `22.1.3` | `22.5.4` |\n| [@swc/cli](https://github.com/swc-project/pkgs) | `0.6.0` | `0.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.14.0` | `1.15.18` |\n| [@testing-library/react](https://github.com/testing-library/react-testing-library) | `16.1.0` | `16.3.2` |\n| [babel-jest](https://github.com/jestjs/jest/tree/HEAD/packages/babel-jest) | `30.0.5` | `30.2.0` |\n| [eslint-config-prettier](https://github.com/prettier/eslint-config-prettier) | `10.0.0` | `10.1.8` |\n| [eslint-plugin-import](https://github.com/import-js/eslint-plugin-import) | `2.31.0` | `2.32.0` |\n| [eslint-plugin-jsx-a11y](https://github.com/jsx-eslint/eslint-plugin-jsx-a11y) | `6.10.1` | `6.10.2` |\n| [html-webpack-plugin](https://github.com/jantimon/html-webpack-plugin) | `5.6.5` | `5.6.6` |\n| [jest](https://github.com/jestjs/jest/tree/HEAD/packages/jest) | `30.0.5` | `30.2.0` |\n| [jest-environment-jsdom](https://github.com/jestjs/jest/tree/HEAD/packages/jest-environment-jsdom) | `30.0.5` | `30.2.0` |\n| [jest-util](https://github.com/jestjs/jest/tree/HEAD/packages/jest-util) | `30.0.5` | `30.2.0` |\n| [jiti](https://github.com/unjs/jiti) | `2.4.2` | `2.6.1` |\n| [nx](https://github.com/nrwl/nx/tree/HEAD/packages/nx) | `22.1.3` | `22.5.4` |\n| [semantic-release](https://github.com/semantic-release/semantic-release) | `25.0.2` | `25.0.3` |\n\n\nUpdates `@aws-sdk/client-lambda` from 3.940.0 to 3.1004.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e\u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1004.0\u003c/h2\u003e\n\u003ch4\u003e3.1004.0(2026-03-06)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecodegen:\u003c/strong\u003e  smithy-aws-typescript-codegen 0.46.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7825\"\u003e#7825\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9652a4b1b1796b35ef24fd7be4c13ed6eb1deb24\"\u003e9652a4b1\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-06 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8c6015c0d1c17e8807e3be1326377bcf2176efdd\"\u003e8c6015c0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-gameliftstreams:\u003c/strong\u003e  Added new Gen6 stream classes based on the EC2 G6f instance family. These stream classes provide cost-optimized options for streaming well-optimized or lower-fidelity games on Windows environments. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3ce882b68e004b3589f882c1d5fbb9443e07b5b1\"\u003e3ce882b6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Amazon Bedrock Guardrails account-level enforcement APIs now support lists for model inclusion and exclusion from guardrail enforcement. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/63b3598691d116dadd5c389362be5369d5901a39\"\u003e63b35986\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connect:\u003c/strong\u003e  Amazon Connect now supports the ability to programmatically configure and run automated tests for contact center experiences for Chat. Integrate testing into CICD pipelines, run multiple tests at scale, and retrieve results via API to automate validation of chat interactions and workflows. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/696614ae8195f9ba2f9d3366e2d27e3aacf45726\"\u003e696614ae\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bcm-data-exports:\u003c/strong\u003e  Fixed wrong endpoint resolutions in few regions. Added AWS CFN resource schema for BCM Data Exports. Added max value validation for pagination parameter. Fixed ARN format validation for BCM Data Exports resources. Updated size constraints for table properties. Added AccessDeniedException error. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/23fdf9940dbeb9fab236e565d4ef529779a19862\"\u003e23fdf994\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  AWS Deadline Cloud now supports cost scale factors for farms, enabling studios to adjust reported costs to reflect their actual rendering economics. Adjusted costs are reflected in Deadline Cloud's Usage Explorer and Budgets. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/16f6d5104bf57a9d034affe12f33d4f424c7ed0f\"\u003e16f6d510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-appintegrations:\u003c/strong\u003e  This release adds support for webhooks, allowing customers to create an Event Integration with a webhook source. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/c86ed4e1a4295d2654b2cc1ef8e195a6a97bcb58\"\u003ec86ed4e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore-control:\u003c/strong\u003e  Adds support for streaming memory records in AgentCore Memory (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/174685704e07d5b8cbb6414cd6d9f2f6a85736c3\"\u003e17468570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sesv2:\u003c/strong\u003e  Adds support for longer email message header values, increasing the maximum length from 870 to 995 characters for RFC 5322 compliance. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3a573039fa760964ce4b8aef17b46b96183f3087\"\u003e3a573039\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ebuild:\u003c/strong\u003e  fix package release ordering (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7829\"\u003e#7829\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/cc6da58f9b94de5e1bd45b6486fecdf222f669d1\"\u003ecc6da58f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-user-agent:\u003c/strong\u003e  use retry strategy mode property instead of legacy fallback (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7811\"\u003e#7811\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/db7863372abba6035e12aaf8a015f9f6bc020bbb\"\u003edb786337\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1004.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1003.0\u003c/h2\u003e\n\u003ch4\u003e3.1003.0(2026-03-05)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003ebump '@smithy/*' dependencies (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7822\"\u003e#7822\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e8ddd5442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eset downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7817\"\u003e#7817\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e03dad66b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003estrip trailing periods when the last character is non-alphanumeric (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7821\"\u003e#7821\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6b5b50b248cceac0353ad6b2dd3be974db27c6a4\"\u003e6b5b50b2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esort missed package.json files (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7820\"\u003e#7820\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/297b56431a1c8fe0563a55d35dd80c02e9bfb386\"\u003e297b5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003einclude deprecated-since in generated tsdoc (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7815\"\u003e#7815\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/17ecb20a27d0c2b7968db1edf3b453e4a4732849\"\u003e17ecb20a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-05 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e9a8d8dea104165b03857c991d4e9e8ae4dec3a3\"\u003ee9a8d8de\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-guardduty:\u003c/strong\u003e  Added MALICIOUS FILE to IndicatorType enum in MDC Sequence (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb9d466281db2b1023129d249ed576bd94730b18\"\u003ebb9d4662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-savingsplans:\u003c/strong\u003e  Added support for OpenSearch and Neptune Analytics to Database Savings Plans. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9e0639134fff8635622886260fb2127daa8778de\"\u003e9e063913\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sagemaker:\u003c/strong\u003e  Adds support for S3 Bucket Ownership validation for SageMaker Managed MLflow. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b62165643e03cc036e13cd463cde57116f36b38b\"\u003eb6216564\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connecthealth:\u003c/strong\u003e  Connect-Health SDK is AWS's unified SDK for the Amazon Connect Health offering. It allows healthcare developers to integrate purpose-built agents - such as patient insights, ambient documentation, and medical coding - into their existing applications, including EHRs, telehealth, and revenue cycle. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/454c6cb7d73b92d737c008a9d9ef7fdb6365d647\"\u003e454c6cb7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mpa:\u003c/strong\u003e  Updates to multi-party approval (MPA) service to add support for approval team baseline operations. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e95815438c56f42e2ffa47962c1aaa3c82afeef8\"\u003ee9581543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added metadata field to CapacityAllocation. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/d7cce1c2a1a299c49f16f9bc02ee88d904d723de\"\u003ed7cce1c2\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-lambda/CHANGELOG.md\"\u003e\u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1003.0...v3.1004.0\"\u003e3.1004.0\u003c/a\u003e (2026-03-06)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1002.0...v3.1003.0\"\u003e3.1003.0\u003c/a\u003e (2026-03-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1001.0...v3.1002.0\"\u003e3.1002.0\u003c/a\u003e (2026-03-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1000.0...v3.1001.0\"\u003e3.1001.0\u003c/a\u003e (2026-03-03)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.999.0...v3.1000.0\"\u003e3.1000.0\u003c/a\u003e (2026-02-27)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.998.0...v3.999.0\"\u003e3.999.0\u003c/a\u003e (2026-02-26)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.997.0...v3.998.0\"\u003e3.998.0\u003c/a\u003e (2026-02-25)\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/7c0815232f14789a405ec73195945552d991beb4\"\u003e\u003ccode\u003e7c08152\u003c/code\u003e\u003c/a\u003e Publish v3.1004.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4c36ea38e9ddc6deacd435c7c590921940f4c9ff\"\u003e\u003ccode\u003e4c36ea3\u003c/code\u003e\u003c/a\u003e Publish v3.1003.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e\u003ccode\u003e8ddd544\u003c/code\u003e\u003c/a\u003e chore: bump '@smithy/*' dependencies (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7822\"\u003e#7822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6b5b50b248cceac0353ad6b2dd3be974db27c6a4\"\u003e\u003ccode\u003e6b5b50b\u003c/code\u003e\u003c/a\u003e chore(clients): strip trailing periods when the last character is non-alphanu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e\u003ccode\u003e03dad66\u003c/code\u003e\u003c/a\u003e chore: set downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7817\"\u003e#7817\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/17ecb20a27d0c2b7968db1edf3b453e4a4732849\"\u003e\u003ccode\u003e17ecb20\u003c/code\u003e\u003c/a\u003e chore(clients): include deprecated-since in generated tsdoc (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7815\"\u003e#7815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/37f1adc72295176f8d844f5eaa13b427e27b28d6\"\u003e\u003ccode\u003e37f1adc\u003c/code\u003e\u003c/a\u003e test(clients): run client feature tests in browser mode too (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7808\"\u003e#7808\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/800431bb02b71bad13537bc615e456df77776b22\"\u003e\u003ccode\u003e800431b\u003c/code\u003e\u003c/a\u003e Publish v3.1002.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b8467bd179319f86804fea08e1b09d3a95166603\"\u003e\u003ccode\u003eb8467bd\u003c/code\u003e\u003c/a\u003e Publish v3.1001.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ab9e775920c7900a2759c22385091aa88eb6ee15\"\u003e\u003ccode\u003eab9e775\u003c/code\u003e\u003c/a\u003e chore(codegen): upgrade smithy 1.68.0 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7806\"\u003e#7806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1004.0/clients/client-lambda\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/client-secrets-manager` from 3.940.0 to 3.1004.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e\u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1004.0\u003c/h2\u003e\n\u003ch4\u003e3.1004.0(2026-03-06)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecodegen:\u003c/strong\u003e  smithy-aws-typescript-codegen 0.46.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7825\"\u003e#7825\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9652a4b1b1796b35ef24fd7be4c13ed6eb1deb24\"\u003e9652a4b1\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-06 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8c6015c0d1c17e8807e3be1326377bcf2176efdd\"\u003e8c6015c0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-gameliftstreams:\u003c/strong\u003e  Added new Gen6 stream classes based on the EC2 G6f instance family. These stream classes provide cost-optimized options for streaming well-optimized or lower-fidelity games on Windows environments. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3ce882b68e004b3589f882c1d5fbb9443e07b5b1\"\u003e3ce882b6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Amazon Bedrock Guardrails account-level enforcement APIs now support lists for model inclusion and exclusion from guardrail enforcement. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/63b3598691d116dadd5c389362be5369d5901a39\"\u003e63b35986\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connect:\u003c/strong\u003e  Amazon Connect now supports the ability to programmatically configure and run automated tests for contact center experiences for Chat. Integrate testing into CICD pipelines, run multiple tests at scale, and retrieve results via API to automate validation of chat interactions and workflows. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/696614ae8195f9ba2f9d3366e2d27e3aacf45726\"\u003e696614ae\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bcm-data-exports:\u003c/strong\u003e  Fixed wrong endpoint resolutions in few regions. Added AWS CFN resource schema for BCM Data Exports. Added max value validation for pagination parameter. Fixed ARN format validation for BCM Data Exports resources. Updated size constraints for table properties. Added AccessDeniedException error. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/23fdf9940dbeb9fab236e565d4ef529779a19862\"\u003e23fdf994\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  AWS Deadline Cloud now supports cost scale factors for farms, enabling studios to adjust reported costs to reflect their actual rendering economics. Adjusted costs are reflected in Deadline Cloud's Usage Explorer and Budgets. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/16f6d5104bf57a9d034affe12f33d4f424c7ed0f\"\u003e16f6d510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-appintegrations:\u003c/strong\u003e  This release adds support for webhooks, allowing customers to create an Event Integration with a webhook source. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/c86ed4e1a4295d2654b2cc1ef8e195a6a97bcb58\"\u003ec86ed4e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore-control:\u003c/strong\u003e  Adds support for streaming memory records in AgentCore Memory (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/174685704e07d5b8cbb6414cd6d9f2f6a85736c3\"\u003e17468570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sesv2:\u003c/strong\u003e  Adds support for longer email message header values, increasing the maximum length from 870 to 995 characters for RFC 5322 compliance. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3a573039fa760964ce4b8aef17b46b96183f3087\"\u003e3a573039\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ebuild:\u003c/strong\u003e  fix package release ordering (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7829\"\u003e#7829\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/cc6da58f9b94de5e1bd45b6486fecdf222f669d1\"\u003ecc6da58f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-user-agent:\u003c/strong\u003e  use retry strategy mode property instead of legacy fallback (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7811\"\u003e#7811\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/db7863372abba6035e12aaf8a015f9f6bc020bbb\"\u003edb786337\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1004.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1003.0\u003c/h2\u003e\n\u003ch4\u003e3.1003.0(2026-03-05)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003ebump '@smithy/*' dependencies (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7822\"\u003e#7822\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e8ddd5442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eset downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7817\"\u003e#7817\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e03dad66b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003estrip trailing periods when the last character is non-alphanumeric (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7821\"\u003e#7821\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6b5b50b248cceac0353ad6b2dd3be974db27c6a4\"\u003e6b5b50b2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esort missed package.json files (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7820\"\u003e#7820\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/297b56431a1c8fe0563a55d35dd80c02e9bfb386\"\u003e297b5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003einclude deprecated-since in generated tsdoc (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7815\"\u003e#7815\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/17ecb20a27d0c2b7968db1edf3b453e4a4732849\"\u003e17ecb20a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-05 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e9a8d8dea104165b03857c991d4e9e8ae4dec3a3\"\u003ee9a8d8de\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-guardduty:\u003c/strong\u003e  Added MALICIOUS FILE to IndicatorType enum in MDC Sequence (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb9d466281db2b1023129d249ed576bd94730b18\"\u003ebb9d4662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-savingsplans:\u003c/strong\u003e  Added support for OpenSearch and Neptune Analytics to Database Savings Plans. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9e0639134fff8635622886260fb2127daa8778de\"\u003e9e063913\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sagemaker:\u003c/strong\u003e  Adds support for S3 Bucket Ownership validation for SageMaker Managed MLflow. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b62165643e03cc036e13cd463cde57116f36b38b\"\u003eb6216564\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connecthealth:\u003c/strong\u003e  Connect-Health SDK is AWS's unified SDK for the Amazon Connect Health offering. It allows healthcare developers to integrate purpose-built agents - such as patient insights, ambient documentation, and medical coding - into their existing applications, including EHRs, telehealth, and revenue cycle. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/454c6cb7d73b92d737c008a9d9ef7fdb6365d647\"\u003e454c6cb7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mpa:\u003c/strong\u003e  Updates to multi-party approval (MPA) service to add support for approval team baseline operations. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e95815438c56f42e2ffa47962c1aaa3c82afeef8\"\u003ee9581543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added metadata field to CapacityAllocation. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/d7cce1c2a1a299c49f16f9bc02ee88d904d723de\"\u003ed7cce1c2\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-secrets-manager/CHANGELOG.md\"\u003e\u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1003.0...v3.1004.0\"\u003e3.1004.0\u003c/a\u003e (2026-03-06)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1002.0...v3.1003.0\"\u003e3.1003.0\u003c/a\u003e (2026-03-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1001.0...v3.1002.0\"\u003e3.1002.0\u003c/a\u003e (2026-03-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1000.0...v3.1001.0\"\u003e3.1001.0\u003c/a\u003e (2026-03-03)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.999.0...v3.1000.0\"\u003e3.1000.0\u003c/a\u003e (2026-02-27)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.998.0...v3.999.0\"\u003e3.999.0\u003c/a\u003e (2026-02-26)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.997.0...v3.998.0\"\u003e3.998.0\u003c/a\u003e (2026-02-25)\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/7c0815232f14789a405ec73195945552d991beb4\"\u003e\u003ccode\u003e7c08152\u003c/code\u003e\u003c/a\u003e Publish v3.1004.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4c36ea38e9ddc6deacd435c7c590921940f4c9ff\"\u003e\u003ccode\u003e4c36ea3\u003c/code\u003e\u003c/a\u003e Publish v3.1003.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e\u003ccode\u003e8ddd544\u003c/code\u003e\u003c/a\u003e chore: bump '@smithy/*' dependencies (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7822\"\u003e#7822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e\u003ccode\u003e03dad66\u003c/code\u003e\u003c/a\u003e chore: set downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7817\"\u003e#7817\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/1eabedb495b19e9c5fe4b24b9f9e461ba25e648f\"\u003e\u003ccode\u003e1eabedb\u003c/code\u003e\u003c/a\u003e test(clients): ignore prettifying automated snapshot test code (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7819\"\u003e#7819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/800431bb02b71bad13537bc615e456df77776b22\"\u003e\u003ccode\u003e800431b\u003c/code\u003e\u003c/a\u003e Publish v3.1002.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b8467bd179319f86804fea08e1b09d3a95166603\"\u003e\u003ccode\u003eb8467bd\u003c/code\u003e\u003c/a\u003e Publish v3.1001.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ab9e775920c7900a2759c22385091aa88eb6ee15\"\u003e\u003ccode\u003eab9e775\u003c/code\u003e\u003c/a\u003e chore(codegen): upgrade smithy 1.68.0 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7806\"\u003e#7806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/d1523943486a2b1bbbfbb8cd117c442cb3853ab0\"\u003e\u003ccode\u003ed152394\u003c/code\u003e\u003c/a\u003e chore(util-user-agent-node): read typescript package.json version from proces...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e373aa8706d305625352a8fdb21cdbaadb1f971b\"\u003e\u003ccode\u003ee373aa8\u003c/code\u003e\u003c/a\u003e Publish v3.1000.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1004.0/clients/client-secrets-manager\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/util-arn-parser` from 3.893.0 to 3.972.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e\u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.972.0\u003c/h2\u003e\n\u003ch4\u003e3.972.0(2026-01-20)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003ereplace rimraf with premove (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7669\"\u003e#7669\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e0b484fa47204e1ca66e04721aeac1102b498e2f\"\u003ee0b484fa\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-01-20 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3266a28d8d85c8102315f4a1d92c887cbdab6132\"\u003e3266a28d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-workspaces-instances:\u003c/strong\u003e  Added billing configuration support for WorkSpaces Instances with monthly and hourly billing modes, including new filtering capabilities for instance type searches. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a660c503907bed1a1d15e3a31edb2056b3dca024\"\u003ea660c503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-odb:\u003c/strong\u003e  Adds support for associating and disassociating IAM roles with Autonomous VM cluster resources through the AssociateIamRoleToResource and DisassociateIamRoleFromResource APIs. The GetCloudAutonomousVmCluster and ListCloudAutonomousVmClusters API responses now include the iamRoles field. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/f906d762f69f441ed48b173f58d2f2218e19ea41\"\u003ef906d762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-runtime:\u003c/strong\u003e  Added support for extended prompt caching with one hour TTL. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/2cc679ff11476d18b56bd794f4af41a5ffc1ffe2\"\u003e2cc679ff\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-keyspaces:\u003c/strong\u003e  Adds support for managing table pre-warming in Amazon Keyspaces (for Apache Cassandra) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a7d41c3f7d3f33647db8b42951ed237de405fa54\"\u003ea7d41c3f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-auto-scaling:\u003c/strong\u003e  This release adds support for three new filters when describing scaling activities, StartTimeLowerBound, StartTimeUpperBound, and Status. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5ca740f521259bb39b85a82385f92356009555d9\"\u003e5ca740f5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-verifiedpermissions:\u003c/strong\u003e  Amazon Verified Permissions now supports encryption of resources by a customer managed KMS key. Customers can now create new encrypted policy stores by passing in their customer managed key during policy store creation. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3fe5ed933fe118b4aa43f3006a8d58512dd3895f\"\u003e3fe5ed93\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.972.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.971.0\u003c/h2\u003e\n\u003ch4\u003e3.971.0(2026-01-16)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps-dev:\u003c/strong\u003e  bump vitest to 4.x (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7662\"\u003e#7662\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e4af3e38b68a52a718a52db86fd5a6f01499a8dc\"\u003ee4af3e38\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecodegen:\u003c/strong\u003e  tag maven release 0.42.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7664\"\u003e#7664\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/eea2ef451723516ef43924418fff7993b04759ca\"\u003eeea2ef45\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eDocumentation Changes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sagemaker:\u003c/strong\u003e  Adding security consideration comments for lcc accessing execution role under root access (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/83b0e783e4888eca18f8ea964fef7dca47c89545\"\u003e83b0e783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-glacier:\u003c/strong\u003e  Documentation updates for Amazon Glacier's maintenance mode (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/18674f5d4601aa201831ed695aaa99a174cfffab\"\u003e18674f5d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-01-16 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5149b6b044bdd9fd1dbcdf216fffcd8e5b6f15dc\"\u003e5149b6b0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-datazone:\u003c/strong\u003e  This release adds support for numeric filtering and complex free-text searches cases for the Search and SearchListings APIs. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3ce5567491d7817176e3e4745b2cea36bebc6708\"\u003e3ce55674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connect:\u003c/strong\u003e  Adds support to allow customers to create form with Dispute configuration (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/faedfc8b8dc9ea1a6d35ade94630e64dbaa78361\"\u003efaedfc8b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-launch-wizard:\u003c/strong\u003e  Added UpdateDeployment, ListDeploymentPatternVersions and GetDeploymentPatternVersion APIs for Launch Wizard (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5126f41ecd403e5fd3c24dbf75bad3a8256c8f8a\"\u003e5126f41e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-resource-explorer-2:\u003c/strong\u003e  Added ViewName to View-related responses and ServiceViewName to GetServiceView response. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e0212a1077033159f7a429afad4fe47b84e61c4f\"\u003ee0212a10\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.971.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.970.0\u003c/h2\u003e\n\u003ch4\u003e3.970.0(2026-01-15)\u003c/h4\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/packages-internal/util-arn-parser/CHANGELOG.md\"\u003e\u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.972.3 (2026-03-04)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eset downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/7817\"\u003e#7817\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e03dad66\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.2 (2026-01-25)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epackages-internal:\u003c/strong\u003e update metadata url paths (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/7679\"\u003e#7679\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/c3a351c1fdbb8e8124ddadfd07a2d29f88ec47f1\"\u003ec3a351c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.1 (2026-01-21)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epackages:\u003c/strong\u003e move package folders for internal pkgs (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/7670\"\u003e#7670\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ce66606d7028a9a2841fc27acdd4bab3a0917546\"\u003ece66606\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.971.0...v3.972.0\"\u003e3.972.0\u003c/a\u003e (2026-01-20)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.967.0...v3.968.0\"\u003e3.968.0\u003c/a\u003e (2026-01-13)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.965.0...v3.966.0\"\u003e3.966.0\u003c/a\u003e (2026-01-09)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.964.0...v3.965.0\"\u003e3.965.0\u003c/a\u003e (2026-01-07)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/HEAD/packages-internal/util-arn-parser\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@casl/ability` from 6.7.5 to 6.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stalniy/casl/releases\"\u003e\u003ccode\u003e@​casl/ability\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​casl/ability\u003c/code\u003e: v6.8.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/stalniy/casl/compare/@casl/ability@6.7.5...@casl/ability@6.8.0\"\u003e6.8.0\u003c/a\u003e (2026-01-18)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexport the Rule and RuleOptions types (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1077\"\u003e#1077\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/c6c94d8f15da80262930f6eb32f708f1b030665e\"\u003ec6c94d8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update dependency \u003ccode\u003e@​types/jest\u003c/code\u003e to v30 (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1133\"\u003e#1133\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/12c59ce3ab717c49b980e2b3b7091c9e88e4d7e7\"\u003e12c59ce\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stalniy/casl/blob/master/packages/casl-ability/CHANGELOG.md\"\u003e\u003ccode\u003e@​casl/ability\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/stalniy/casl/compare/@casl/ability@6.7.5...@casl/ability@6.8.0\"\u003e6.8.0\u003c/a\u003e (2026-01-18)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexport the Rule and RuleOptions types (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1077\"\u003e#1077\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/c6c94d8f15da80262930f6eb32f708f1b030665e\"\u003ec6c94d8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update dependency \u003ccode\u003e@​types/jest\u003c/code\u003e to v30 (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1133\"\u003e#1133\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/12c59ce3ab717c49b980e2b3b7091c9e88e4d7e7\"\u003e12c59ce\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/8ede230033b7564b82e61cc0b0f9a237922d18ff\"\u003e\u003ccode\u003e8ede230\u003c/code\u003e\u003c/a\u003e chore: release master (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1134\"\u003e#1134\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/c6c94d8f15da80262930f6eb32f708f1b030665e\"\u003e\u003ccode\u003ec6c94d8\u003c/code\u003e\u003c/a\u003e feat: export the Rule and RuleOptions types (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1077\"\u003e#1077\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/12c59ce3ab717c49b980e2b3b7091c9e88e4d7e7\"\u003e\u003ccode\u003e12c59ce\u003c/code\u003e\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​types/jest\u003c/code\u003e to v30 (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1133\"\u003e#1133\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/befb6ffac4c32ed7f12ec935c63da1521a83407e\"\u003e\u003ccode\u003ebefb6ff\u003c/code\u003e\u003c/a\u003e chore: fixes ability changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/6d72cad79ce553394d99b2b72024415133956bc0\"\u003e\u003ccode\u003e6d72cad\u003c/code\u003e\u003c/a\u003e chore: updates release script (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1106\"\u003e#1106\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/stalniy/casl/commits/@casl/ability@6.8.0/packages/casl-ability\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​casl/ability\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/throttler` from 6.4.0 to 6.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/throttler/releases\"\u003e\u003ccode\u003e@​nestjs/throttler\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.5.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e58964d6: Add a setHeaders option to control whether to add headers to the response or not\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cb4254: Update to allow for support for Nest version 11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/throttler/blob/master/CHANGELOG.md\"\u003e\u003ccode\u003e@​nestjs/throttler\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.4.0\u003c/h2\u003e\n\u003ch2\u003e6.5.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e603cb82: handles edge case where multiple clients making frequent requests interfere with each other\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.5.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e58964d6: Add a setHeaders option to control whether to add headers to the response or not\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cb4254: Update to allow for support for Nest version 11\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efc93f3a: pass context to getTraker as a second arg\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.2.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efbf27c6: Add the guard interfaces for export for public use\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e3d1a9a5: Swap MD5 hash for SHA256 to better support OpenSSL 3.0 and future iterations\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.1.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eef69348: Update the readme for websockets\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.1.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ee058d50: Use ceil instead of floor while calculating expire and block expire at to properly account for rounding up instead of down and accidentally allowing for early continued requests. Related to \u003ca href=\"https://redirect.github.com/nestjs/throttler/issues/2074\"\u003e#2074\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/7b11a2e30c6d1ae5537e99e1d51291004ebfb75d\"\u003e\u003ccode\u003e7b11a2e\u003c/code\u003e\u003c/a\u003e chore: version packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/58964d686bd0595afbea79eace4ea25737ab7036\"\u003e\u003ccode\u003e58964d6\u003c/code\u003e\u003c/a\u003e feat: Add setHeader option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/4e970b2ccd9a54ec5ad4e1e3bbb577752369249b\"\u003e\u003ccode\u003e4e970b2\u003c/code\u003e\u003c/a\u003e fix: Remove interface change\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/02fdf5b5dcdc63494be40a0f88488e6bebbf5be7\"\u003e\u003ccode\u003e02fdf5b\u003c/code\u003e\u003c/a\u003e feat: Add setHeader option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/f618a8960e69403984f0930ee757f33c766914d8\"\u003e\u003ccode\u003ef618a89\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency ts-jest to v29.4.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/a988bc413f54b4a908928a74a4923689e90c1441\"\u003e\u003ccode\u003ea988bc4\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/express\u003c/code\u003e to v5.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/521fbea1e84084deac18f286418e0cb4076e3711\"\u003e\u003ccode\u003e521fbea\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency prettier to v3.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/473de777dadd4e67b57dabecbf634b7d990c6f0e\"\u003e\u003ccode\u003e473de77\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency prettier to v3.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/c7d69a73e8ee7e5a1ef5b9126796b2aba5994c0c\"\u003e\u003ccode\u003ec7d69a7\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency graphql-tools to v9.0.25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/a11466df5fc67f38ec9b31b0e390b9ce0ad96f56\"\u003e\u003ccode\u003ea11466d\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​nestjs/cli\u003c/code\u003e to v11.0.14\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/throttler/compare/v6.4.0...v6.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-query` from 5.90.11 to 5.90.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/releases\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(react-query/useQueries): remove unreachable 'willFetch' branch in suspense promise collection (\u003ca href=\"https://redirect.github.com/TanStack/query/pull/10082\"\u003e#10082\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.17\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/e7258c5cb30cafa456cdb4e6bc75b43bf619954d\"\u003e\u003ccode\u003ee7258c5\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.16\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/53fc74ebb16730bd3317f039a69c6821386bae93\"\u003e\u003ccode\u003e53fc74e\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/dea1614aaad5c572cf43cea54b64ac09dc4d5b41\"\u003e\u003ccode\u003edea1614\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/269351b8ce4b4846da3d320ac5b850ee6aada0d6\"\u003e\u003ccode\u003e269351b\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.90.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(react-query/useQueries): remove unreachable 'willFetch' branch in suspense promise collection (\u003ca href=\"https://redirect.github.com/TanStack/query/pull/10082\"\u003e#10082\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/e7258c5cb30cafa456cdb4e6bc75b43bf619954d\"\u003e\u003ccode\u003ee7258c5\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/53fc74ebb16730bd3317f039a69c6821386bae93\"\u003e\u003ccode\u003e53fc74e\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/dea1614aaad5c572cf43cea54b64ac09dc4d5b41\"\u003e\u003ccode\u003edea1614\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/269351b8ce4b4846da3d320ac5b850ee6aada0d6\"\u003e\u003ccode\u003e269351b\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix(react-query): allow retryOnMount when throwOnError is function (\u003ca href=\"https://redirect.github.com/TanStack/query/pull/9338\"\u003e#9338\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/7f47906eaccc3f3aa5ce24b77a83bd7a620a237b\"\u003e\u003ccode\u003e7f47906\u003c/code\u003e\u003c/a\u003e]:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.16\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/fccef797d57d4a9566517bba87c8377f363920f2\"\u003e\u003ccode\u003efccef79\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/08050cb3ebb693ccf782558ba863fd5ff3df2e38\"\u003e\u003ccode\u003e08050cb\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10115\"\u003e#10115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/c5def66a18b77a0012b32bf65216d495daef42e2\"\u003e\u003ccode\u003ec5def66\u003c/code\u003e\u003c/a\u003e refactor(react-query/useQueries): remove unreachable 'willFetch' branch in su...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/da2ff5aeb816ad356d78f332328659edf1bf7d0a\"\u003e\u003ccode\u003eda2ff5a\u003c/code\u003e\u003c/a\u003e chore(vite.config): exclude '\u003cstrong\u003etests\u003c/strong\u003e' directory from coverage reports (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10084\"\u003e#10084\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/2a592d241bf5a832546bb9947514d9fc6d362fab\"\u003e\u003ccode\u003e2a592d2\u003c/code\u003e\u003c/a\u003e test(react-query/suspense): add test cases for 'static' staleTime with number...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/7e3ea62364842c750182c83af6c89d4123807385\"\u003e\u003ccode\u003e7e3ea62\u003c/code\u003e\u003c/a\u003e test(react-query/QueryResetErrorBoundary): relocate 'issue-9728' test and mig...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/dee5d3e9e43b3ab627b6eee8cf91318d99ccad1c\"\u003e\u003ccode\u003edee5d3e\u003c/code\u003e\u003c/a\u003e test(react-query/ssr): add 'useMutation' and 'useMutationState' tests for SSR...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/7ac4e20ddb4ae50357fe8ad91d5397740a58847c\"\u003e\u003ccode\u003e7ac4e20\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10067\"\u003e#10067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/9ff3de7981bc3d77ad0ba6caf2561de8a4bddd4e\"\u003e\u003ccode\u003e9ff3de7\u003c/code\u003e\u003c/a\u003e Upgrade to Vitest v4 (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/9862\"\u003e#9862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/0525ad1248e0380d465d05ca8b9b6a7b77f0eff0\"\u003e\u003ccode\u003e0525ad1\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10047\"\u003e#10047\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/53fc74ebb16730bd3317f039a69c6821386bae93\"\u003e\u003ccode\u003e53fc74e\u003c/code\u003e\u003c/a\u003e fix(query-core): fix combine not updating when queries change with stable ref...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/query/commits/@tanstack/react-query@5.90.21/packages/react-query\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​tanstack/react-query\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-query-devtools` from 5.91.1 to 5.91.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/releases\"\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/83366c46a6825b5c591399c705d8128743c527dd\"\u003e\u003ccode\u003e83366c4\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.93.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/blob/main/packages/react-query-devtools/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.91.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/83366c46a6825b5c591399c705d8128743c527dd\"\u003e\u003ccode\u003e83366c4\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.93.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.91.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/f9fc56a9b8724bcfae46f8f6cb229123478eb4db\"\u003e\u003ccode\u003ef9fc56a\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/query/commit/0b29b6f877d4b3a6d05b1c85fb9cb1e6ea736291\"\u003e\u003ccode\u003e0b29b6f\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.92.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/a678f0957cff5e2cf4efa26dbbeb0747e3bbee6d\"\u003e\u003ccode\u003ea678f09\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/10069\"\u003e#10069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/84564f1293f4ca067e9cb40bf3e51cce1939ef8d\"\u003e\u003ccode\u003e84564f1\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/10001\"\u003e#10001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/f15b7fcc01e995ab8835f1b1cc82ebb472c1ff64\"\u003e\u003ccode\u003ef15b7fc\u003c/code\u003e\u003c/a\u003e ci: prepare for trusted publishing (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/9952\"\u003e#9952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/72d8ac5c592004b8f9c3ee086fcb9c3cd615ca05\"\u003e\u003ccode\u003e72d8ac5\u003c/code\u003e\u003c/a\u003e fix: update react and nextJs (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/9944\"\u003e#9944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TanStack/query/commits/@tanstack/react-query-devtools@5.91.3/packages/react-query-devtools\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-virtual` from 3.13.12 to 3.13.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/releases\"\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/be89e293ea01654df6334dc6473b65eebed13e51\"\u003e\u003ccode\u003ebe89e29\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.21\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/ff83e949408ba8a714436fa10cafc3725a56274b\"\u003e\u003ccode\u003eff83e94\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/843109c5bf780591a762f9767f3808fd15e3f94e\"\u003e\u003ccode\u003e843109c\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/9067574f1a0178d30e27bcac70853bdcbf437fec\"\u003e\u003ccode\u003e9067574\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/21d9a46eac034cb4299872891694965bceed526d\"\u003e\u003ccode\u003e21d9a46\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/db6df212ed83dd7e4eb6450d1340c95475667b7b\"\u003e\u003ccode\u003edb6df21\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.16\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat(react-virtual): add \u003ccode\u003euseFlushSync\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1100\"\u003e#1100\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eAdds a React-specific \u003ccode\u003euseFlushSync\u003c/code\u003e option to control whether \u003ccode\u003eflushSync\u003c/code\u003e is used for synchronous scroll correction during measurement.\u003c/p\u003e\n\u003cp\u003eThe default behavior remains unchanged (\u003ccode\u003euseFlushSync: true\u003c/code\u003e) to preserve the best scrolling experience.\nDisabling it avoids the React 19 warning about calling \u003ccode\u003eflushSync\u003c/code\u003e during render, at the cost of potentially increased visible whitespace during fast scrolling with dynamically sized items.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/5a273bf0c0bc0255ca172929f021c3b6e50cb69d\"\u003e\u003ccode\u003e5a273bf\u003c/code\u003e\u003c/a\u003e]:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.14\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/blob/main/packages/react-virtual/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.13.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/be89e293ea01654df6334dc6473b65eebed13e51\"\u003e\u003ccode\u003ebe89e29\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.21\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/ff83e949408ba8a714436fa10cafc3725a56274b\"\u003e\u003ccode\u003eff83e94\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/843109c5bf780591a762f9767f3808fd15e3f94e\"\u003e\u003ccode\u003e843109c\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/9067574f1a0178d30e27bcac70853bdcbf437fec\"\u003e\u003ccode\u003e9067574\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/21d9a46eac034cb4299872891694965bceed526d\"\u003e\u003ccode\u003e21d9a46\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/db6df212ed83dd7e4eb6450d1340c95475667b7b\"\u003e\u003ccode\u003edb6df21\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.16\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat(react-virtual): add \u003ccode\u003euseFlushSync\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1100\"\u003e#1100\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eAdds a React-specific \u003ccode\u003euseFlushSync\u003c/code\u003e option to control whether \u003ccode\u003eflushSync\u003c/code\u003e is used for synchronous scroll correction during measurement.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/c4da5cbb58784e9776f7c812545130e2c79bb119\"\u003e\u003ccode\u003ec4da5cb\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1137\"\u003e#1137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/be89e293ea01654df6334dc6473b65eebed13e51\"\u003e\u003ccode\u003ebe89e29\u003c/code\u003e\u003c/a\u003e fix(virtual-core): smooth scrolling for dynamic item sizes (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/d2a9995490c60cbe3e5e02a7857cdc1b91e1d71a\"\u003e\u003ccode\u003ed2a9995\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1136\"\u003e#1136\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/ff83e949408ba8a714436fa10cafc3725a56274b\"\u003e\u003ccode\u003eff83e94\u003c/code\u003e\u003c/a\u003e fix(virtual-core): early return in _measureElement for disconnected nodes (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/e0e4dcde5c99906eab2ab5aefd75e568b2ece967\"\u003e\u003ccode\u003ee0e4dcd\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1131\"\u003e#1131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/5d6acc953f62e892ce9eefa2bcc5340614efab15\"\u003e\u003ccode\u003e5d6acc9\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1113\"\u003e#1113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/c48b2ac9c4c47d4edebdd5f2058ba280022f6a8b\"\u003e\u003ccode\u003ec48b2ac\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1111\"\u003e#1111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/7fd265465a24eafb6d4d602fb981a0c64f42c708\"\u003e\u003ccode\u003e7fd2654\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1107\"\u003e#1107\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/0bcf14de9e8c17942feb404cba3e2a038ebf365b\"\u003e\u003ccode\u003e0bcf14d\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1102\"\u003e#1102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/1686256eacd3abc33bd20a9911fcccf9221aa0b5\"\u003e\u003ccode\u003e1686256\u003c/code\u003e\u003c/a\u003e feat(react-virtual): add useFlushSync option (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1100\"\u003e#1100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/virtual/commits/@tanstack/react-virtual@3.13.21/packages/react-virtual\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `class-validator` from 0.14.3 to 0.15.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typestack/class-validator/releases\"\u003eclass-validator's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: publish 0.15.0 for real by \u003ca href=\"https://github.com/braaar\"\u003e\u003ccode\u003e@​braaar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typestack/class-validator/pull/2671\"\u003etypestack/class-validator#2671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: publish 0.15.1 by \u003ca href=\"https://github.com/braaar\"\u003e\u003ccode\u003e@​braaar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typestack/class-validator/pull/2672\"\u003etypestack/class-validator#2672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/typestack/class-...\n\n_Description has been truncated_","html_url":"https://github.com/Ed-Fi-Alliance-OSS/Ed-Fi-AdminApp/pull/83","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ed-Fi-Alliance-OSS%2FEd-Fi-AdminApp/issues/83","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/83/packages"},{"uuid":"4026195096","node_id":"PR_kwDONuO9l87IGCWJ","number":9,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 19 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-10T19:14:04.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-05T06:41:10.000Z","updated_at":"2026-03-10T19:14:06.000Z","time_to_close":477174,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":19,"packages":[{"name":"diff","old_version":"7.0.0","new_version":"8.0.3","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.1","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.10","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"6.0.1","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"4.0.1","new_version":"4.4.10","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.2","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `7.0.0` | `8.0.3` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.1` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.10` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.0.1` | `6.1.1` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `4.0.1` | `4.4.10` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.14.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.2` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the DefinitelyTyped types to JsDiff's own type definitions includes multiple fixes and also removes many exported types previously used for \u003ccode\u003eoptions\u003c/code\u003e arguments to diffing and patch-generation functions. (There are now different exported options types for abortable calls - ones with a \u003ccode\u003etimeout\u003c/code\u003e or \u003ccode\u003emaxEditLength\u003c/code\u003e that may give a result of \u003ccode\u003eundefined\u003c/code\u003e - and non-abortable calls.) See the TypeScript section of the README for some usage tips.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eDiff\u003c/code\u003e object is now a class\u003c/strong\u003e. Custom extensions of \u003ccode\u003eDiff\u003c/code\u003e, as described in the \u0026quot;Defining custom diffing behaviors\u0026quot; section of the README, can therefore now be done by writing a \u003ccode\u003eclass CustomDiff extends Diff\u003c/code\u003e and overriding methods, instead of the old way based on prototype inheritance. (I \u003cem\u003ethink\u003c/em\u003e code that did things the old way should still work, though!)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediff/lib/index.es6.js\u003c/code\u003e and \u003ccode\u003ediff/lib/index.mjs\u003c/code\u003e no longer exist, and the ESM version of the library is no longer bundled into a single file.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option for \u003ccode\u003ediffWords\u003c/code\u003e is no longer included in the type declarations\u003c/strong\u003e. The effect of passing \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e has always been to make \u003ccode\u003ediffWords\u003c/code\u003e just call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead, which was confusing, because that behaviour doesn't seem properly described as \u0026quot;ignoring\u0026quot; whitespace at all. The property remains available to non-TypeScript applications for the sake of backwards compatibility, but TypeScript applications will now see a type error if they try to pass \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e to \u003ccode\u003ediffWords\u003c/code\u003e and should change their code to call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJsDiff no longer purports to support ES3 environments. (I'm pretty sure it never truly did, despite claiming to in its README, since even the 1.0.0 release used \u003ccode\u003eArray.map\u003c/code\u003e which was added in ES5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/601\"\u003e#601\u003c/a\u003e - \u003cstrong\u003e\u003ccode\u003ediffJson\u003c/code\u003e's \u003ccode\u003estringifyReplacer\u003c/code\u003e option behaves more like \u003ccode\u003eJSON.stringify\u003c/code\u003e's \u003ccode\u003ereplacer\u003c/code\u003e argument now.\u003c/strong\u003e In particular:\n\u003cul\u003e\n\u003cli\u003eEach key/value pair now gets passed through the replacer once instead of twice\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ekey\u003c/code\u003e passed to the replacer when the top-level object is passed in as \u003ccode\u003evalue\u003c/code\u003e is now \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (previously, was \u003ccode\u003eundefined\u003c/code\u003e), and the \u003ccode\u003ekey\u003c/code\u003e passed with an array element is the array index as a string, like \u003ccode\u003e\u0026quot;0\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;1\u0026quot;\u003c/code\u003e (previously was whatever the key for the entire array was). Both the new behaviours match that of \u003ccode\u003eJSON.stringify\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/602\"\u003e#602\u003c/a\u003e - \u003cstrong\u003ediffing functions now consistently return \u003ccode\u003eundefined\u003c/code\u003e when called in async mode\u003c/strong\u003e (i.e. with a callback). Previously, there was an odd quirk where they would return \u003ccode\u003etrue\u003c/code\u003e if the strings being diffed were equal and \u003ccode\u003eundefined\u003c/code\u003e otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/1179ccb0d31f497449e998a6e67b1b9220565764\"\u003e\u003ccode\u003e1179ccb\u003c/code\u003e\u003c/a\u003e Ignore .zed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/949d6e2a44622b15b5a5be3ffcf196869c5a6b4c\"\u003e\u003ccode\u003e949d6e2\u003c/code\u003e\u003c/a\u003e Add test for the vuln I just fixed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/650\"\u003e#650\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/15a1585230748c8ae6f8274c202e0c87309142f5\"\u003e\u003ccode\u003e15a1585\u003c/code\u003e\u003c/a\u003e Fix the second denial-of-service vulnerability in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/649\"\u003e#649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/de95cca5329730cf9dcdd85c634633693b3ab3db\"\u003e\u003ccode\u003ede95cca\u003c/code\u003e\u003c/a\u003e Fix potentially cubic-time regex in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b9aeedef3fe4764c3408b52990767bd7ac0425ab\"\u003e\u003ccode\u003eb9aeede\u003c/code\u003e\u003c/a\u003e Allow more customisation of file headers in patches (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/641\"\u003e#641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/43c716c4a38aeb72939e41e7ef353a33615335bf\"\u003e\u003ccode\u003e43c716c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/636\"\u003e#636\u003c/a\u003e from kpdecker/dependabot/npm_and_yarn/node-forge-1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b8162c77d711e9c17e440e4f62bad7c88fad1a88\"\u003e\u003ccode\u003eb8162c7\u003c/code\u003e\u003c/a\u003e Bump node-forge from 1.3.1 to 1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad6dc1728e52e4124abcbf906072eaeaa9e63aea\"\u003e\u003ccode\u003ead6dc17\u003c/code\u003e\u003c/a\u003e Fix some bugs in the diffWords regex (and errors \u0026amp; ambiguities in the comment...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3e1774afcfadc806baa58ee780923e4d4097319a\"\u003e\u003ccode\u003e3e1774a\u003c/code\u003e\u003c/a\u003e Fix a comment typo (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/633\"\u003e#633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/7.0.0...v8.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.1 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.1...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f\"\u003e\u003ccode\u003e7bc755d\u003c/code\u003e\u003c/a\u003e parse root off paths before sanitizing .. parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/c8cb84629dee649feedde03f2f4ea48f2e44e778\"\u003e\u003ccode\u003ec8cb846\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/1f0c2c9006b10199cf2686f8ef43e79a1773e1aa\"\u003e\u003ccode\u003e1f0c2c9\u003c/code\u003e\u003c/a\u003e 7.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/fbb08518bf290733b68ca4d4135f75becf73fd75\"\u003e\u003ccode\u003efbb0851\u003c/code\u003e\u003c/a\u003e build minified version as default export\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.0.1 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 4.0.1 to 4.4.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/releases\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea4d95e6: Set downlevel types to be used in typescript@'\u0026lt;4.5'\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [a4d95e6]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.4.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea4d95e6: Set downlevel types to be used in typescript@'\u0026lt;4.5'\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [a4d95e6]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [d0954cc]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.13.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.8\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [2bf677c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.7\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e03c3dc8: update for rollup build externalLiveBindings=false\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [03c3dc8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.12.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.2.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.6\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [745867a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.12.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.2.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5eab7ea1c099488605ff3e442e26a7e5c1902d7f\"\u003e\u003ccode\u003e5eab7ea\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a4d95e6967ac79514ad6a7659c0b400e3c3d94d1\"\u003e\u003ccode\u003ea4d95e6\u003c/code\u003e\u003c/a\u003e fix: set downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1906\"\u003e#1906\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/2acebecd260dba2cca593ef65bf262e2eb3ad283\"\u003e\u003ccode\u003e2acebec\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/06793cc98c1fce48f9f8362e7e99c5873da8f9b8\"\u003e\u003ccode\u003e06793cc\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/1f51a0cffaf7405444dca55bdf3f6fa77e24c888\"\u003e\u003ccode\u003e1f51a0c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a028fc557b1df0af2474e435d2fef64fd9244228\"\u003e\u003ccode\u003ea028fc5\u003c/code\u003e\u003c/a\u003e chore: replace rimraf with premove (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1834\"\u003e#1834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/0e8cc4926dee4e081bfc3fe9945813f7118da73b\"\u003e\u003ccode\u003e0e8cc49\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7e4bbf64112652f6bb5171ce2c14eebfc6aab964\"\u003e\u003ccode\u003e7e4bbf6\u003c/code\u003e\u003c/a\u003e chore: upgrade rimraf to v5.0.10 (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1829\"\u003e#1829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/521d67c38f8928c514d1fcea3fc08e40c2300513\"\u003e\u003ccode\u003e521d67c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/8b90f360df2a5c80c105db732b3c2f6972994854\"\u003e\u003ccode\u003e8b90f36\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@4.4.10/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.14.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.14.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.2 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.2...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `underscore` from 1.13.7 to 1.13.8\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/9374840c22e348083d0d072f30dc980622523259\"\u003e\u003ccode\u003e9374840\u003c/code\u003e\u003c/a\u003e Merge branch 'release/1.13.8'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/309ad7e6658b927ca5f28ce069665d9c523c53e5\"\u003e\u003ccode\u003e309ad7e\u003c/code\u003e\u003c/a\u003e Re-generate annotated sources and minified codemaps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a1ac1d33537662304d4985f61301112ea0f1f051\"\u003e\u003ccode\u003ea1ac1d3\u003c/code\u003e\u003c/a\u003e Add links to diff and docs in 1.13.8 change log entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/b579595ec9da8db15196bc1d3547833458939c44\"\u003e\u003ccode\u003eb579595\u003c/code\u003e\u003c/a\u003e Mention CVE-2026-27601 in comments and documentation (\u003ca href=\"https://redirect.github.com/jashkenas/underscore/issues/3011\"\u003e#3011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/45ea015a99069780db492a114c1e709dd77d3b89\"\u003e\u003ccode\u003e45ea015\u003c/code\u003e\u003c/a\u003e Revert obfuscations from 42823bb.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/4a4019e00beb2c42eda20c05f375a35983b748f0\"\u003e\u003ccode\u003e4a4019e\u003c/code\u003e\u003c/a\u003e Update minified bundles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/1ccfdd0c50470d862bb553c1e0c70567a59d4355\"\u003e\u003ccode\u003e1ccfdd0\u003c/code\u003e\u003c/a\u003e Add preliminary release notes for 1.13.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/42823bbff87e9fe82855d5adb5ba7ff839f8b446\"\u003e\u003ccode\u003e42823bb\u003c/code\u003e\u003c/a\u003e Temporarily obfuscate comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a6e23ae9647461ec33ad9f92a2ecfc220eea0a84\"\u003e\u003ccode\u003ea6e23ae\u003c/code\u003e\u003c/a\u003e Make _.isEqual nonrecursive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/f2b516441ab99b82045f2a336c348899e6527e00\"\u003e\u003ccode\u003ef2b5164\u003c/code\u003e\u003c/a\u003e Add regression test against s...\n\n_Description has been truncated_","html_url":"https://github.com/CasP0/renovate/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CasP0%2Frenovate/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"},{"uuid":"4003888805","node_id":"PR_kwDOM3OYIc7G-KyI","number":6,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-05T06:42:58.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-28T04:46:15.000Z","updated_at":"2026-03-05T06:42:59.000Z","time_to_close":439003,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8...\n\n_Description has been truncated_","html_url":"https://github.com/Jguest7/renovate/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"},{"uuid":"4003810238","node_id":"PR_kwDOM32T_c7G962K","number":19,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 16 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-04T01:25:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-28T03:58:55.000Z","updated_at":"2026-03-04T01:25:40.000Z","time_to_close":336403,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":16,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 14 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/automatik-engineering/renovate/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/automatik-engineering/renovate/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/automatik-engineering%2Frenovate/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"},{"uuid":"3975497578","node_id":"PR_kwDOM3OYIc7FgvLr","number":5,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-28T04:46:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-22T21:45:58.000Z","updated_at":"2026-02-28T04:46:19.000Z","time_to_close":457219,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.1","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/6d7ac34de6979f0b028b34fecd40349cd4dde186\"\u003e\u003ccode\u003e6d7ac34\u003c/code\u003e\u003c/a\u003e 10.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5\"\u003e\u003ccode\u003e2e111f3\u003c/code\u003e\u003c/a\u003e coalesce consecutive non-globstar * characters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a62a2a667db92078811f2b7fc345737deded17a\"\u003e\u003ccode\u003e1a62a2a\u003c/code\u003e\u003c/a\u003e 10.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/758b5a3089af0b178b31bd40eb2189343d82121b\"\u003e\u003ccode\u003e758b5a3\u003c/code\u003e\u003c/a\u003e changelog 10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/903e50ba7895f51cf3290541cd2cfe2b8e59167e\"\u003e\u003ccode\u003e903e50b\u003c/code\u003e\u003c/a\u003e add braceExpandMax option, format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a50a11077dc1c2c93191fbdf6ebf6012862db540\"\u003e\u003ccode\u003ea50a110\u003c/code\u003e\u003c/a\u003e 10.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a08c04628411d8f9d3eea4ccb4fd84a1a48a9fc5\"\u003e\u003ccode\u003ea08c046\u003c/code\u003e\u003c/a\u003e move back to og brace-expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fde70d1bfbe84069e025e58131b8efa1c50602c2\"\u003e\u003ccode\u003efde70d1\u003c/code\u003e\u003c/a\u003e 10.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/05210d8249922bf76ac9eff457e717bcd2f8d434\"\u003e\u003ccode\u003e05210d8\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ba4093ca1ca31684e32ab14e61780daacc8bc233\"\u003e\u003ccode\u003eba4093c\u003c/code\u003e\u003c/a\u003e update workflows and package stuff\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/l...\n\n_Description has been truncated_","html_url":"https://github.com/Jguest7/renovate/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"3975429574","node_id":"PR_kwDONNAvi87FgiMr","number":90,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-28T04:17:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-22T21:04:54.000Z","updated_at":"2026-02-28T04:17:44.000Z","time_to_close":457969,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.1","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.26.0","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.10","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.10` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/6d7ac34de6979f0b028b34fecd40349cd4dde186\"\u003e\u003ccode\u003e6d7ac34\u003c/code\u003e\u003c/a\u003e 10.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5\"\u003e\u003ccode\u003e2e111f3\u003c/code\u003e\u003c/a\u003e coalesce consecutive non-globstar * characters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a62a2a667db92078811f2b7fc345737deded17a\"\u003e\u003ccode\u003e1a62a2a\u003c/code\u003e\u003c/a\u003e 10.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/758b5a3089af0b178b31bd40eb2189343d82121b\"\u003e\u003ccode\u003e758b5a3\u003c/code\u003e\u003c/a\u003e changelog 10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/903e50ba7895f51cf3290541cd2cfe2b8e59167e\"\u003e\u003ccode\u003e903e50b\u003c/code\u003e\u003c/a\u003e add braceExpandMax option, format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a50a11077dc1c2c93191fbdf6ebf6012862db540\"\u003e\u003ccode\u003ea50a110\u003c/code\u003e\u003c/a\u003e 10.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a08c04628411d8f9d3eea4ccb4fd84a1a48a9fc5\"\u003e\u003ccode\u003ea08c046\u003c/code\u003e\u003c/a\u003e move back to og brace-expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fde70d1bfbe84069e025e58131b8efa1c50602c2\"\u003e\u003ccode\u003efde70d1\u003c/code\u003e\u003c/a\u003e 10.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/05210d8249922bf76ac9eff457e717bcd2f8d434\"\u003e\u003ccode\u003e05210d8\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ba4093ca1ca31684e32ab14e61780daacc8bc233\"\u003e\u003ccode\u003eba4093c\u003c/code\u003e\u003c/a\u003e update workflows and package stuff\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.26.0 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.10 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp...\n\n_Description has been truncated_","html_url":"https://github.com/Reality2byte/renovate/pull/90","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Reality2byte%2Frenovate/issues/90","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/90/packages"},{"uuid":"3963665935","node_id":"PR_kwDOM3OYIc7E6lG-","number":2,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-21T00:20:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-19T15:49:11.000Z","updated_at":"2026-02-21T00:20:45.000Z","time_to_close":117092,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Jguest7/renovate/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Jguest7/renovate/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"3963231805","node_id":"PR_kwDOM32T_c7E5I2g","number":15,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 14 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-20T23:49:51.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-19T14:19:38.000Z","updated_at":"2026-02-20T23:49:53.000Z","time_to_close":120613,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":14,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/automatik-engineering/renovate/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/automatik-engineering/renovate/pull/15","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/automatik-engineering%2Frenovate/issues/15","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/15/packages"},{"uuid":"3963183240","node_id":"PR_kwDOIf4Sk87E4-lQ","number":7,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-20T00:14:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-19T14:09:15.000Z","updated_at":"2026-02-20T00:14:51.000Z","time_to_close":36334,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":17,"packages":[{"name":"diff","old_version":"7.0.0","new_version":"8.0.3","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"6.0.1","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.26.0","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.12","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.1","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `7.0.0` | `8.0.3` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.0.1` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.12` | `3.0.13` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the DefinitelyTyped types to JsDiff's own type definitions includes multiple fixes and also removes many exported types previously used for \u003ccode\u003eoptions\u003c/code\u003e arguments to diffing and patch-generation functions. (There are now different exported options types for abortable calls - ones with a \u003ccode\u003etimeout\u003c/code\u003e or \u003ccode\u003emaxEditLength\u003c/code\u003e that may give a result of \u003ccode\u003eundefined\u003c/code\u003e - and non-abortable calls.) See the TypeScript section of the README for some usage tips.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eDiff\u003c/code\u003e object is now a class\u003c/strong\u003e. Custom extensions of \u003ccode\u003eDiff\u003c/code\u003e, as described in the \u0026quot;Defining custom diffing behaviors\u0026quot; section of the README, can therefore now be done by writing a \u003ccode\u003eclass CustomDiff extends Diff\u003c/code\u003e and overriding methods, instead of the old way based on prototype inheritance. (I \u003cem\u003ethink\u003c/em\u003e code that did things the old way should still work, though!)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediff/lib/index.es6.js\u003c/code\u003e and \u003ccode\u003ediff/lib/index.mjs\u003c/code\u003e no longer exist, and the ESM version of the library is no longer bundled into a single file.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option for \u003ccode\u003ediffWords\u003c/code\u003e is no longer included in the type declarations\u003c/strong\u003e. The effect of passing \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e has always been to make \u003ccode\u003ediffWords\u003c/code\u003e just call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead, which was confusing, because that behaviour doesn't seem properly described as \u0026quot;ignoring\u0026quot; whitespace at all. The property remains available to non-TypeScript applications for the sake of backwards compatibility, but TypeScript applications will now see a type error if they try to pass \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e to \u003ccode\u003ediffWords\u003c/code\u003e and should change their code to call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJsDiff no longer purports to support ES3 environments. (I'm pretty sure it never truly did, despite claiming to in its README, since even the 1.0.0 release used \u003ccode\u003eArray.map\u003c/code\u003e which was added in ES5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/601\"\u003e#601\u003c/a\u003e - \u003cstrong\u003e\u003ccode\u003ediffJson\u003c/code\u003e's \u003ccode\u003estringifyReplacer\u003c/code\u003e option behaves more like \u003ccode\u003eJSON.stringify\u003c/code\u003e's \u003ccode\u003ereplacer\u003c/code\u003e argument now.\u003c/strong\u003e In particular:\n\u003cul\u003e\n\u003cli\u003eEach key/value pair now gets passed through the replacer once instead of twice\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ekey\u003c/code\u003e passed to the replacer when the top-level object is passed in as \u003ccode\u003evalue\u003c/code\u003e is now \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (previously, was \u003ccode\u003eundefined\u003c/code\u003e), and the \u003ccode\u003ekey\u003c/code\u003e passed with an array element is the array index as a string, like \u003ccode\u003e\u0026quot;0\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;1\u0026quot;\u003c/code\u003e (previously was whatever the key for the entire array was). Both the new behaviours match that of \u003ccode\u003eJSON.stringify\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/602\"\u003e#602\u003c/a\u003e - \u003cstrong\u003ediffing functions now consistently return \u003ccode\u003eundefined\u003c/code\u003e when called in async mode\u003c/strong\u003e (i.e. with a callback). Previously, there was an odd quirk where they would return \u003ccode\u003etrue\u003c/code\u003e if the strings being diffed were equal and \u003ccode\u003eundefined\u003c/code\u003e otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/1179ccb0d31f497449e998a6e67b1b9220565764\"\u003e\u003ccode\u003e1179ccb\u003c/code\u003e\u003c/a\u003e Ignore .zed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/949d6e2a44622b15b5a5be3ffcf196869c5a6b4c\"\u003e\u003ccode\u003e949d6e2\u003c/code\u003e\u003c/a\u003e Add test for the vuln I just fixed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/650\"\u003e#650\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/15a1585230748c8ae6f8274c202e0c87309142f5\"\u003e\u003ccode\u003e15a1585\u003c/code\u003e\u003c/a\u003e Fix the second denial-of-service vulnerability in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/649\"\u003e#649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/de95cca5329730cf9dcdd85c634633693b3ab3db\"\u003e\u003ccode\u003ede95cca\u003c/code\u003e\u003c/a\u003e Fix potentially cubic-time regex in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b9aeedef3fe4764c3408b52990767bd7ac0425ab\"\u003e\u003ccode\u003eb9aeede\u003c/code\u003e\u003c/a\u003e Allow more customisation of file headers in patches (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/641\"\u003e#641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/43c716c4a38aeb72939e41e7ef353a33615335bf\"\u003e\u003ccode\u003e43c716c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/636\"\u003e#636\u003c/a\u003e from kpdecker/dependabot/npm_and_yarn/node-forge-1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b8162c77d711e9c17e440e4f62bad7c88fad1a88\"\u003e\u003ccode\u003eb8162c7\u003c/code\u003e\u003c/a\u003e Bump node-forge from 1.3.1 to 1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad6dc1728e52e4124abcbf906072eaeaa9e63aea\"\u003e\u003ccode\u003ead6dc17\u003c/code\u003e\u003c/a\u003e Fix some bugs in the diffWords regex (and errors \u0026amp; ambiguities in the comment...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3e1774afcfadc806baa58ee780923e4d4097319a\"\u003e\u003ccode\u003e3e1774a\u003c/code\u003e\u003c/a\u003e Fix a comment typo (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/633\"\u003e#633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/7.0.0...v8.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.0.1 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.26.0 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.12 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.1 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.1...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually b...\n\n_Description has been truncated_","html_url":"https://github.com/omercnet/renovate/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/omercnet%2Frenovate/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"},{"uuid":"3835486194","node_id":"PR_kwDOQ9oRwM6-Tq_Z","number":1,"state":"open","title":"Bump openpgp from 5.11.3 to 6.3.0","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-20T21:12:48.000Z","updated_at":"2026-01-20T21:22:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"openpgp","old_version":"5.11.3","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":null,"ecosystem":"npm"},"body":"Bumps [openpgp](https://github.com/openpgpjs/openpgpjs) from 5.11.3 to 6.3.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix zlib compression for data larger than 65KB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1894\"\u003eopenpgpjs/openpgpjs#1894\u003c/a\u003e):\nAffected versions: v6.2.0 and v6.2.1 .\nAs compression is disabled by default in openpgpjs, the issue only affects users who enabled zlib compression via e.g. \u003ccode\u003econfig.preferredCompressionAlgorithm = openpgp.enums.compression.zlib\u003c/code\u003e and encrypted or signed data larger than 65KB.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLightweight build: lazy load tweetnacl dependency module (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1877\"\u003eopenpgpjs/openpgpjs#1877\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eKey validation: use WebCrypto API when available for curve25519\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eInternal dependency updates\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplement OpenPGP message grammar validation (add \u003ccode\u003econfig.enforceGrammar\u003c/code\u003e, enabled by default) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnable using WebCrypto for X25519 when available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1829\"\u003e#1829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrefer subkeys with higher algorithm IDs (in case of equal creation timestamps), on the assumption that that's the most\nmodern/secure algorithm (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1854\"\u003e#1854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove packet stream \u0026amp; error handling (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1856\"\u003e#1856\u003c/a\u003e):\n\u003cul\u003e\n\u003cli\u003ePacket parsing errors in not-yet-authenticated streams (i.e. SEIPDv1 with allowUnauthenticatedStream: true) get delayed until the decrypted data stream is authenticated\u003c/li\u003e\n\u003cli\u003eNon-critical unknown packets get turned into UnparseablePacket` objects on the packet stream instead of being ignored\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eMake Issuer Key ID signature subpacket non-critical (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove type definition for the \u003ccode\u003eUser\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1857\"\u003e#1857\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.3...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=5.11.3\u0026new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/bravellian/apt-repo-catalog/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bravellian%2Fapt-repo-catalog/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"3832820347","node_id":"PR_kwDOQ9Zce86-Ksm4","number":9,"state":"open","title":"chore(deps): bump openpgp from 5.11.3 to 6.3.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-20T09:21:10.000Z","updated_at":"2026-01-21T13:46:09.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"openpgp","old_version":"5.11.3","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":null,"ecosystem":"npm"},"body":"Bumps [openpgp](https://github.com/openpgpjs/openpgpjs) from 5.11.3 to 6.3.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix zlib compression for data larger than 65KB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1894\"\u003eopenpgpjs/openpgpjs#1894\u003c/a\u003e):\nAffected versions: v6.2.0 and v6.2.1 .\nAs compression is disabled by default in openpgpjs, the issue only affects users who enabled zlib compression via e.g. \u003ccode\u003econfig.preferredCompressionAlgorithm = openpgp.enums.compression.zlib\u003c/code\u003e and encrypted or signed data larger than 65KB.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLightweight build: lazy load tweetnacl dependency module (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1877\"\u003eopenpgpjs/openpgpjs#1877\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eKey validation: use WebCrypto API when available for curve25519\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eInternal dependency updates\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplement OpenPGP message grammar validation (add \u003ccode\u003econfig.enforceGrammar\u003c/code\u003e, enabled by default) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnable using WebCrypto for X25519 when available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1829\"\u003e#1829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrefer subkeys with higher algorithm IDs (in case of equal creation timestamps), on the assumption that that's the most\nmodern/secure algorithm (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1854\"\u003e#1854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove packet stream \u0026amp; error handling (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1856\"\u003e#1856\u003c/a\u003e):\n\u003cul\u003e\n\u003cli\u003ePacket parsing errors in not-yet-authenticated streams (i.e. SEIPDv1 with allowUnauthenticatedStream: true) get delayed until the decrypted data stream is authenticated\u003c/li\u003e\n\u003cli\u003eNon-critical unknown packets get turned into UnparseablePacket` objects on the packet stream instead of being ignored\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eMake Issuer Key ID signature subpacket non-critical (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove type definition for the \u003ccode\u003eUser\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1857\"\u003e#1857\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.3...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=5.11.3\u0026new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/gabrielee5/kript/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/gabrielee5%2Fkript/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"},{"uuid":"3809991850","node_id":"PR_kwDOCG8vVc68_Ywm","number":2974,"state":"closed","title":"Bump the dependencies group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-19T22:17:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-13T18:15:54.000Z","updated_at":"2026-01-19T22:17:58.000Z","time_to_close":532922,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":3,"packages":[{"name":"i18next","old_version":"25.3.6","new_version":"25.7.4","repository_url":"https://github.com/i18next/i18next"},{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"zod","old_version":"4.1.12","new_version":"4.3.5","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the dependencies group with 3 updates in the /app directory: [i18next](https://github.com/i18next/i18next), [openpgp](https://github.com/openpgpjs/openpgpjs) and [zod](https://github.com/colinhacks/zod).\n\nUpdates `i18next` from 25.3.6 to 25.7.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/releases\"\u003ei18next's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev25.7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Interpolation breaks when cloning an instance \u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/2376\"\u003e2376\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etype definitions for new transDefaultProps option in react-i18next [react-i18next: \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/1895\"\u003e#1895\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/1895\"\u003ei18next/react-i18next#1895\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e#2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector function for testing purposes \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2346\"\u003e2346\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: enableSelector: true doesn't work with custom keySeparator \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2341\"\u003e2341\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: KeyPrefix not working with new selector api \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2340\"\u003e2340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd new selector API to improve TypeScript IDE performance \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2322\"\u003e2322\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eTo enable it, set \u003ccode\u003eenableSelector: true\u003c/code\u003e in your configuration options\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/blob/master/CHANGELOG.md\"\u003ei18next's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e25.7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Interpolation breaks when cloning an instance \u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/2376\"\u003e2376\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etype definitions for new transDefaultProps option in react-i18next [react-i18next: \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/1895\"\u003e#1895\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/1895\"\u003ei18next/react-i18next#1895\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/04392be4ec46325e2ef9fdb184f93d64c206f85a\"\u003e\u003ccode\u003e04392be\u003c/code\u003e\u003c/a\u003e 25.7.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/92c8f482ab3fac9b4ff29a1cbf622e26fff22397\"\u003e\u003ccode\u003e92c8f48\u003c/code\u003e\u003c/a\u003e fix: Interpolation breaks when cloning an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2376\"\u003e#2376\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/5f44eb70189ff7b1a7ff289bd4b642bdc170c152\"\u003e\u003ccode\u003e5f44eb7\u003c/code\u003e\u003c/a\u003e fix img url\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/1e5f568674433e496ef3608784203935aff11eea\"\u003e\u003ccode\u003e1e5f568\u003c/code\u003e\u003c/a\u003e remove old addRule function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/e328830d3916037d667f972b775db2113c53441a\"\u003e\u003ccode\u003ee328830\u003c/code\u003e\u003c/a\u003e fallbackLng object with same language (omitting default fallback)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/c77c20383f42b2fb9bcba6da4982e3ed2434350b\"\u003e\u003ccode\u003ec77c203\u003c/code\u003e\u003c/a\u003e jsr update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/a73189767e031a889db35baca3598a08626ec903\"\u003e\u003ccode\u003ea731897\u003c/code\u003e\u003c/a\u003e 25.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/c60d722711aafa082c55b04063fc69b477cadef8\"\u003e\u003ccode\u003ec60d722\u003c/code\u003e\u003c/a\u003e type definitions for new transDefaultProps option in react-i18next\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/3e160f39c2bd4506e0be3c2af74c039219405389\"\u003e\u003ccode\u003e3e160f3\u003c/code\u003e\u003c/a\u003e jsr update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/3bd82e3686530fde480917c06131dbc571678a8d\"\u003e\u003ccode\u003e3bd82e3\u003c/code\u003e\u003c/a\u003e 25.7.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/i18next/i18next/compare/v25.3.6...v25.7.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.2.2 to 6.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zod` from 4.1.12 to 4.3.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/colinhacks/zod/releases\"\u003ezod's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.3.5\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e21afffdb42ccab554036312e33fed0ea3cb8f982 [Docs] Update migration guide docs for deprecation of message (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5595\"\u003e#5595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee36743e513aadb307b29949a80d6eb0dcc8fc278 Improve mini treeshaking\u003c/li\u003e\n\u003cli\u003e0cdc0b8597999fd9ca99767b912c1e82c1ff2d6c 4.3.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.4\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e1a8bea3b474eada6f219c163d0d3ad09fadabe72 Add integration tests\u003c/li\u003e\n\u003cli\u003ee01cd02b2f23d7e9078d3813830b146f8a2258b4 Support patternProperties for looserecord (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5592\"\u003e#5592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e089e5fbb0f58ce96d2c4fb34cd91724c78df4af5 Improve looseRecord docs\u003c/li\u003e\n\u003cli\u003edecef9c418d9a598c3f1bada06891ba5d922c5cd Fix lint\u003c/li\u003e\n\u003cli\u003e9443aab00d44d5d5f4a7eada65fc0fc851781042 Drop iso time in fromJSONSchema\u003c/li\u003e\n\u003cli\u003e66bda7491a1b9eab83bdeec0c12f4efc7290bd48 Remove .refine() from ZodMiniType\u003c/li\u003e\n\u003cli\u003eb4ab94ca608cd5b581bfc12b20dd8d95b35b3009 4.3.4\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.3\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ef3b2151959d215d405f54dff3c7ab3bf1fd887ca v4.3.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.2\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebf96635d243118de6e4f260077aa137453790bf6 Loosen strictObjectinside intersection (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5587\"\u003e#5587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef71dc0182ab0f0f9a6be6295b07faca269e10179 Remove Juno (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5590\"\u003e#5590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0f41e5a12a43e6913c9dcb501b2b5136ea86500d 4.3.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0fe88407a4149c907929b757dc6618d8afe998fc allow non-overwriting extends with refinements. 4.3.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cp\u003eThis is Zod's biggest release since 4.0. It addresses several of Zod's longest-standing feature requests.\u003c/p\u003e\n\u003ch2\u003e\u003ccode\u003ez.fromJSONSchema()\u003c/code\u003e\u003c/h2\u003e\n\u003cp\u003eConvert JSON Schema to Zod (\u003ca href=\"https://redirect.github.com/colinhacks/zod/pull/5534\"\u003e#5534\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/colinhacks/zod/pull/5586\"\u003e#5586\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eYou can now convert JSON Schema definitions directly into Zod schemas. This function supports JSON Schema \u003ccode\u003e\u0026quot;draft-2020-12\u0026quot;\u003c/code\u003e, \u003ccode\u003e\u0026quot;draft-7\u0026quot;\u003c/code\u003e, \u003ccode\u003e\u0026quot;draft-4\u0026quot;\u003c/code\u003e, and OpenAPI 3.0.\u003c/p\u003e\n\u003cpre lang=\"typescript\"\u003e\u003ccode\u003eimport * as z from \u0026quot;zod\u0026quot;;\n\u003cp\u003econst schema = z.fromJSONSchema({\ntype: \u0026quot;object\u0026quot;,\nproperties: {\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/0cdc0b8597999fd9ca99767b912c1e82c1ff2d6c\"\u003e\u003ccode\u003e0cdc0b8\u003c/code\u003e\u003c/a\u003e 4.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/e36743e513aadb307b29949a80d6eb0dcc8fc278\"\u003e\u003ccode\u003ee36743e\u003c/code\u003e\u003c/a\u003e Improve mini treeshaking\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/21afffdb42ccab554036312e33fed0ea3cb8f982\"\u003e\u003ccode\u003e21afffd\u003c/code\u003e\u003c/a\u003e [Docs] Update migration guide docs for deprecation of message (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5595\"\u003e#5595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/b4ab94ca608cd5b581bfc12b20dd8d95b35b3009\"\u003e\u003ccode\u003eb4ab94c\u003c/code\u003e\u003c/a\u003e 4.3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/66bda7491a1b9eab83bdeec0c12f4efc7290bd48\"\u003e\u003ccode\u003e66bda74\u003c/code\u003e\u003c/a\u003e Remove .refine() from ZodMiniType\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/9443aab00d44d5d5f4a7eada65fc0fc851781042\"\u003e\u003ccode\u003e9443aab\u003c/code\u003e\u003c/a\u003e Drop iso time in fromJSONSchema\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/decef9c418d9a598c3f1bada06891ba5d922c5cd\"\u003e\u003ccode\u003edecef9c\u003c/code\u003e\u003c/a\u003e Fix lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/089e5fbb0f58ce96d2c4fb34cd91724c78df4af5\"\u003e\u003ccode\u003e089e5fb\u003c/code\u003e\u003c/a\u003e Improve looseRecord docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/e01cd02b2f23d7e9078d3813830b146f8a2258b4\"\u003e\u003ccode\u003ee01cd02\u003c/code\u003e\u003c/a\u003e Support patternProperties for looserecord (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5592\"\u003e#5592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/1a8bea3b474eada6f219c163d0d3ad09fadabe72\"\u003e\u003ccode\u003e1a8bea3\u003c/code\u003e\u003c/a\u003e Add integration tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/colinhacks/zod/compare/v4.1.12...v4.3.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/freedomofpress/securedrop-client/pull/2974","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop-client/issues/2974","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2974/packages"},{"uuid":"3732185658","node_id":"PR_kwDOCG8vVc65BEP0","number":2923,"state":"closed","title":"Bump the dependencies group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-13T18:15:43.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-15T21:26:27.000Z","updated_at":"2026-01-13T18:15:45.000Z","time_to_close":2494156,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":4,"packages":[{"name":"i18next","old_version":"25.3.6","new_version":"25.7.2","repository_url":"https://github.com/i18next/i18next"},{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"tailwindcss","old_version":"4.1.12","new_version":"4.1.17","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"zod","old_version":"4.1.12","new_version":"4.1.13","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the dependencies group with 4 updates in the /app directory: [i18next](https://github.com/i18next/i18next), [openpgp](https://github.com/openpgpjs/openpgpjs), [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) and [zod](https://github.com/colinhacks/zod).\n\nUpdates `i18next` from 25.3.6 to 25.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/releases\"\u003ei18next's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e#2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector function for testing purposes \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2346\"\u003e2346\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: enableSelector: true doesn't work with custom keySeparator \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2341\"\u003e2341\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: KeyPrefix not working with new selector api \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2340\"\u003e2340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd new selector API to improve TypeScript IDE performance \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2322\"\u003e2322\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eTo enable it, set \u003ccode\u003eenableSelector: true\u003c/code\u003e in your configuration options\u003c/li\u003e\n\u003cli\u003eWith \u003ccode\u003eenableSelector: \u0026quot;optimize\u0026quot;\u003c/code\u003e, i18next can now handle translation dictionaries of any size, without affecting IDE performance or build times\u003c/li\u003e\n\u003cli\u003eTo assist with the migration, we've published the following packages:\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahrjarrett/i18next-selector/tree/main/packages/codemod\"\u003e\u003ccode\u003e@​i18next-selector/codemod\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahrjarrett/i18next-selector/tree/main/packages/vite-plugin\"\u003e\u003ccode\u003e@​i18next-selector/vite-plugin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/blob/master/CHANGELOG.md\"\u003ei18next's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector function for testing purposes \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2346\"\u003e2346\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: enableSelector: true doesn't work with custom keySeparator \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2341\"\u003e2341\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/3bd82e3686530fde480917c06131dbc571678a8d\"\u003e\u003ccode\u003e3bd82e3\u003c/code\u003e\u003c/a\u003e 25.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/547c78509c35cfce03f1db7497c97f7d9641a5ba\"\u003e\u003ccode\u003e547c785\u003c/code\u003e\u003c/a\u003e fix: Invalid overwrite of default value for overloadTranslationOptionHandler ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/1ea14ddd526d1ddd6467df964be0633d20713374\"\u003e\u003ccode\u003e1ea14dd\u003c/code\u003e\u003c/a\u003e jsr update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/1e9ecb5a5d0a2248675e71aae85b17446c2cb530\"\u003e\u003ccode\u003e1e9ecb5\u003c/code\u003e\u003c/a\u003e 25.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/7f2479b3bd99d38c60d68ed0e18e058e1a1322d9\"\u003e\u003ccode\u003e7f2479b\u003c/code\u003e\u003c/a\u003e TS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e#2372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/34dc5eb8e6273c59fa74a582ad2b0713b5c5cf6a\"\u003e\u003ccode\u003e34dc5eb\u003c/code\u003e\u003c/a\u003e fix publish_jsr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/39598602a375f58e8876d076ca09a44597772628\"\u003e\u003ccode\u003e3959860\u003c/code\u003e\u003c/a\u003e fix publish_jsr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/9468e4420433451c1f21d1c32d4c0fdcaf6f0698\"\u003e\u003ccode\u003e9468e44\u003c/code\u003e\u003c/a\u003e fix script\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/9b74b9bc3f04bbcc66927bee0401a261f9e9f26b\"\u003e\u003ccode\u003e9b74b9b\u003c/code\u003e\u003c/a\u003e fix script\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/eb9529ef2ac23087de834ed20524ae2c220afcc2\"\u003e\u003ccode\u003eeb9529e\u003c/code\u003e\u003c/a\u003e fix script\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/i18next/i18next/compare/v25.3.6...v25.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.2.2 to 6.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tailwindcss` from 4.1.12 to 4.1.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/releases\"\u003etailwindcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSubstitute \u003ccode\u003e@variant\u003c/code\u003e inside legacy JS APIs (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19263\"\u003e#19263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent occasional crash on Windows when loaded into a worker thread (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19242\"\u003e#19242\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.16\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDiscard candidates with an empty data type (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19172\"\u003e#19172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization of arbitrary variants with attribute selectors (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19176\"\u003e#19176\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix invalid colors due to nested \u003ccode\u003e\u0026amp;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19184\"\u003e#19184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for \u003ccode\u003e\u0026amp; \u0026gt; :pseudo\u003c/code\u003e and \u003ccode\u003e\u0026amp; :pseudo\u003c/code\u003e arbitrary variants (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19178\"\u003e#19178\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.15\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix Safari devtools rendering issue due to \u003ccode\u003ecolor-mix\u003c/code\u003e fallback (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19069\"\u003e#19069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress Lightning CSS warnings about \u003ccode\u003e:deep\u003c/code\u003e, \u003ccode\u003e:slotted\u003c/code\u003e, and \u003ccode\u003e:global\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19094\"\u003e#19094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix resolving theme keys when starting with the name of another theme key in JS configs and plugins (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19097\"\u003e#19097\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow named groups in combination with \u003ccode\u003enot-*\u003c/code\u003e, \u003ccode\u003ehas-*\u003c/code\u003e, and \u003ccode\u003ein-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19100\"\u003e#19100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent important utilities from affecting other utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19110\"\u003e#19110\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDon’t index into strings with the \u003ccode\u003etheme(…)\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19111\"\u003e#19111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix parsing issue when \u003ccode\u003e\\t\u003c/code\u003e is used in at-rules (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19130\"\u003e#19130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Canonicalize utilities containing \u003ccode\u003e0\u003c/code\u003e values (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19095\"\u003e#19095\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Migrate deprecated \u003ccode\u003ebreak-words\u003c/code\u003e to \u003ccode\u003ewrap-break-word\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19157\"\u003e#19157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the \u003ccode\u003epostinstall\u003c/code\u003e script from oxide (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19149\"\u003e#19149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.14\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHandle \u003ccode\u003e'\u003c/code\u003e syntax in ClojureScript when extracting classes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18888\"\u003e#18888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHandle \u003ccode\u003e@variant\u003c/code\u003e inside \u003ccode\u003e@custom-variant\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18885\"\u003e#18885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge suggestions when using \u003ccode\u003e@utility\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18900\"\u003e#18900\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that file system watchers created when using the CLI are always cleaned up (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18905\"\u003e#18905\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-column\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-column-start\u003c/code\u003e or \u003ccode\u003egrid-column-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-row\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-row-start\u003c/code\u003e or \u003ccode\u003egrid-row-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent duplicate CSS when overwriting a static utility with a theme key (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18056\"\u003e#18056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eShow Lightning CSS warnings (if any) when optimizing/minifying (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18918\"\u003e#18918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003edefault\u003c/code\u003e export condition for \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18948\"\u003e#18948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-throw errors from PostCSS nodes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDetect classes in markdown inline directives (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18967\"\u003e#18967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure files with only \u003ccode\u003e@theme\u003c/code\u003e produce no output when built (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18979\"\u003e#18979\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport Maud templates when extracting classes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18988\"\u003e#18988\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Do not migrate \u003ccode\u003evariant = 'outline'\u003c/code\u003e during upgrades (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18922\"\u003e#18922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Show version mismatch (if any) when running upgrade tool (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19028\"\u003e#19028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Ensure first class inside \u003ccode\u003eclassName\u003c/code\u003e is migrated (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19031\"\u003e#19031\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md\"\u003etailwindcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.17] - 2025-11-06\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSubstitute \u003ccode\u003e@variant\u003c/code\u003e inside legacy JS APIs (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19263\"\u003e#19263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent occasional crash on Windows when loaded into a worker thread (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19242\"\u003e#19242\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.16] - 2025-10-23\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDiscard candidates with an empty data type (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19172\"\u003e#19172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization of arbitrary variants with attribute selectors (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19176\"\u003e#19176\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix invalid colors due to nested \u003ccode\u003e\u0026amp;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19184\"\u003e#19184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for \u003ccode\u003e\u0026amp; \u0026gt; :pseudo\u003c/code\u003e and \u003ccode\u003e\u0026amp; :pseudo\u003c/code\u003e arbitrary variants (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19178\"\u003e#19178\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.15] - 2025-10-20\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix Safari devtools rendering issue due to \u003ccode\u003ecolor-mix\u003c/code\u003e fallback (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19069\"\u003e#19069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress Lightning CSS warnings about \u003ccode\u003e:deep\u003c/code\u003e, \u003ccode\u003e:slotted\u003c/code\u003e, and \u003ccode\u003e:global\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19094\"\u003e#19094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix resolving theme keys when starting with the name of another theme key in JS configs and plugins (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19097\"\u003e#19097\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow named groups in combination with \u003ccode\u003enot-*\u003c/code\u003e, \u003ccode\u003ehas-*\u003c/code\u003e, and \u003ccode\u003ein-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19100\"\u003e#19100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent important utilities from affecting other utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19110\"\u003e#19110\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDon’t index into strings with the \u003ccode\u003etheme(…)\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19111\"\u003e#19111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix parsing issue when \u003ccode\u003e\\t\u003c/code\u003e is used in at-rules (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19130\"\u003e#19130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Canonicalize utilities containing \u003ccode\u003e0\u003c/code\u003e values (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19095\"\u003e#19095\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Migrate deprecated \u003ccode\u003ebreak-words\u003c/code\u003e to \u003ccode\u003ewrap-break-word\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19157\"\u003e#19157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the \u003ccode\u003epostinstall\u003c/code\u003e script from oxide (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19149\"\u003e#19149\u003c/a\u003e)(\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19149\"\u003etailwindlabs/tailwindcss#19149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.14] - 2025-10-01\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHandle \u003ccode\u003e'\u003c/code\u003e syntax in ClojureScript when extracting classes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18888\"\u003e#18888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHandle \u003ccode\u003e@variant\u003c/code\u003e inside \u003ccode\u003e@custom-variant\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18885\"\u003e#18885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge suggestions when using \u003ccode\u003e@utility\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18900\"\u003e#18900\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that file system watchers created when using the CLI are always cleaned up (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18905\"\u003e#18905\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-column\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-column-start\u003c/code\u003e or \u003ccode\u003egrid-column-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-row\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-row-start\u003c/code\u003e or \u003ccode\u003egrid-row-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent duplicate CSS when overwriting a static utility with a theme key (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18056\"\u003e#18056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eShow Lightning CSS warnings (if any) when optimizing/minifying (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18918\"\u003e#18918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003edefault\u003c/code\u003e export condition for \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18948\"\u003e#18948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-throw errors from PostCSS nodes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDetect classes in markdown inline directives (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18967\"\u003e#18967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure files with only \u003ccode\u003e@theme\u003c/code\u003e produce no output when built (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18979\"\u003e#18979\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/e9c9c4f79db00a7a1dc7a3e2a13ced3b19f55555\"\u003e\u003ccode\u003ee9c9c4f\u003c/code\u003e\u003c/a\u003e Release v4.1.17 (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19272\"\u003e#19272\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/dc6a3ce349a082e6c437288e52d0eea9a9ea4ff2\"\u003e\u003ccode\u003edc6a3ce\u003c/code\u003e\u003c/a\u003e Substitute \u003ccode\u003e@variant\u003c/code\u003e inside utilities (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19263\"\u003e#19263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/e71e70eda9c0372872b9c8bf7d70d35c22004bd4\"\u003e\u003ccode\u003ee71e70e\u003c/code\u003e\u003c/a\u003e Update magic-string 0.30.19 → 0.30.21 (minor) (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19238\"\u003e#19238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/cbbbe844759a35f5bd2a976bb6e66e1f7104c574\"\u003e\u003ccode\u003ecbbbe84\u003c/code\u003e\u003c/a\u003e Release 4.1.16 (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19185\"\u003e#19185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/601d6719f8f400f623818a1f54e07caceee18bb4\"\u003e\u003ccode\u003e601d671\u003c/code\u003e\u003c/a\u003e Fix incorrect colors used in pseudo-element (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19184\"\u003e#19184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/a41add9fab39821d345c0ac9fe8dd0100d42a7fb\"\u003e\u003ccode\u003ea41add9\u003c/code\u003e\u003c/a\u003e Improve canonicalization for \u003ccode\u003e\u0026amp; \u0026gt; :pseudo\u003c/code\u003e and \u003ccode\u003e\u0026amp; :pseudo\u003c/code\u003e arbitrary variants...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/0113b88fbd5ed51d9858ddd25c7c27b9a7e3c227\"\u003e\u003ccode\u003e0113b88\u003c/code\u003e\u003c/a\u003e Fix canonicalization of arbitrary variants with attribute selectors (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19176\"\u003e#19176\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/29687e01838dd4ddf0ce158eb119724365918608\"\u003e\u003ccode\u003e29687e0\u003c/code\u003e\u003c/a\u003e Discard candidates with an empty data type (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19172\"\u003e#19172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/56e7f3b2c294e6fb1934fb41fd5fdfc3b5af6965\"\u003e\u003ccode\u003e56e7f3b\u003c/code\u003e\u003c/a\u003e Improve memory usage during canonicalization (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19171\"\u003e#19171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/3a4ab8201b8f3cc6df709625ead233da670835d5\"\u003e\u003ccode\u003e3a4ab82\u003c/code\u003e\u003c/a\u003e Stop suggesting legacy utilities (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19169\"\u003e#19169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commits/v4.1.17/packages/tailwindcss\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zod` from 4.1.12 to 4.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/colinhacks/zod/releases\"\u003ezod's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.13\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e5c2602ceb8be8941c64bbe5ac7d92cc174ae6f7e Update AI widget (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5318\"\u003e#5318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed3da530deb713c853e79405adddf770e156d50ac reflect the specified regex correctly in error (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5338\"\u003e#5338\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e39f8c45b8a29de2330b485862b83cb35849f4238 faster initialization (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5352\"\u003e#5352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee9e27905cc0f37cb079ea473af8359d5e17a57a1 Clean up comment\u003c/li\u003e\n\u003cli\u003e8e4739fadbd7de710eb67d34ba7e06a1029a68ab Update inferred z.promise() type\u003c/li\u003e\n\u003cli\u003e2849df8907b011ab056d67ae8e3d27577ac4ed3e fix(locales): improve Dutch (nl) localization (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5367\"\u003e#5367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb0d3c9f628b60d358b66acf8f0ef7937fc9e8950 Run tests on windows\u003c/li\u003e\n\u003cli\u003e6fd61b71b85e4fef4c168a46c3ebcc574f26255f feat unitest (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5358\"\u003e#5358\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea4e4bc80e204577c698cf1369dd63c2b986d35f3 Lock to node 24\u003c/li\u003e\n\u003cli\u003e8de8bad0fa84194b81efd32474462d7a236a1ee4 Fix windows build\u003c/li\u003e\n\u003cli\u003eb2c186bbae3a74a12acd385c1ced3ed978235cf8 Use Node LTS\u003c/li\u003e\n\u003cli\u003eb73b1f61c798efdf497852872b4c19cd4111c1f3 Consolidate isTransforming logic\u003c/li\u003e\n\u003cli\u003ed85f3ea4da53a1b232017dd4e4a2874eca4d8d76 Fix \u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5353\"\u003e#5353\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e1bac0f37b529eb9a0d833a01200f5a898e8e6220 Fix test.yml\u003c/li\u003e\n\u003cli\u003e86d4dad5bc27b4b35df533c9170a552ad8c6c3bc Fix partial record\u003c/li\u003e\n\u003cli\u003e5e6c0fd7471636feffe5763c9b7637879da459fe Fix attw on windows\u003c/li\u003e\n\u003cli\u003e27fc616b8edb93cc27a4d25b37479d6e418bbccf Extend test timeout\u003c/li\u003e\n\u003cli\u003e8d336c4d15e1917d78b67b890f7182f26633b56f Remove windows runner\u003c/li\u003e\n\u003cli\u003e5be72e0ef4dceb1387febb7981079ecdeb5e2817 chore(doc): update metadata.tsx (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5331\"\u003e#5331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecb0272a0ad9962df95832a78587f54afec685351 docs: add 'cd zod' step to development setup instructions (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5394\"\u003e#5394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e24e3325dc63010e4f74e23caf91199652e8b12a9 docs: replace 'Refinement' with 'Transform' in transforms section (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5397\"\u003e#5397\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e644a08203ebb00e23484b3f9a986ae783ce26a9a chore: add resource for validating environment variables with Zod (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5403\"\u003e#5403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e1cfcf578a47527044e85455e79c907fd913adc Change doc for email validation method in Zod schema (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5392\"\u003e#5392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e88cf9441448608d9de24b47b8a4a4ba879fc2433 Fix: Iterate over keys in catchall object using \u0026quot;in\u0026quot; operator. (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5376\"\u003e#5376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaa437325c5957c0cf57667cd7b8568603ee7ecd3 Emphasise that \u003ccode\u003eenum\u003c/code\u003e validates against values, for object literal \u0026amp; \u003ccode\u003eenum\u003c/code\u003es (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5386\"\u003e#5386\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3a4bd00aaa16276ffeb2708cc083a633bd4dd756 Improve Hebrew localization for Zod error messages (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5409\"\u003e#5409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec10f9d109874aeca6855383616c086b077d39f89 Fix typos (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5420\"\u003e#5420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e86f0ef918bb24f4ab9f1ce2afc5cf2d1a4a99473 Documentation Improvements (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5417\"\u003e#5417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee120a4877f4d8d076abf2db5c5cceab91a046be9 Fix opt tuple\u003c/li\u003e\n\u003cli\u003ef9bbb50c48f9c07ca869d28d6a7086d7290b97a3 Improve tuple\u003c/li\u003e\n\u003cli\u003e0ba0f348f677688b69ed78473e022f5d225b41fc Optimize docs caching/ISR (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3ec66c74b3fbc2616e880a90751c2cad7270bb3 Improve docs caching\u003c/li\u003e\n\u003cli\u003ec8cce4b607a7c0ca99cfb454571a3948ee9e85fb docs: fix typos and links (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5428\"\u003e#5428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e84ec04708525d6e83e3408d5d3a21edde742bdc5 docs(ecosystem): Add react-f3 (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5429\"\u003e#5429\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3396515cc6f04f5f346a1e00256ad09998dbaeb3 Docs: Fix typo in safeExtend description (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5445\"\u003e#5445\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3d93a7d593c19dc1822bc96a7c9d47312c29995e feat: MAC address validation in v4 and mini (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5440\"\u003e#5440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef2f0d178e1c526bc00ad0385706efad318bd44b0 Fix dual package hazard for \u003ccode\u003eglobalRegistry\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5452\"\u003e#5452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9fc493f86f17a5fc550df78e7e261137885f51ea fix: use oneOf for discriminated unions in JSON Schema (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5453\"\u003e#5453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e603dbe8dba6253c702ca8cf10b5299910dba3c88 Clean up regex, drop backreferences\u003c/li\u003e\n\u003cli\u003eab69b9ee813713a111b56a60c2df929eaf5ba426 Update mac addr tests\u003c/li\u003e\n\u003cli\u003ef7910528901c05293bad275fffcb54a82e28fcc9 chore: upgrade vitest to v4 (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5028\"\u003e#5028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef97e80da9197064937a58167619967bee4ebb638 fix(core): prevent infinite recursion for recursive tuples (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5089\"\u003e#5089\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5094\"\u003e#5094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e002e01ad0fcc17b17683adafc80f2a86e8d355a9 fix(record): handle non-function constructor field in isPlainObject (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5098\"\u003e#5098\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e67165174eb8c7d5c6e76e760830f3109b4fdbd0e docs(contributing): add instructions on building \u003ccode\u003e@​zod/docs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5114\"\u003e#5114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8b0603dde684f1665bb2329111ed187f73ccf0ac Fix typo in ISO time documentation (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5277\"\u003e#5277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebe85ecc48a83e7f65ac0458d25f832fb4e28c9e7 docs(codecs): correct \u003ccode\u003estringToDate\u003c/code\u003e safeDecode methods (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e50bba5462546401939920a6566a81c0d9c8ef7e1 Add zodgres to ecosystem documentation (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5308\"\u003e#5308\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/4063e802d539d04182fc3e66a543ae6d1ba5658e\"\u003e\u003ccode\u003e4063e80\u003c/code\u003e\u003c/a\u003e Update check-semver script\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/2cdd82b663706fdf642d7f030841a5b278f9173c\"\u003e\u003ccode\u003e2cdd82b\u003c/code\u003e\u003c/a\u003e 4.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/a774750d113982da28a2768b0a7c2de1f20c04e8\"\u003e\u003ccode\u003ea774750\u003c/code\u003e\u003c/a\u003e v4.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/0e803a29344a2f0ee637940cca96be3e6978b22e\"\u003e\u003ccode\u003e0e803a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Do not allow unsound pick/omit\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/5bfc8f269a81d9edc283e7920868161e4129fb23\"\u003e\u003ccode\u003e5bfc8f2\u003c/code\u003e\u003c/a\u003e Fix docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/3de39eea6f7ed286ae182093d0c91f3a6fdcca06\"\u003e\u003ccode\u003e3de39ee\u003c/code\u003e\u003c/a\u003e Implement slugify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/162fe298f0ec76d7f7883afbebdd732eb3c60773\"\u003e\u003ccode\u003e162fe29\u003c/code\u003e\u003c/a\u003e Add z.meta and z.describe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/0f4ce73ad0c5610c3c53857d05ebae619d229aa3\"\u003e\u003ccode\u003e0f4ce73\u003c/code\u003e\u003c/a\u003e Do not allow unsound pick/omit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/f52344e76bed0e69175ca8893c84736cf97b5d11\"\u003e\u003ccode\u003ef52344e\u003c/code\u003e\u003c/a\u003e Fix vitest 4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/d44253d6498564ecd24a6248ddca4e9bf4e43058\"\u003e\u003ccode\u003ed44253d\u003c/code\u003e\u003c/a\u003e Add support for number literal and TypeScript's enum keys in \u003ccode\u003ez.record\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5334\"\u003e#5334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/colinhacks/zod/compare/v4.1.12...v4.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/freedomofpress/securedrop-client/pull/2923","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop-client/issues/2923","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2923/packages"},{"uuid":"3728500612","node_id":"PR_kwDOJe0PbM640kKa","number":358,"state":"closed","title":"build(deps): bump openpgp from 6.2.2 to 6.3.0","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-15T03:04:47.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-15T03:04:34.000Z","updated_at":"2025-12-15T03:04:54.000Z","time_to_close":13,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":null,"ecosystem":"npm"},"body":"Bumps [openpgp](https://github.com/openpgpjs/openpgpjs) from 6.2.2 to 6.3.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=6.2.2\u0026new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/qoomon/yolo-secret/pull/358","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qoomon%2Fyolo-secret/issues/358","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/358/packages"},{"uuid":"3719910797","node_id":"PR_kwDOH8XSjM64Ypku","number":8,"state":"closed","title":"Bump openpgp from 5.5.0 to 6.1.1 in /ForkChatClient in the npm_and_yarn group across 1 directory","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-21T20:24:32.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-11T15:37:59.000Z","updated_at":"2026-02-21T20:24:34.000Z","time_to_close":6237993,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"openpgp","old_version":"5.5.0","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":"/ForkChatClient in the npm_and_yarn group across 1 directory","ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 1 update in the /ForkChatClient directory: [openpgp](https://github.com/openpgpjs/openpgpjs).\n\nUpdates `openpgp` from 5.5.0 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.5.0...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=5.5.0\u0026new-version=6.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/realfork/ForkChat/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/realfork/ForkChat/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/realfork%2FForkChat/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}],"issue_packages":[{"old_version":"6.3.0","new_version":"6.3.1","update_type":"patch","path":null,"pr_created_at":"2026-06-10T15:23:42.000Z","version_change":"6.3.0 → 6.3.1","issue":{"uuid":"4632606320","node_id":"PR_kwDOP5MuvM7k61r9","number":210,"state":"open","title":"build(deps): bump the minor-patches group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-10T15:23:42.000Z","updated_at":"2026-06-10T18:54:22.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-patches","update_count":17,"packages":[{"name":"@aws-sdk/client-lambda","old_version":"3.1061.0","new_version":"3.1065.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/client-secrets-manager","old_version":"3.1061.0","new_version":"3.1065.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/util-arn-parser","old_version":"3.972.12","new_version":"3.972.15","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@chakra-ui/theme-tools","old_version":"2.2.9","new_version":"2.2.10","repository_url":"https://github.com/chakra-ui/chakra-ui"},{"name":"@nestjs/common","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"@nestjs/core","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"@nestjs/platform-express","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"openpgp","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"react-hook-form","old_version":"7.77.0","new_version":"7.78.0","repository_url":"https://github.com/react-hook-form/react-hook-form"},{"name":"@nestjs/testing","old_version":"11.1.24","new_version":"11.1.26","repository_url":"https://github.com/nestjs/nest"},{"name":"@swc/core","old_version":"1.15.40","new_version":"1.15.41","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/react","old_version":"19.2.16","new_version":"19.2.17","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.60.1","new_version":"8.61.0","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"cypress","old_version":"15.16.0","new_version":"15.17.0","repository_url":"https://github.com/cypress-io/cypress"},{"name":"eslint-plugin-storybook","old_version":"10.4.2","new_version":"10.4.3","repository_url":"https://github.com/storybookjs/storybook"},{"name":"prettier","old_version":"3.8.3","new_version":"3.8.4","repository_url":"https://github.com/prettier/prettier"},{"name":"semantic-release","old_version":"25.0.3","new_version":"25.0.5","repository_url":"https://github.com/semantic-release/semantic-release"}],"path":null,"ecosystem":"npm"},"body":"Bumps the minor-patches group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@aws-sdk/client-lambda](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda) | `3.1061.0` | `3.1065.0` |\n| [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) | `3.1061.0` | `3.1065.0` |\n| [@aws-sdk/util-arn-parser](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/packages-internal/util-arn-parser) | `3.972.12` | `3.972.15` |\n| [@chakra-ui/theme-tools](https://github.com/chakra-ui/chakra-ui/tree/HEAD/packages/components/theme-tools) | `2.2.9` | `2.2.10` |\n| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `11.1.24` | `11.1.26` |\n| [@nestjs/core](https://github.com/nestjs/nest/tree/HEAD/packages/core) | `11.1.24` | `11.1.26` |\n| [@nestjs/platform-express](https://github.com/nestjs/nest/tree/HEAD/packages/platform-express) | `11.1.24` | `11.1.26` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.3.0` | `6.3.1` |\n| [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.77.0` | `7.78.0` |\n| [@nestjs/testing](https://github.com/nestjs/nest/tree/HEAD/packages/testing) | `11.1.24` | `11.1.26` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.40` | `1.15.41` |\n| [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.2.16` | `19.2.17` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.60.1` | `8.61.0` |\n| [cypress](https://github.com/cypress-io/cypress) | `15.16.0` | `15.17.0` |\n| [eslint-plugin-storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/eslint-plugin) | `10.4.2` | `10.4.3` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.3` | `3.8.4` |\n| [semantic-release](https://github.com/semantic-release/semantic-release) | `25.0.3` | `25.0.5` |\n\n\nUpdates `@aws-sdk/client-lambda` from 3.1061.0 to 3.1065.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e@​aws-sdk/client-lambda's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1065.0\u003c/h2\u003e\n\u003ch4\u003e3.1065.0(2026-06-09)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003elib-transfer-manager:\u003c/strong\u003e  sort scripts alphabetically (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8087\"\u003e#8087\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0441d8b754e75b86959a45240541d2665610885b\"\u003e0441d8b7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-06-09 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/935d71be412b58187acbaa20fbc3f8e1003f9a73\"\u003e935d71be\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-write:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/45148681a66afe8e7bbf6a3845eb86c1bf3c2d1a\"\u003e45148681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cloudwatch:\u003c/strong\u003e  This release adds the APIs (AssociateDatasetKmsKey, DisassociateDatasetKmsKey, GetDataset) to manage encryption at rest for OpenTelemetry metrics in CloudWatch using AWS KMS customer managed keys. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/67566cd62dec418034287e32dea4e2e88fc803e5\"\u003e67566cd6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-marketplace-commerce-analytics:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0adb8bd9484bbf97b40554fa13dc26fa1a5b2001\"\u003e0adb8bd9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Adds support for the Amazon Bedrock account-level data retention APIs PutAccountDataRetention and GetAccountDataRetention. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9acf4f7fb1df00c72c671a372e8712de0c98c0c5\"\u003e9acf4f7f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-odb:\u003c/strong\u003e  Releases Autonomous Database Serverless APIs, autonomousDatabaseOciIntegrationIamRoles, linkedOciTenancyId, linkedOciCompartmentId, and subscriptionErrors fields in GetOciOnboardingStatus API response. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/fad7009ced5a19c5953633ad1530c58c8d874046\"\u003efad7009c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-query:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/878fc723bc8d77161255f8b3c12aa5cb14e9382f\"\u003e878fc723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-dynamodb-streams:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/eeaa78277d41ca386013742e00281928b97b26ae\"\u003eeeaa7827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added TagFieldSpecifications to CreateFlowLogs and DescribeFlowLogs APIs. Customers can now specify tag keys in their Flow Logs subscriptions to capture associated EC2 resource tag values in their logs, enabling tag-based visibility. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6a382a8a858c47a3304b80ac242882d2f1073f26\"\u003e6a382a8a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore:\u003c/strong\u003e  Add RetryableConflictException (HTTP 409) to InvokeAgentRuntimeCommand and GetAgentCard to prevent orphaned VMs during concurrent session access. The SDK automatically retries this exception with backoff. Enforcement is not yet active and will be enabled in a future service update. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a9c4a0dac49fd624896af7d0c38950f39328df63\"\u003ea9c4a0da\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-outposts:\u003c/strong\u003e  Added AWS Outposts APIs for self-service Outposts quoting and ordering. New operations include CreateQuote, GetQuote, UpdateQuote, DeleteQuote, ListQuotes, and ListOrderableInstanceTypes. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb1279eff5d814bc9795836dfc2b9d47f75bf6b5\"\u003ebb1279ef\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-iotsitewise:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b9314d4a457e338d7975076f1b7923fea4febbdd\"\u003eb9314d4a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecredential-provider-sso:\u003c/strong\u003e  forward clientConfig to SSO token provider (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8089\"\u003e#8089\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4bacac32fc593bd47a48501504575cf15eaffaba\"\u003e4bacac32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecore:\u003c/strong\u003e  export legacy root symbols from submodules instead of relative paths (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8086\"\u003e#8086\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/abea090cb45feecf626d4abeffde999b774350a2\"\u003eabea090c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eTests\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-sdk-s3:\u003c/strong\u003e  use crypto.randomUUID for E2E test bucket names (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8088\"\u003e#8088\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ba4d1941fc941533bae5121efd5237d28dda012d\"\u003eba4d1941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1065.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1064.0\u003c/h2\u003e\n\u003ch4\u003e3.1064.0(2026-06-08)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003escripts:\u003c/strong\u003e  update pkg json linting (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8082\"\u003e#8082\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e86792c5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cost-optimization-hub:\u003c/strong\u003e  Adds new Idle Recommendation types in the Cost Optimization Hub API (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/872710e9a6c5d5ad7fa808fe46748c90e179f4b7\"\u003e872710e9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  Added optional identityCenterRegion parameter to AssociateMember APIs to allow managing memberships for users and groups in other regions. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5f03ea0e77154cb43a3f6cce30d32f87f8fb47fb\"\u003e5f03ea0e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-devops-agent:\u003c/strong\u003e  Add Asset APIs for managing versioned assets and asset files in AWS DevOps Agent agent spaces. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bcef96141a9661948e0336835e2548ab007827f6\"\u003ebcef9614\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mgn:\u003c/strong\u003e  AWS Transform discovery tool now supported as network migration input source. You can now use the AWS Transform Discovery tool as a source for network migration alongside modelizeIT, enabling hybrid network migrations for environments running both VMware and non-VMware workloads. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/2cff08e654ea5a3b2d9f16800f25e83e596e1b5b\"\u003e2cff08e6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mediapackagev2:\u003c/strong\u003e  Adds support for DASH Audio Timeline Patternization. This enables your DASH manifests to templatize the repeating patterns that emerge in audio segment timelines. This compacts the total timeline length, utilizing the repeat notation, such that manifests don't grow indefinitely long. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5aad0234fa646eda7b921b07d6b3472f124771a4\"\u003e5aad0234\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-lambda/CHANGELOG.md\"\u003e@​aws-sdk/client-lambda's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1064.0...v3.1065.0\"\u003e3.1065.0\u003c/a\u003e (2026-06-09)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1063.0...v3.1064.0\"\u003e3.1064.0\u003c/a\u003e (2026-06-08)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1062.0...v3.1063.0\"\u003e3.1063.0\u003c/a\u003e (2026-06-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1061.0...v3.1062.0\"\u003e3.1062.0\u003c/a\u003e (2026-06-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/62daf07c545b1fbac5753c554e2c8298ae6b820f\"\u003e\u003ccode\u003e62daf07\u003c/code\u003e\u003c/a\u003e Publish v3.1065.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bac71756a62d28fb08dce3e219176b365118eae4\"\u003e\u003ccode\u003ebac7175\u003c/code\u003e\u003c/a\u003e Publish v3.1064.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e\u003ccode\u003e86792c5\u003c/code\u003e\u003c/a\u003e chore(scripts): update pkg json linting (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/8082\"\u003e#8082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/85dabf4ef0c81d9db5405c483b3bfbd2126075d4\"\u003e\u003ccode\u003e85dabf4\u003c/code\u003e\u003c/a\u003e Publish v3.1063.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9bd1a86b9bec0f69c58dcfdda481c9e1797dd73f\"\u003e\u003ccode\u003e9bd1a86\u003c/code\u003e\u003c/a\u003e chore: update author URL in package.json (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/8080\"\u003e#8080\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0dfa4ad150e0283cf787cd231600aeb7d75695f0\"\u003e\u003ccode\u003e0dfa4ad\u003c/code\u003e\u003c/a\u003e test(clients): add client error deserialization tests (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/8075\"\u003e#8075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/f5235bbaa2e234435fed935ae69df09b33149d0c\"\u003e\u003ccode\u003ef5235bb\u003c/code\u003e\u003c/a\u003e Publish v3.1062.0\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1065.0/clients/client-lambda\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/client-secrets-manager` from 3.1061.0 to 3.1065.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e@​aws-sdk/client-secrets-manager's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1065.0\u003c/h2\u003e\n\u003ch4\u003e3.1065.0(2026-06-09)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003elib-transfer-manager:\u003c/strong\u003e  sort scripts alphabetically (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8087\"\u003e#8087\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0441d8b754e75b86959a45240541d2665610885b\"\u003e0441d8b7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-06-09 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/935d71be412b58187acbaa20fbc3f8e1003f9a73\"\u003e935d71be\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-write:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/45148681a66afe8e7bbf6a3845eb86c1bf3c2d1a\"\u003e45148681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cloudwatch:\u003c/strong\u003e  This release adds the APIs (AssociateDatasetKmsKey, DisassociateDatasetKmsKey, GetDataset) to manage encryption at rest for OpenTelemetry metrics in CloudWatch using AWS KMS customer managed keys. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/67566cd62dec418034287e32dea4e2e88fc803e5\"\u003e67566cd6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-marketplace-commerce-analytics:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/0adb8bd9484bbf97b40554fa13dc26fa1a5b2001\"\u003e0adb8bd9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Adds support for the Amazon Bedrock account-level data retention APIs PutAccountDataRetention and GetAccountDataRetention. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9acf4f7fb1df00c72c671a372e8712de0c98c0c5\"\u003e9acf4f7f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-odb:\u003c/strong\u003e  Releases Autonomous Database Serverless APIs, autonomousDatabaseOciIntegrationIamRoles, linkedOciTenancyId, linkedOciCompartmentId, and subscriptionErrors fields in GetOciOnboardingStatus API response. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/fad7009ced5a19c5953633ad1530c58c8d874046\"\u003efad7009c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-timestream-query:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/878fc723bc8d77161255f8b3c12aa5cb14e9382f\"\u003e878fc723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-dynamodb-streams:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/eeaa78277d41ca386013742e00281928b97b26ae\"\u003eeeaa7827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added TagFieldSpecifications to CreateFlowLogs and DescribeFlowLogs APIs. Customers can now specify tag keys in their Flow Logs subscriptions to capture associated EC2 resource tag values in their logs, enabling tag-based visibility. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6a382a8a858c47a3304b80ac242882d2f1073f26\"\u003e6a382a8a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore:\u003c/strong\u003e  Add RetryableConflictException (HTTP 409) to InvokeAgentRuntimeCommand and GetAgentCard to prevent orphaned VMs during concurrent session access. The SDK automatically retries this exception with backoff. Enforcement is not yet active and will be enabled in a future service update. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a9c4a0dac49fd624896af7d0c38950f39328df63\"\u003ea9c4a0da\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-outposts:\u003c/strong\u003e  Added AWS Outposts APIs for self-service Outposts quoting and ordering. New operations include CreateQuote, GetQuote, UpdateQuote, DeleteQuote, ListQuotes, and ListOrderableInstanceTypes. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb1279eff5d814bc9795836dfc2b9d47f75bf6b5\"\u003ebb1279ef\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-iotsitewise:\u003c/strong\u003e  Adding new BDD representation of endpoint ruleset (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b9314d4a457e338d7975076f1b7923fea4febbdd\"\u003eb9314d4a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecredential-provider-sso:\u003c/strong\u003e  forward clientConfig to SSO token provider (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8089\"\u003e#8089\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4bacac32fc593bd47a48501504575cf15eaffaba\"\u003e4bacac32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecore:\u003c/strong\u003e  export legacy root symbols from submodules instead of relative paths (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8086\"\u003e#8086\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/abea090cb45feecf626d4abeffde999b774350a2\"\u003eabea090c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eTests\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-sdk-s3:\u003c/strong\u003e  use crypto.randomUUID for E2E test bucket names (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8088\"\u003e#8088\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ba4d1941fc941533bae5121efd5237d28dda012d\"\u003eba4d1941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1065.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1064.0\u003c/h2\u003e\n\u003ch4\u003e3.1064.0(2026-06-08)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003escripts:\u003c/strong\u003e  update pkg json linting (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/8082\"\u003e#8082\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e86792c5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient-cost-optimization-hub:\u003c/strong\u003e  Adds new Idle Recommendation types in the Cost Optimization Hub API (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/872710e9a6c5d5ad7fa808fe46748c90e179f4b7\"\u003e872710e9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  Added optional identityCenterRegion parameter to AssociateMember APIs to allow managing memberships for users and groups in other regions. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5f03ea0e77154cb43a3f6cce30d32f87f8fb47fb\"\u003e5f03ea0e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-devops-agent:\u003c/strong\u003e  Add Asset APIs for managing versioned assets and asset files in AWS DevOps Agent agent spaces. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bcef96141a9661948e0336835e2548ab007827f6\"\u003ebcef9614\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mgn:\u003c/strong\u003e  AWS Transform discovery tool now supported as network migration input source. You can now use the AWS Transform Discovery tool as a source for network migration alongside modelizeIT, enabling hybrid network migrations for environments running both VMware and non-VMware workloads. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/2cff08e654ea5a3b2d9f16800f25e83e596e1b5b\"\u003e2cff08e6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mediapackagev2:\u003c/strong\u003e  Adds support for DASH Audio Timeline Patternization. This enables your DASH manifests to templatize the repeating patterns that emerge in audio segment timelines. This compacts the total timeline length, utilizing the repeat notation, such that manifests don't grow indefinitely long. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5aad0234fa646eda7b921b07d6b3472f124771a4\"\u003e5aad0234\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-secrets-manager/CHANGELOG.md\"\u003e@​aws-sdk/client-secrets-manager's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1064.0...v3.1065.0\"\u003e3.1065.0\u003c/a\u003e (2026-06-09)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1063.0...v3.1064.0\"\u003e3.1064.0\u003c/a\u003e (2026-06-08)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1062.0...v3.1063.0\"\u003e3.1063.0\u003c/a\u003e (2026-06-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1061.0...v3.1062.0\"\u003e3.1062.0\u003c/a\u003e (2026-06-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/62daf07c545b1fbac5753c554e2c8298ae6b820f\"\u003e\u003ccode\u003e62daf07\u003c/code\u003e\u003c/a\u003e Publish v3.1065.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bac71756a62d28fb08dce3e219176b365118eae4\"\u003e\u003ccode\u003ebac7175\u003c/code\u003e\u003c/a\u003e Publish v3.1064.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e\u003ccode\u003e86792c5\u003c/code\u003e\u003c/a\u003e chore(scripts): update pkg json linting (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/8082\"\u003e#8082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/85dabf4ef0c81d9db5405c483b3bfbd2126075d4\"\u003e\u003ccode\u003e85dabf4\u003c/code\u003e\u003c/a\u003e Publish v3.1063.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9bd1a86b9bec0f69c58dcfdda481c9e1797dd73f\"\u003e\u003ccode\u003e9bd1a86\u003c/code\u003e\u003c/a\u003e chore: update author URL in package.json (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/8080\"\u003e#8080\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/f5235bbaa2e234435fed935ae69df09b33149d0c\"\u003e\u003ccode\u003ef5235bb\u003c/code\u003e\u003c/a\u003e Publish v3.1062.0\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1065.0/clients/client-secrets-manager\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/util-arn-parser` from 3.972.12 to 3.972.15\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/packages-internal/util-arn-parser/CHANGELOG.md\"\u003e@​aws-sdk/util-arn-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.972.15 (2026-06-09)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eutil-arn-parser:\u003c/strong\u003e update dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.14 (2026-06-08)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003escripts:\u003c/strong\u003e update pkg json linting (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/8082\"\u003e#8082\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/86792c5e3b9c0b697161a5a14ef119153d1c17f5\"\u003e86792c5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.13 (2026-06-05)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate author URL in package.json (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/8080\"\u003e#8080\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9bd1a86b9bec0f69c58dcfdda481c9e1797dd73f\"\u003e9bd1a86\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/HEAD/packages-internal/util-arn-parser\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@chakra-ui/theme-tools` from 2.2.9 to 2.2.10\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/chakra-ui/chakra-ui/commits/@chakra-ui/theme-tools@2.2.10/packages/components/theme-tools\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/common` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/common's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/common/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/1634915597884f677b823ec0d77931f1637dede7\"\u003e\u003ccode\u003e1634915\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for cli-colors utility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/380bf5c13c7f22d24b871af8a412852f36d7030a\"\u003e\u003ccode\u003e380bf5c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/common/issues/17058\"\u003e#17058\u003c/a\u003e from Se3do/test/extend-metadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/af4542b9c0f56262090bf0097444b71456cb0139\"\u003e\u003ccode\u003eaf4542b\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for assignCustomParameterMetadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/b67aea1505d568c6b80318707c2642ba395a5510\"\u003e\u003ccode\u003eb67aea1\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for extendArrayMetadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/e1e401444ba0c32a11ab5f82994f408be0b65eba\"\u003e\u003ccode\u003ee1e4014\u003c/code\u003e\u003c/a\u003e test(common): Tighten throw assertions in validateModuleKeys spec\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6b97771a58068e885f7adf3f888f1a660ac3a08f\"\u003e\u003ccode\u003e6b97771\u003c/code\u003e\u003c/a\u003e test(common): Add unit tests for validateModuleKeys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/5a57222c0aea9e36d2f8780bc8b5558039e659bd\"\u003e\u003ccode\u003e5a57222\u003c/code\u003e\u003c/a\u003e test(common): add unit test for Optional decorator\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/deed1b32ff9a71454dc106c776b12f7ac38f6046\"\u003e\u003ccode\u003edeed1b3\u003c/code\u003e\u003c/a\u003e docs(common): add \u003ca href=\"https://github.com/see\"\u003e\u003ccode\u003e@​see\u003c/code\u003e\u003c/a\u003e reference to Res alias JSDoc\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/core` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/core's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/core/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0f398fd86de387fce28669ddd7a4049d4054f9e5\"\u003e\u003ccode\u003e0f398fd\u003c/code\u003e\u003c/a\u003e test: fix broken unit test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/d152eec8ebba6a38eb448021a83018b43372192e\"\u003e\u003ccode\u003ed152eec\u003c/code\u003e\u003c/a\u003e fix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/core/issues/17098\"\u003e#17098\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/e2ad4e23f637bef1ce804ee6e93367a1d875b9e9\"\u003e\u003ccode\u003ee2ad4e2\u003c/code\u003e\u003c/a\u003e Update package.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/396cf81a9e5db8a33fad7adbe26c5e893b459bf0\"\u003e\u003ccode\u003e396cf81\u003c/code\u003e\u003c/a\u003e refactor(core): avoid duplicating sse intercept call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/55cd6991f7e68d64ba8be93236d2857a47229247\"\u003e\u003ccode\u003e55cd699\u003c/code\u003e\u003c/a\u003e fix(core): preserve deferred SSE handlers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/7b5ca835a6ea449476107595416c93cf775c5786\"\u003e\u003ccode\u003e7b5ca83\u003c/code\u003e\u003c/a\u003e fix(core): register SSE close listener before async setup\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/platform-express` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/platform-express's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/platform-express/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/platform-express\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.3.0 to 6.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e for argon2 memory limit (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1943\"\u003e#1943\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2014\"\u003e#2014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix RSA signing using SHA3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1952\"\u003e#1952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow creating signature notations when generating/reformatting keys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1953\"\u003e#1953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003e'node16'\u003c/code\u003e/\u003ccode\u003e'nodenext'\u003c/code\u003e compatibility, and emit type declarations for .ts files with external exports under \u003ccode\u003edist/types\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1987\"\u003e#1987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix AnyPacket declaration to also include \u003ccode\u003eBasePacket\u0026lt;true\u0026gt;\u003c/code\u003e subclasses (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1991\"\u003e#1991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-zero IV usages for AES-CFB (spec compliance issue; no security or interoperability impact) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ac0048404b74a3595d503125b53f3b3d0486bec\"\u003e\u003ccode\u003e2ac0048\u003c/code\u003e\u003c/a\u003e 6.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/3c6abc9a9b1ad33a02a96a6e420857f63ba387c9\"\u003e\u003ccode\u003e3c6abc9\u003c/code\u003e\u003c/a\u003e Argon2: set hard limit for \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e to cap memory at ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cba29041e089b18a44d32d0defa1ccf0414bb938\"\u003e\u003ccode\u003ecba2904\u003c/code\u003e\u003c/a\u003e Internal: fix \u003ccode\u003ereadExactSubarray\u003c/code\u003e to correctly enforce end boundary (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2013\"\u003e#2013\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/4318a48703d9bd606d3062a4e485ef14d08dfd4c\"\u003e\u003ccode\u003e4318a48\u003c/code\u003e\u003c/a\u003e Run npm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/dd9274e9e23ef3e25cb14df9e3b6ff4177758757\"\u003e\u003ccode\u003edd9274e\u003c/code\u003e\u003c/a\u003e Fix non-zero IV usages for AES-CFB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/0a67d5e9b056f7696c2c21a53981c8cbfd6a1cf9\"\u003e\u003ccode\u003e0a67d5e\u003c/code\u003e\u003c/a\u003e npm: add \u003ccode\u003emin-release-age\u003c/code\u003e constraint (for manual installs)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ba545d4015ca65e35b93c2d1facd310ce1e94fb\"\u003e\u003ccode\u003e2ba545d\u003c/code\u003e\u003c/a\u003e Bump the dev-dependencies group across 1 directory with 9 updates (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2011\"\u003e#2011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/657ac6495e3aa78f78bdfd18edad38a042fcb066\"\u003e\u003ccode\u003e657ac64\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-unicorn from 62.0.0 to 64.0.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1999\"\u003e#1999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/df8c044392042cd2a1fac50d74081aefbf598e51\"\u003e\u003ccode\u003edf8c044\u003c/code\u003e\u003c/a\u003e Bump fflate from 0.8.2 to 0.8.3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2007\"\u003e#2007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/38915311010a1984078a41f6df90e898751e3acb\"\u003e\u003ccode\u003e3891531\u003c/code\u003e\u003c/a\u003e Bump fast-xml-builder (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2003\"\u003e#2003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `react-hook-form` from 7.77.0 to 7.78.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/react-hook-form/react-hook-form/releases\"\u003ereact-hook-form's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 7.78.0\u003c/h2\u003e\n\u003cp\u003e🦷 update type dirtyFields typing for field arrays with undefined entries (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13492\"\u003e#13492\u003c/a\u003e)\n🐞 fix: recover Controller fields after reset without rerender (RN issue \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13455\"\u003e#13455\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13497\"\u003e#13497\u003c/a\u003e)\n🐞 fix useFormState().isDirty race with async resolver in onChange mode (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13495\"\u003e#13495\u003c/a\u003e)\n🐞 fix: use reactive values prop over defaultValues when shouldUnregister is true (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13485\"\u003e#13485\u003c/a\u003e)\n🐞 fix deepEqual for empty non-plain objects (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13493\"\u003e#13493\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003ethanks to \u003ca href=\"https://github.com/cyphercodes\"\u003e\u003ccode\u003e@​cyphercodes\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md\"\u003ereact-hook-form's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/23ab3a7b9f3c46af17d62bdedd0f9101684ebfa7\"\u003e\u003ccode\u003e23ab3a7\u003c/code\u003e\u003c/a\u003e 7.78.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/29fbd7dd35f0ee443c24dd442d7c87a48fd34918\"\u003e\u003ccode\u003e29fbd7d\u003c/code\u003e\u003c/a\u003e 🪭 close \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13506\"\u003e#13506\u003c/a\u003e add regression test for useFormState\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/b0005091e3c160af1cf505d8a8de5e0202f9794b\"\u003e\u003ccode\u003eb000509\u003c/code\u003e\u003c/a\u003e 📝 test: fix \u0026quot;allow to\u0026quot; grammar in test descriptions (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13504\"\u003e#13504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/76187c308a3266cd58401bb895a514149abec586\"\u003e\u003ccode\u003e76187c3\u003c/code\u003e\u003c/a\u003e 🧪 add unit test for regression render submit with useWatch \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13035\"\u003e#13035\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/16c35fbe83b4d24391fda375ac193c8aa0b47912\"\u003e\u003ccode\u003e16c35fb\u003c/code\u003e\u003c/a\u003e 🫡 add regression coverage for dynamic Controller names with keepDirtyValues/k...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/0bd39fa25cc20f69fc8fdb10241102016aaf20c0\"\u003e\u003ccode\u003e0bd39fa\u003c/code\u003e\u003c/a\u003e 🐞 fix: recover Controller fields after reset without rerender (RN issue \u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/1345\"\u003e#1345\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/6a501e04c533831d0e98a7315447fc995e509559\"\u003e\u003ccode\u003e6a501e0\u003c/code\u003e\u003c/a\u003e 🦷 update type dirtyFields typing for field arrays with undefined entries (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13\"\u003e#13\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/d681dc57a84fa037a4bfda5b4094bebc8f71cfed\"\u003e\u003ccode\u003ed681dc5\u003c/code\u003e\u003c/a\u003e 🐞 fix \u003ccode\u003euseFormState().isDirty\u003c/code\u003e race with async resolver in \u003ccode\u003eonChange\u003c/code\u003e mode (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/a9b8a6fb919c7ec9e0ea671b64712e1c39fc9f15\"\u003e\u003ccode\u003ea9b8a6f\u003c/code\u003e\u003c/a\u003e 🐞 fix: use reactive values prop over defaultValues when shouldUnregister is t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/react-hook-form/react-hook-form/commit/686da3f73d59ed94c7e112f82023aed9786fe0df\"\u003e\u003ccode\u003e686da3f\u003c/code\u003e\u003c/a\u003e 🐞 fix deepEqual for empty non-plain objects (\u003ca href=\"https://redirect.github.com/react-hook-form/react-hook-form/issues/13493\"\u003e#13493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/react-hook-form/react-hook-form/compare/v7.77.0...v7.78.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/testing` from 11.1.24 to 11.1.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e@​nestjs/testing's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.26\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(core): post sse endpoint empty response \u003ca href=\"https://github.com/nestjs/nest/tree/HEAD/packages/testing/issues/17098\"\u003e#17098\u003c/a\u003e by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17099\"\u003enestjs/nest#17099\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.25...v11.1.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.1.25\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(microservices): reject pending Redis requests on close by \u003ca href=\"https://github.com/yudin-s\"\u003e\u003ccode\u003e@​yudin-s\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17024\"\u003enestjs/nest#17024\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): register SSE close listener before async setup by \u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform-fastify): remove pathname ending slash by \u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17094\"\u003enestjs/nest#17094\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fallintoplace\"\u003e\u003ccode\u003e@​fallintoplace\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17018\"\u003enestjs/nest#17018\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DucMinhNe\"\u003e\u003ccode\u003e@​DucMinhNe\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17085\"\u003enestjs/nest#17085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iambeaukim\"\u003e\u003ccode\u003e@​iambeaukim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/17091\"\u003enestjs/nest#17091\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\"\u003ehttps://github.com/nestjs/nest/compare/v11.1.24...v11.1.25\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/9ff83d540f50e96eb0093b4eb0dd96191aa6a285\"\u003e\u003ccode\u003e9ff83d5\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.26 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/02f804159841a2771755c382832a7938b904c420\"\u003e\u003ccode\u003e02f8041\u003c/code\u003e\u003c/a\u003e chore(release): publish v11.1.25 release\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nestjs/nest/commits/v11.1.26/packages/testing\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@swc/core` from 1.15.40 to 1.15.41\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/swc-project/swc/blob/main/CHANGELOG.md\"\u003e@​swc/core's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.15.41] - 2026-06-09\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(bindings/node)\u003c/strong\u003e Preserve source context for AST transforms (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11920\"\u003e#11920\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/b6dfa74d9e518904f93a39ad05ab2e17e3229d2d\"\u003eb6dfa74\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/codegen)\u003c/strong\u003e Emit \u003ccode\u003eexport as namespace\u003c/code\u003e correctly (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11923\"\u003e#11923\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4e1f8326295932d77faa3d617a5b7cb8ba993a38\"\u003e4e1f832\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/codegen)\u003c/strong\u003e Emit \u003ccode\u003eexport as namespace\u003c/code\u003e minified correctly (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11924\"\u003e#11924\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/71574992dde5c4ef5de6a564ea096d48d739b6e2\"\u003e7157499\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/compat)\u003c/strong\u003e Rewrite this in destructuring defaults (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11909\"\u003e#11909\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/68af779eff35120407a7147b3b60700c54db243c\"\u003e68af779\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/decorators)\u003c/strong\u003e Delay 2022 decorator initializers after private fields (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11847\"\u003e#11847\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/3f1a4f59670f58533d6f7545b671704d0ef469de\"\u003e3f1a4f5\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/decorators)\u003c/strong\u003e Handle import types in decorator metadata (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11916\"\u003e#11916\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/f4114297983e1f62220f57caaa4e2138ab906f5d\"\u003ef411429\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/fixer)\u003c/strong\u003e Preserve new tagged template callee parens (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11922\"\u003e#11922\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/242a03a5fcd6542eab527dfdcb67590b0b477eba\"\u003e242a03a\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/minifier)\u003c/strong\u003e Handle unknown member props (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11927\"\u003e#11927\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/e59ba6890764a2f121c38df1a71d5f70e179b08d\"\u003ee59ba68\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/parser)\u003c/strong\u003e Handle Flow async generic arrows (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11926\"\u003e#11926\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/b9b8993391168e6b83e9f84b3c4c063cf4ccd4f7\"\u003eb9b8993\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(es/renamer)\u003c/strong\u003e Avoid duplicate mangled names across eval scope boundaries (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11913\"\u003e#11913\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4a1af846d2cc0039b3a0d6e997f8c1c131e22a2b\"\u003e4a1af84\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(plugin)\u003c/strong\u003e Avoid importing __free from env (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11908\"\u003e#11908\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4584296629bd87f7186a09b0ec37d5ab3dd3ff94\"\u003e4584296\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(swc)\u003c/strong\u003e Preserve plugin error context (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11904\"\u003e#11904\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/4e2e9fc3900475085e3f426e59e81d3a51fa34fa\"\u003e4e2e9fc\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e(swc_common)\u003c/strong\u003e Fix sourcemap panic for multibyte mapping positions (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11918\"\u003e#11918\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/40c16011bc5487732483164886d8031f3f03cf79\"\u003e40c1601\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix architecture fixer link (\u003ca href=\"https://redirect.github.com/swc-project/swc/issues/11911\"\u003e#11911\u003c/a\u003e) (\u003ca href=\"https://github.com/swc-project/swc/commit/51cbc8c8d24021c59895c7787aa800d4a5fb4110\"\u003e51cbc8c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/swc-project/swc/commit/7a72340b21d080cc61e109296ff083bb2cfc91d5\"\u003e\u003ccode\u003e7a72340\u003c/code\u003e\u003c/a\u003e chore: Publish \u003ccode\u003e1.15.41\u003c/code\u003e with \u003ccode\u003eswc_core\u003c/code\u003e \u003ccode\u003ev68.0.6\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/swc-project/swc/commit/82ae083b7fbfd623d1c665feca556cfa710f68ce\"\u003e\u003ccode\u003e82ae083\u003c/code\u003e\u003c/a\u003e chore: Publish \u003ccode\u003e1.15.41-nightly-20260609.1\u003c/code\u003e with \u003ccode\u003eswc_core\u003c/code\u003e \u003ccode\u003ev68.0.6\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/swc-project/swc/commit/b6dfa74d9e518904f93a39ad05ab2e17e3229d2d\"\u003e\u003ccode\u003eb6dfa74\u003c/code\u003e\u003c/a\u003e fix(bindings/node): Preserve source context for AST transforms (\u003ca href=\"https://github.com/swc-project/swc/tree/HEAD/packages/core/issues/11920\"\u003e#11920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/swc-project/swc/commits/v1.15.41/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/react` from 19.2.16 to 19.2.17\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@typescript-eslint/eslint-plugin` from 8.60.1 to 8.61.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003e@​typescript-eslint/eslint-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.61.0\u003c/h2\u003e\n\u003ch2\u003e8.61.0 (2026-06-08)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003east-spec:\u003c/strong\u003e change type of \u003ccode\u003eUnaryExpression.prefix\u003c/code\u003e to always \u003ccode\u003etrue\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12372\"\u003e#12372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003east-spec:\u003c/strong\u003e tighten types of \u003ccode\u003eArrowFunction\u003c/code\u003e, \u003ccode\u003eYieldExpression\u003c/code\u003e, \u003ccode\u003eTSTypePredicate\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12373\"\u003e#12373\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erule-schema-to-typescript-types:\u003c/strong\u003e respect ECMAScript line terminators (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12374\"\u003e#12374\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.61.0\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md\"\u003e@​typescript-eslint/eslint-plugin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.61.0 (2026-06-08)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003east-spec:\u003c/strong\u003e change type of \u003ccode\u003eUnaryExpression.prefix\u003c/code\u003e to always \u003ccode\u003etrue\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12372\"\u003e#12372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.61.0\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/16a5b247affc32af21b695cf96dfd75d7ded50a3\"\u003e\u003ccode\u003e16a5b24\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.61.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ef1fd28c68b10da2e5b56823da8491f10f2c2b97\"\u003e\u003ccode\u003eef1fd28\u003c/code\u003e\u003c/a\u003e feat(ast-spec): change type of \u003ccode\u003eUnaryExpression.prefix\u003c/code\u003e to always \u003ccode\u003etrue\u003c/code\u003e (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12\"\u003e#12\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.61.0/packages/eslint-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cypress` from 15.16.0 to 15.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cypress-io/cypress/releases\"\u003ecypress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev15.17.0\u003c/h2\u003e\n\u003cp\u003eChangelog: \u003ca href=\"https://docs.cypress.io/app/references/changelog#15-17-0\"\u003ehttps://docs.cypress.io/app/references/changelog#15-17-0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/b22780a9bb118b86730e22243aba16e25e7a5bed\"\u003e\u003ccode\u003eb22780a\u003c/code\u003e\u003c/a\u003e chore: Update Chrome (stable) to 149.0.7827.102 and Chrome for Testing (stabl...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/ada42a7c2f69f19877c089327724d24478219fb3\"\u003e\u003ccode\u003eada42a7\u003c/code\u003e\u003c/a\u003e chore: send standard identity headers on cy-prompt/studio session requests (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/6017154185cd8fbffbae90fde90cea7c78108730\"\u003e\u003ccode\u003e6017154\u003c/code\u003e\u003c/a\u003e perf(server): release pending automation requests after response (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34037\"\u003e#34037\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/6be559a1bd4375beb2918a94c26cf7cc5f30d1a8\"\u003e\u003ccode\u003e6be559a\u003c/code\u003e\u003c/a\u003e chore: don't redeclare inherited observable Session.name (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34034\"\u003e#34034\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/437a08e149563695b1eb5d91c0c3aaf50712ee14\"\u003e\u003ccode\u003e437a08e\u003c/code\u003e\u003c/a\u003e chore: update need help link for auto provision project slug error modal (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34\"\u003e#34\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/04dd2965f1bf70c06e8b6d380cacaed0860e3667\"\u003e\u003ccode\u003e04dd296\u003c/code\u003e\u003c/a\u003e refactor(proxy): request/response interception adapters and wire middleware (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/482cd419704a381b9a56778f6431da7b4c1d5a9e\"\u003e\u003ccode\u003e482cd41\u003c/code\u003e\u003c/a\u003e chore: reporter support for test replay embedding (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34031\"\u003e#34031\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/f3de1b27f194a3d3dc5ad87bce2852e5b253a016\"\u003e\u003ccode\u003ef3de1b2\u003c/code\u003e\u003c/a\u003e chore: reorder changelog entries for release by popularity of issue (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34032\"\u003e#34032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/b60b68f9b83b5f93c49b88c6ca74505f535476f8\"\u003e\u003ccode\u003eb60b68f\u003c/code\u003e\u003c/a\u003e misc: warn when a --spec pattern matches no spec files (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34023\"\u003e#34023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cypress-io/cypress/commit/e0fe6e097f9414175c25cfd6f7264cad497a1526\"\u003e\u003ccode\u003ee0fe6e0\u003c/code\u003e\u003c/a\u003e perf: Fix Command Log performance regression on hover (\u003ca href=\"https://redirect.github.com/cypress-io/cypress/issues/34029\"\u003e#34029\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cypress-io/cypress/compare/v15.16.0...v15.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `eslint-plugin-storybook` from 10.4.2 to 10.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/storybookjs/storybook/releases\"\u003eeslint-plugin-storybook's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.4.3\u003c/h2\u003e\n\u003ch2\u003e10.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddon Docs: Fix Primary and Controls blocks not rendering in custom MDX pages - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34496\"\u003e#34496\u003c/a\u003e, thanks \u003ca href=\"https://github.com/NYCU-Chung\"\u003e\u003ccode\u003e@​NYCU-Chung\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eCore: Respect !dev tag on MDX docs in sidebar - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35031\"\u003e#35031\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JReinhold\"\u003e\u003ccode\u003e@​JReinhold\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eReact: Add support for resolving subcomponents attached as properties of a parent component - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34967\"\u003e#34967\u003c/a\u003e, thanks \u003ca href=\"https://github.com/yatishgoel\"\u003e\u003ccode\u003e@​yatishgoel\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eUI: Prevent docs page scroll reset on HMR re-render - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35021\"\u003e#35021\u003c/a\u003e, thanks \u003ca href=\"https://github.com/LongTangGithub\"\u003e\u003ccode\u003e@​LongTangGithub\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md\"\u003eeslint-plugin-storybook's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e10.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddon Docs: Fix Primary and Controls blocks not rendering in custom MDX pages - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34496\"\u003e#34496\u003c/a\u003e, thanks \u003ca href=\"https://github.com/NYCU-Chung\"\u003e\u003ccode\u003e@​NYCU-Chung\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eCore: Respect !dev tag on MDX docs in sidebar - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35031\"\u003e#35031\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JReinhold\"\u003e\u003ccode\u003e@​JReinhold\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eReact: Add support for resolving subcomponents attached as properties of a parent component - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/34967\"\u003e#34967\u003c/a\u003e, thanks \u003ca href=\"https://github.com/yatishgoel\"\u003e\u003ccode\u003e@​yatishgoel\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eUI: Prevent docs page scroll reset on HMR re-render - \u003ca href=\"https://redirect.github.com/storybookjs/storybook/pull/35021\"\u003e#35021\u003c/a\u003e, thanks \u003ca href=\"https://github.com/LongTangGithub\"\u003e\u003ccode\u003e@​LongTangGithub\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/storybookjs/storybook/commit/624e6187fd462e56719cbd80c1b4bfb67b68fc89\"\u003e\u003ccode\u003e624e618\u003c/code\u003e\u003c/a\u003e Bump version from \u0026quot;10.4.2\u0026quot; to \u0026quot;10.4.3\u0026quot; [skip ci]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/storybookjs/storybook/commits/v10.4.3/code/lib/eslint-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `prettier` from 3.8.3 to 3.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/releases\"\u003eprettier's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.8.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMarkdown: Fix blank lines between list items and nested sub-lists being removed in Markdown/MDX (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/17746\"\u003eprettier/prettier#17746\u003c/a\u003e by \u003ca href=\"https://github.com/byplayer\"\u003e\u003ccode\u003e@​byplayer\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🔗 \u003ca href=\"https://github.com/prettier/prettier/blob/3.8.4/CHANGELOG.md#384\"\u003eChangelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md\"\u003eprettier's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.8.4\u003c/h1\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/prettier/prettier/compare/3.8.3...3.8.4\"\u003ediff\u003c/a\u003e\u003c/p\u003e\n\u003ch4\u003eMarkdown: Fix blank lines between list items and nested sub-lists being removed in Markdown/MDX (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/17746\"\u003e#17746\u003c/a\u003e by \u003ca href=\"https://github.com/byplayer\"\u003e\u003ccode\u003e@​byplayer\u003c/code\u003e\u003c/a\u003e)\u003c/h4\u003e\n\u003cp\u003ePrettier was removing blank lines between list items and their nested sub-lists, converting loose lists into tight lists and changing their semantic meaning.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre lang=\"markdown\"\u003e\u003ccode\u003e\u0026lt;!-- Input --\u0026gt;\n- a\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eb\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ec\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u0026lt;!-- Prettier 3.8.3 --\u0026gt;\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ea\n\u003cul\u003e\n\u003cli\u003eb\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003ec\n\u003cul\u003e\n\u003cli\u003ed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u0026lt;!-- Prettier 3.8.4 --\u0026gt;\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ea\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eb\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ec\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ed\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/1c6ba5539141552e0e8e22d401ea620d8fdff468\"\u003e\u003ccode\u003e1c6ba55\u003c/code\u003e\u003c/a\u003e Release 3.8.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/4a673dc9b59ddf7296bbab9822093d2971da84a8\"\u003e\u003ccode\u003e4a673dc\u003c/code\u003e\u003c/a\u003e Fix blank lines between list items and nested sub-lists being removed in Mark...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/074aaedbb052a288e89d15eb0a4214de37a08866\"\u003e\u003ccode\u003e074aaed\u003c/code\u003e\u003c/a\u003e Replace \u003ccode\u003emain\u003c/code\u003e branch in changelog link with tags (\u003ca href=\"https://redirect.github.com/prettier/prettier/issues/19054\"\u003e#19054\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/c22a003ae97917c5043e8685b4fdff0f93e978f9\"\u003e\u003ccode\u003ec22a003\u003c/code\u003e\u003c/a\u003e Bump Prettier dependency to 3.8.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/prettier/prettier/commit/07bad1f04536e9799927007baf466e67151576f0\"\u003e\u003ccode\u003e07bad1f\u003c/code\u003e\u003c/a\u003e Clean changelog_unreleased\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/prettier/prettier/compare/3.8.3...3.8.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `semantic-release` from 25.0.3 to 25.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/semantic-release/semantic-release/releases\"\u003esemantic-release's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev25.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/compare/v25.0.4...v25.0.5\"\u003e25.0.5\u003c/a\u003e (2026-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erevert:\u003c/strong\u003e next (\u003ca href=\"https://redirect.github.com/semantic-release/semantic-release/issues/4200\"\u003e#4200\u003c/a\u003e) (\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/db8ffaad90139532f30c0fcd955cf52ffdc1a267\"\u003edb8ffaa\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/compare/v25.0.3...v25.0.4\"\u003e25.0.4\u003c/a\u003e (2026-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecode-quality:\u003c/strong\u003e add missing comma in context object for consistency (\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/493d6cdaa1ed697427acea596d0d25eb53b462a2\"\u003e493d6cd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/db8ffaad90139532f30c0fcd955cf52ffdc1a267\"\u003e\u003ccode\u003edb8ffaa\u003c/code\u003e\u003c/a\u003e fix(revert): next (\u003ca href=\"https://redirect.github.com/semantic-release/semantic-release/issues/4200\"\u003e#4200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/4e476dee14bb9ee4c20aebd51970efc827769e68\"\u003e\u003ccode\u003e4e476de\u003c/code\u003e\u003c/a\u003e docs: update README to include information about the new core engine integration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/493d6cdaa1ed697427acea596d0d25eb53b462a2\"\u003e\u003ccode\u003e493d6cd\u003c/code\u003e\u003c/a\u003e fix(code-quality): add missing comma in context object for consistency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/d05e160668e8d31c534864cc00075a16fd683eeb\"\u003e\u003ccode\u003ed05e160\u003c/code\u003e\u003c/a\u003e refactor: replace direct logger and env-ci replacements with a mockCore funct...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/semantic-release/semantic-release/commit/4f464a72ae102fd1f4ffc2633fbb04ed0b220054\"\u003e\u003ccode\u003e4f464a7\u003c/code\u003e\u003c/a\u003e test: add tests for core delegation and dry-run policy hand...\n\n_Description has been truncated_","html_url":"https://github.com/Ed-Fi-Alliance-OSS/Ed-Fi-AdminApp/pull/210","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ed-Fi-Alliance-OSS%2FEd-Fi-AdminApp/issues/210","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/210/packages"}},{"old_version":"6.3.0","new_version":"6.3.1","update_type":"patch","path":null,"pr_created_at":"2026-06-08T17:44:24.000Z","version_change":"6.3.0 → 6.3.1","issue":{"uuid":"4615234604","node_id":"PR_kwDORHVKbc7kBhxb","number":86,"state":"closed","title":"deps: bump the production-deps group across 1 directory with 26 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-14T00:08:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-08T17:44:24.000Z","updated_at":"2026-06-14T00:08:59.000Z","time_to_close":455073,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"production-deps","update_count":26,"packages":[{"name":"@passwordless-id/webauthn","old_version":"2.3.5","new_version":"2.4.0","repository_url":"https://github.com/passwordless-id/webauthn"},{"name":"@tauri-apps/api","old_version":"2.10.1","new_version":"2.11.0","repository_url":"https://github.com/tauri-apps/tauri"},{"name":"@tauri-apps/plugin-deep-link","old_version":"2.4.8","new_version":"2.4.9","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-dialog","old_version":"2.7.0","new_version":"2.7.1","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-fs","old_version":"2.5.0","new_version":"2.5.1","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-global-shortcut","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"@tauri-apps/plugin-opener","old_version":"2.5.3","new_version":"2.5.4","repository_url":"https://github.com/tauri-apps/plugins-workspace"},{"name":"bits-ui","old_version":"2.18.0","new_version":"2.18.1","repository_url":"https://github.com/huntabyte/bits-ui"},{"name":"dexie","old_version":"4.4.2","new_version":"4.4.3","repository_url":"https://github.com/dexie/Dexie.js"},{"name":"dompurify","old_version":"3.4.2","new_version":"3.4.8","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"openpgp","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"preact","old_version":"10.29.1","new_version":"10.29.2","repository_url":"https://github.com/preactjs/preact"},{"name":"svelte","old_version":"5.55.1","new_version":"5.56.3","repository_url":"https://github.com/sveltejs/svelte"},{"name":"tailwind-merge","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/dcastil/tailwind-merge"},{"name":"@internationalized/date","old_version":"3.12.1","new_version":"3.12.2","repository_url":"https://github.com/adobe/react-spectrum"},{"name":"@playwright/test","old_version":"1.59.1","new_version":"1.60.0","repository_url":"https://github.com/microsoft/playwright"},{"name":"@tailwindcss/postcss","old_version":"4.2.4","new_version":"4.3.0","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tauri-apps/cli","old_version":"2.10.1","new_version":"2.11.2","repository_url":"https://github.com/tauri-apps/tauri"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.59.1","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"8.59.1","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"postcss","old_version":"8.5.13","new_version":"8.5.15","repository_url":"https://github.com/postcss/postcss"},{"name":"svelte-check","old_version":"4.4.7","new_version":"4.6.0","repository_url":"https://github.com/sveltejs/language-tools"},{"name":"svelte-eslint-parser","old_version":"1.6.0","new_version":"1.8.0","repository_url":"https://github.com/sveltejs/svelte-eslint-parser"},{"name":"tailwindcss","old_version":"4.2.4","new_version":"4.3.0","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"typescript-eslint","old_version":"8.59.1","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"workbox-cli","old_version":"7.4.0","new_version":"7.4.1","repository_url":"https://github.com/googlechrome/workbox"}],"path":null,"ecosystem":"npm"},"body":"Bumps the production-deps group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@passwordless-id/webauthn](https://github.com/passwordless-id/webauthn) | `2.3.5` | `2.4.0` |\n| [@tauri-apps/api](https://github.com/tauri-apps/tauri) | `2.10.1` | `2.11.0` |\n| [@tauri-apps/plugin-deep-link](https://github.com/tauri-apps/plugins-workspace) | `2.4.8` | `2.4.9` |\n| [@tauri-apps/plugin-dialog](https://github.com/tauri-apps/plugins-workspace) | `2.7.0` | `2.7.1` |\n| [@tauri-apps/plugin-fs](https://github.com/tauri-apps/plugins-workspace) | `2.5.0` | `2.5.1` |\n| [@tauri-apps/plugin-global-shortcut](https://github.com/tauri-apps/plugins-workspace) | `2.3.1` | `2.3.2` |\n| [@tauri-apps/plugin-opener](https://github.com/tauri-apps/plugins-workspace) | `2.5.3` | `2.5.4` |\n| [bits-ui](https://github.com/huntabyte/bits-ui) | `2.18.0` | `2.18.1` |\n| [dexie](https://github.com/dexie/Dexie.js) | `4.4.2` | `4.4.3` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.4.2` | `3.4.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.3.0` | `6.3.1` |\n| [preact](https://github.com/preactjs/preact) | `10.29.1` | `10.29.2` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `5.55.1` | `5.56.3` |\n| [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.5.0` | `3.6.0` |\n| [@internationalized/date](https://github.com/adobe/react-spectrum) | `3.12.1` | `3.12.2` |\n| [@playwright/test](https://github.com/microsoft/playwright) | `1.59.1` | `1.60.0` |\n| [@tailwindcss/postcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-postcss) | `4.2.4` | `4.3.0` |\n| [@tauri-apps/cli](https://github.com/tauri-apps/tauri) | `2.10.1` | `2.11.2` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.59.1` | `8.60.1` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.59.1` | `8.60.1` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.13` | `8.5.15` |\n| [svelte-check](https://github.com/sveltejs/language-tools) | `4.4.7` | `4.6.0` |\n| [svelte-eslint-parser](https://github.com/sveltejs/svelte-eslint-parser) | `1.6.0` | `1.8.0` |\n| [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.2.4` | `4.3.0` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.59.1` | `8.60.1` |\n| [workbox-cli](https://github.com/googlechrome/workbox) | `7.4.0` | `7.4.1` |\n\n\nUpdates `@passwordless-id/webauthn` from 2.3.5 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/passwordless-id/webauthn/releases\"\u003e@​passwordless-id/webauthn's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.4.0\u003c/h2\u003e\n\u003cp\u003eIMPORTANT NOTE: In this version the \u003ccode\u003ebrowser\u003c/code\u003e field was removed in \u003ccode\u003epackage.json\u003c/code\u003e due to issues how various tooling interpret it. Check out \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/108\"\u003e#108\u003c/a\u003e for more details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/bd0718956aa7a30cd02b4264d59030be3f3e0bb6\"\u003e\u003ccode\u003ebd07189\u003c/code\u003e\u003c/a\u003e Removed \u0026quot;browser\u0026quot; field and updated authenticator devices metadata/icons\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/40e3c218a420c1871ac054667a919b561a91cdd1\"\u003e\u003ccode\u003e40e3c21\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/112\"\u003e#112\u003c/a\u003e from passwordless-id/dependabot/npm_and_yarn/npm_and_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/3926a2fb53b7d57164127318668f14ae2a6a1447\"\u003e\u003ccode\u003e3926a2f\u003c/code\u003e\u003c/a\u003e chore(deps): bump the npm_and_yarn group across 1 directory with 4 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/ec427194f17b1582f878c00706682f949c79b79b\"\u003e\u003ccode\u003eec42719\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/110\"\u003e#110\u003c/a\u003e from passwordless-id/dependabot/npm_and_yarn/npm_and_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/3b514d8f18186bf935ec7044776aaaee3640f93a\"\u003e\u003ccode\u003e3b514d8\u003c/code\u003e\u003c/a\u003e chore(deps): bump minimatch in the npm_and_yarn group across 1 directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/efd757ad5bd39ca34bebaa4389a1443e2ac17d63\"\u003e\u003ccode\u003eefd757a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/passwordless-id/webauthn/issues/109\"\u003e#109\u003c/a\u003e from passwordless-id/dependabot/npm_and_yarn/npm_and_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/passwordless-id/webauthn/commit/3fcfbce8b19dce14345f5c5e83bc9c95e967ccce\"\u003e\u003ccode\u003e3fcfbce\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump qs in the npm_and_yarn group across 1 directory\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/passwordless-id/webauthn/compare/2.3.5...2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/api` from 2.10.1 to 2.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/tauri/releases\"\u003e@​tauri-apps/api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tauri-apps/api\u003c/code\u003e v2.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003eNo known vulnerabilities found\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e[2.11.0]\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/074299c08dd99d2e1c57796f55ab24bc1d3976cc\"\u003e\u003ccode\u003e074299c08\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/14307\"\u003e#14307\u003c/a\u003e) Add Bring All to Front predefined menu item type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/a12142a481f7a19b69e88ee36a438b1db71b36f5\"\u003e\u003ccode\u003ea12142a48\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/14357\"\u003e#14357\u003c/a\u003e) Add macos support for setting the icon and icon template state in the same step of the main thread, to prevent flickering.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/001c8fe3d288802de9a8c29cfd2f46f9220d97c5\"\u003e\u003ccode\u003e001c8fe3d\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/14722\"\u003e#14722\u003c/a\u003e) Add a WebView option to control browser-level general autofill behavior. This option does not disable password or credit card autofill. On Windows (WebView2), setting it to true disables the general autofill \u0026quot;Suggestions\u0026quot; UI, which may appear even when \u003ccode\u003eautocomplete=\u0026quot;off\u0026quot;\u003c/code\u003e is specified on input elements. On Linux, macOS, iOS, and Android, this option is currently unsupported and performs no operation.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.github.com/tauri-apps/tauri/commit/eb0312ea9e493954298ac0b3fdaae7eafb52750e\"\u003e\u003ccode\u003eeb0312ea9\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/pull/15199\"\u003e#15199\u003c/a\u003e) Propagates the \u003ccode\u003eEvent::Suspended\u003c/code\u003e and \u003ccode\u003eEvent::Resumed\u003c/code\u003e events from \u003ccode\u003etao\u003c/code\u003e when they are emitted on mobile targets.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e\u0026gt; @tauri-apps/api@2.11.0 npm-publish /home/runner/work/tauri/tauri/packages/api\n\u0026gt; pnpm build \u0026amp;\u0026amp; cd ./dist \u0026amp;\u0026amp; pnpm publish --access public --loglevel silly --no-git-checks\n\u003cp\u003e\u0026gt; \u003ccode\u003e@​tauri-apps/api\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.11.0 build /home/runner/work/tauri/tauri/packages/api\n\u0026gt; rollup -c --configPlugin typescript\u003c/p\u003e\n\u003cp\u003e\u001b[36m\n\u001b[1m./src/app.ts, ./src/core.ts, ./src/dpi.ts, ./src/event.ts, ./src/image.ts, ./src/index.ts, ./src/menu.ts, ./src/mocks.ts, ./src/path.ts, ./src/tray.ts, ./src/webview.ts, ./src/webviewWindow.ts, ./src/window.ts\u001b[22m → \u001b[1m./dist, ./dist\u001b[22m...\u001b[39m\n\u001b[32mcreated \u001b[1m./dist, ./dist\u001b[22m in \u001b[1m1s\u001b[22m\u001b[39m\n\u001b[36m\n\u001b[1msrc/index.ts\u001b[22m → \u001b[1m../../crates/tauri/scripts/bundle.global.js\u001b[22m...\u001b[39m\n\u001b[32mcreated \u001b[1m../../crates/tauri/scripts/bundle.global.js\u001b[22m in \u001b[1m1.6s\u001b[22m\u001b[39m\nnpm verbose cli /opt/hostedtoolcache/node/24.14.1/x64/bin/node /opt/hostedtoolcache/node/24.14.1/x64/bin/npm\nnpm info using npm@11.11.0\nnpm info using node@v24.14.1\nnpm silly config load:file:/opt/hostedtoolcache/node/24.14.1/x64/lib/node_modules/npm/npmrc\nnpm silly config load:file:/tmp/62753b73fd2498862aee9b07ed29cc21/.npmrc\nnpm silly config load:file:/home/runner/.npmrc\nnpm silly config load:file:/home/runner/.config/pnpm/rc\nnpm verbose title npm publish tauri-apps-api-2.11.0.tgz\nnpm verbose argv \u0026quot;publish\u0026quot; \u0026quot;--ignore-scripts\u0026quot; \u0026quot;tauri-apps-api-2.11.0.tgz\u0026quot; \u0026quot;--access\u0026quot; \u0026quot;public\u0026quot; \u0026quot;--loglevel\u0026quot; \u0026quot;silly\u0026quot;\nnpm verbose logfile logs-max:10 dir:/home/runner/.npm/_logs/2026-04-30T15_51_13_171Z-\nnpm verbose logfile /home/runner/.npm/_logs/2026-04-30T15_51_13_171Z-debug-0.log\nnpm warn Unknown env config \u0026quot;verify-deps-before-run\u0026quot;. This will stop working in the next major version of npm. See \u003ccode\u003enpm help npmrc\u003c/code\u003e for supported config options.\nnpm warn Unknown env config \u0026quot;npm-globalconfig\u0026quot;. This will stop working in the next major version of npm. See \u003ccode\u003enpm help npmrc\u003c/code\u003e for supported config options.\nnpm warn Unknown env config \u0026quot;_jsr-registry\u0026quot;. This will stop working in the next major version of npm. See \u003ccode\u003enpm help npmrc\u003c/code\u003e for supported config options.\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/e60834fc67d87c10e2f44b2568052295cb61c325\"\u003e\u003ccode\u003ee60834f\u003c/code\u003e\u003c/a\u003e Apply Version Updates From Current Changes (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/15041\"\u003e#15041\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/df05c00563a91fc936bd15c6b10dd2825472f96b\"\u003e\u003ccode\u003edf05c00\u003c/code\u003e\u003c/a\u003e chore: minor bump for codegen crate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/13bea1777fed60c75e37fe67d7ded5dde0b2997d\"\u003e\u003ccode\u003e13bea17\u003c/code\u003e\u003c/a\u003e chore: fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/9808236ebf7755d498d674b614f3fc75eeac1ec4\"\u003e\u003ccode\u003e9808236\u003c/code\u003e\u003c/a\u003e fix(macOS): correct value for work_area.position.y (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14655\"\u003e#14655\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/eb0312ea9e493954298ac0b3fdaae7eafb52750e\"\u003e\u003ccode\u003eeb0312e\u003c/code\u003e\u003c/a\u003e feat(mobile): Propagate tao::Event::Suspended and tao::Event::Resumed to the ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/4ef5797f0fb27fa2df3f39f4a54e48ef319560ec\"\u003e\u003ccode\u003e4ef5797\u003c/code\u003e\u003c/a\u003e feat(ios): add --no-sign and --archive-only flags to ios build (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/15061\"\u003e#15061\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/110336c88a8c0a04476619db0a5c8f7694d969a5\"\u003e\u003ccode\u003e110336c\u003c/code\u003e\u003c/a\u003e fix(macOS): fix incorrect window position on multi-monitor setups (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/15250\"\u003e#15250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/c00a3dbffccd6e051d3b7332f706b6c63759865d\"\u003e\u003ccode\u003ec00a3db\u003c/code\u003e\u003c/a\u003e feat(macros): add support for rename command macro in tauri-macros \u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14173\"\u003e#14173\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/764b9139a32de149d8a914a6b5ec6cd1937c64eb\"\u003e\u003ccode\u003e764b913\u003c/code\u003e\u003c/a\u003e feat(cli): restart Android emulator if it is disconnected from adb (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14313\"\u003e#14313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/tauri/commit/1035f12eeb8b23d9780881606d442d11c786e39e\"\u003e\u003ccode\u003e1035f12\u003c/code\u003e\u003c/a\u003e fix(windows): tauri-bundler detect arm system (\u003ca href=\"https://redirect.github.com/tauri-apps/tauri/issues/14923\"\u003e#14923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/tauri/compare/@tauri-apps/api-v2.10.1...@tauri-apps/api-v2.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-deep-link` from 2.4.8 to 2.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-deep-link's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003edeep-link-js v2.4.9\u003c/h2\u003e\n\u003ch2\u003e[2.4.9]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e6cdc9f52e2cd975b11b8e4c12879d597f1f76c3\"\u003e\u003ccode\u003ee6cdc9f5\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3396\"\u003e#3396\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix broken iOS custom URL schemes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-deep-link@2.4.9\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 6.2kB README.md\nnpm notice 3.5kB dist-js/index.cjs\nnpm notice 2.9kB dist-js/index.d.ts\nnpm notice 3.4kB dist-js/index.js\nnpm notice 801B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-deep-link\nnpm notice version: 2.4.9\nnpm notice filename: tauri-apps-plugin-deep-link-2.4.9.tgz\nnpm notice package size: 4.4 kB\nnpm notice unpacked size: 17.7 kB\nnpm notice shasum: ae56d59130380f806b533b3107c3f16654e66a8d\nnpm notice integrity: sha512-u0SKOUHnJ1wqe[...]hIvqLBRpgHJlA==\nnpm notice total files: 6\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011657\n+ @tauri-apps/plugin-deep-link@2.4.9\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003edeep-link v2.4.9\u003c/h2\u003e\n\u003ch2\u003e[2.4.9]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e6cdc9f52e2cd975b11b8e4c12879d597f1f76c3\"\u003e\u003ccode\u003ee6cdc9f5\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3396\"\u003e#3396\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix broken iOS custom URL schemes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/5c7668b6bb7c9a509f394d584568b3a922161e50\"\u003e\u003ccode\u003e5c7668b\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3397\"\u003e#3397\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec05401\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate toml to v1 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3323\"\u003e#3323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b86e999beb9fb48ef54adf3d0af631f94c06a5d0\"\u003e\u003ccode\u003eb86e999\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri packages to 2.11 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3407\"\u003e#3407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c463d8ab1422a4cf44f627a7b4e6ba9d3553f334\"\u003e\u003ccode\u003ec463d8a\u003c/code\u003e\u003c/a\u003e chore(deps): update rustls-webpki in lockfile, ignore core2 in audit (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3405\"\u003e#3405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/1bb7beb3076a8bf76b084223d0e4225bb2e53bc9\"\u003e\u003ccode\u003e1bb7beb\u003c/code\u003e\u003c/a\u003e chore(deps): bump openssl (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3402\"\u003e#3402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/3412fa2741b3b6e7a251e3548a43b21f2c26c635\"\u003e\u003ccode\u003e3412fa2\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (opener supports mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/af81fdac9881d4ed52fbc18b9511bf10f7540ebb\"\u003e\u003ccode\u003eaf81fda\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (mobile is supported)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b\u003c/code\u003e\u003c/a\u003e fix(opener): allow open network share locations (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3343\"\u003e#3343\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/250857b7b72cd59825a14caa046160dc2ba1bb12\"\u003e\u003ccode\u003e250857b\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency typescript to v6 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3363\"\u003e#3363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/964e13f124ad1feeb93c10168b265dc4936f738c\"\u003e\u003ccode\u003e964e13f\u003c/code\u003e\u003c/a\u003e fix(store): dead lock trying to set while exiting (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3395\"\u003e#3395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/deep-link-v2.4.8...deep-link-v2.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-dialog` from 2.7.0 to 2.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-dialog's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003edialog-js v2.7.1\u003c/h2\u003e\n\u003ch2\u003e[2.7.1]\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to \u003ccode\u003efs-js@2.5.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-dialog@2.7.1\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 3.5kB README.md\nnpm notice 6.9kB dist-js/index.cjs\nnpm notice 14.6kB dist-js/index.d.ts\nnpm notice 6.8kB dist-js/index.js\nnpm notice 11B dist-js/init.d.ts\nnpm notice 657B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-dialog\nnpm notice version: 2.7.1\nnpm notice filename: tauri-apps-plugin-dialog-2.7.1.tgz\nnpm notice package size: 6.7 kB\nnpm notice unpacked size: 33.3 kB\nnpm notice shasum: fc83387de807c8d064d2b64b1b813b84e8286a12\nnpm notice integrity: sha512-OK1UBXYt+ojcm[...]FmEOjIY9IhzOQ==\nnpm notice total files: 7\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011725\n+ @tauri-apps/plugin-dialog@2.7.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003edialog v2.7.1\u003c/h2\u003e\n\u003ch2\u003e[2.7.1]\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to \u003ccode\u003efs-js@2.5.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e7a68fa63755603b9fa12d28e077eea645551d24\"\u003e\u003ccode\u003ee7a68fa\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3068\"\u003e#3068\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b5550a3b0d199eb33abdc2ac981aea44afcb1379\"\u003e\u003ccode\u003eb5550a3\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f8\u003c/code\u003e\u003c/a\u003e fix: fix docsrs builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/4ee61e055e58da6ca1ad8b8da31cd61498bd3c9b\"\u003e\u003ccode\u003e4ee61e0\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;chore: temp delete updater changefile\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/06124af8d65968462af59bb6368ea37df674a5b8\"\u003e\u003ccode\u003e06124af\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/2972\"\u003e#2972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/060219e597b83eacd8d89426f0e2aeafec1ad854\"\u003e\u003ccode\u003e060219e\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.3.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3067\"\u003e#3067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c7e9766ff53cbe8496467ed83be96e51d1847f0f\"\u003e\u003ccode\u003ec7e9766\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri monorepo (v2) (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3058\"\u003e#3058\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/d4a8ce962b2e642d3aa5b2d36e39f38e06960c27\"\u003e\u003ccode\u003ed4a8ce9\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate tokio-tungstenite to 0.28 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3016\"\u003e#3016\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/cdc7eec4154f38a2e9fac6be576321aa167ad114\"\u003e\u003ccode\u003ecdc7eec\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.2.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3066\"\u003e#3066\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/6314b004abb0694f805004eaef351090ec852bc4\"\u003e\u003ccode\u003e6314b00\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/log-v2.7.0...log-v2.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-fs` from 2.5.0 to 2.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-fs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efs-js v2.5.1\u003c/h2\u003e\n\u003ch2\u003e[2.5.1]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec054013\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3323\"\u003e#3323\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e) Updated dependency \u003ccode\u003etoml\u003c/code\u003e from 0.9 to 1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-fs@2.5.1\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 2.4kB README.md\nnpm notice 32.8kB dist-js/index.cjs\nnpm notice 32.6kB dist-js/index.d.ts\nnpm notice 32.0kB dist-js/index.js\nnpm notice 697B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-fs\nnpm notice version: 2.5.1\nnpm notice filename: tauri-apps-plugin-fs-2.5.1.tgz\nnpm notice package size: 21.5 kB\nnpm notice unpacked size: 101.5 kB\nnpm notice shasum: e1b8643d41c74251699fcdecc800877d18a4a6fc\nnpm notice integrity: sha512-9Lz+Jopp6QyeE[...]tqPB/XEMS3NhQ==\nnpm notice total files: 6\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011689\n+ @tauri-apps/plugin-fs@2.5.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003efs v2.5.1\u003c/h2\u003e\n\u003ch2\u003e[2.5.1]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec054013\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3323\"\u003e#3323\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e) Updated dependency \u003ccode\u003etoml\u003c/code\u003e from 0.9 to 1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/5c7668b6bb7c9a509f394d584568b3a922161e50\"\u003e\u003ccode\u003e5c7668b\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3397\"\u003e#3397\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/ec0540138bece081e9a87982091947360e61987a\"\u003e\u003ccode\u003eec05401\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate toml to v1 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3323\"\u003e#3323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b86e999beb9fb48ef54adf3d0af631f94c06a5d0\"\u003e\u003ccode\u003eb86e999\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri packages to 2.11 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3407\"\u003e#3407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c463d8ab1422a4cf44f627a7b4e6ba9d3553f334\"\u003e\u003ccode\u003ec463d8a\u003c/code\u003e\u003c/a\u003e chore(deps): update rustls-webpki in lockfile, ignore core2 in audit (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3405\"\u003e#3405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/1bb7beb3076a8bf76b084223d0e4225bb2e53bc9\"\u003e\u003ccode\u003e1bb7beb\u003c/code\u003e\u003c/a\u003e chore(deps): bump openssl (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3402\"\u003e#3402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/3412fa2741b3b6e7a251e3548a43b21f2c26c635\"\u003e\u003ccode\u003e3412fa2\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (opener supports mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/af81fdac9881d4ed52fbc18b9511bf10f7540ebb\"\u003e\u003ccode\u003eaf81fda\u003c/code\u003e\u003c/a\u003e docs(readme): fix platform support matrix (mobile is supported)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b\u003c/code\u003e\u003c/a\u003e fix(opener): allow open network share locations (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3343\"\u003e#3343\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/250857b7b72cd59825a14caa046160dc2ba1bb12\"\u003e\u003ccode\u003e250857b\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency typescript to v6 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3363\"\u003e#3363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/964e13f124ad1feeb93c10168b265dc4936f738c\"\u003e\u003ccode\u003e964e13f\u003c/code\u003e\u003c/a\u003e fix(store): dead lock trying to set while exiting (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3395\"\u003e#3395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/fs-v2.5.0...fs-v2.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-global-shortcut` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-global-shortcut's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eupload-js v2.3.2\u003c/h2\u003e\n\u003ch2\u003e[2.3.2]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f85\u003c/code\u003e\u003c/a\u003e Fixed an issue that caused docs.rs builds to fail. No user facing changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-upload@2.3.2\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 3.2kB README.md\nnpm notice 1.4kB dist-js/index.cjs\nnpm notice 507B dist-js/index.d.ts\nnpm notice 1.4kB dist-js/index.js\nnpm notice 729B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-upload\nnpm notice version: 2.3.2\nnpm notice filename: tauri-apps-plugin-upload-2.3.2.tgz\nnpm notice package size: 2.9 kB\nnpm notice unpacked size: 8.1 kB\nnpm notice shasum: 4c0d9af44b28f9b05905ff8972a5438b642fc260\nnpm notice integrity: sha512-h/V8RqsbVpJSt[...]RqpUr0Dk9DuGA==\nnpm notice total files: 6\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=644611265\n+ @tauri-apps/plugin-upload@2.3.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eupload v2.3.2\u003c/h2\u003e\n\u003ch2\u003e[2.3.2]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f85\u003c/code\u003e\u003c/a\u003e Fixed an issue that caused docs.rs builds to fail. No user facing changes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003eUpdating crates.io index\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e7a68fa63755603b9fa12d28e077eea645551d24\"\u003e\u003ccode\u003ee7a68fa\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3068\"\u003e#3068\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b5550a3b0d199eb33abdc2ac981aea44afcb1379\"\u003e\u003ccode\u003eb5550a3\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f8\u003c/code\u003e\u003c/a\u003e fix: fix docsrs builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/4ee61e055e58da6ca1ad8b8da31cd61498bd3c9b\"\u003e\u003ccode\u003e4ee61e0\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;chore: temp delete updater changefile\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/06124af8d65968462af59bb6368ea37df674a5b8\"\u003e\u003ccode\u003e06124af\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/2972\"\u003e#2972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/060219e597b83eacd8d89426f0e2aeafec1ad854\"\u003e\u003ccode\u003e060219e\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.3.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3067\"\u003e#3067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c7e9766ff53cbe8496467ed83be96e51d1847f0f\"\u003e\u003ccode\u003ec7e9766\u003c/code\u003e\u003c/a\u003e chore(deps): update tauri monorepo (v2) (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3058\"\u003e#3058\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/d4a8ce962b2e642d3aa5b2d36e39f38e06960c27\"\u003e\u003ccode\u003ed4a8ce9\u003c/code\u003e\u003c/a\u003e chore(deps): update rust crate tokio-tungstenite to 0.28 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3016\"\u003e#3016\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/cdc7eec4154f38a2e9fac6be576321aa167ad114\"\u003e\u003ccode\u003ecdc7eec\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​rollup/plugin-typescript\u003c/code\u003e to v12.2.0 (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3066\"\u003e#3066\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/6314b004abb0694f805004eaef351090ec852bc4\"\u003e\u003ccode\u003e6314b00\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/os-v2.3.1...os-v2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​tauri-apps/plugin-global-shortcut\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tauri-apps/plugin-opener` from 2.5.3 to 2.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/releases\"\u003e@​tauri-apps/plugin-opener's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eopener-js v2.5.4\u003c/h2\u003e\n\u003ch2\u003e[2.5.4]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b3\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3343\"\u003e#3343\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix \u003ccode\u003erevealItemInDir\u003c/code\u003e/\u003ccode\u003ereveal_items_in_dir\u003c/code\u003e can't reveal network paths like \u003ccode\u003e\\\\wsl.localhost\\Ubuntu\\etc\u003c/code\u003e on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cpre\u003e\u003ccode\u003enpm warn Unknown user config \u0026quot;always-auth\u0026quot;. This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.\nnpm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run \u0026quot;npm pkg fix\u0026quot; to address these errors.\nnpm warn publish errors corrected:\nnpm warn publish \u0026quot;repository\u0026quot; was changed from a string to an object\nnpm warn publish \u0026quot;repository.url\u0026quot; was normalized to \u0026quot;git+https://github.com/tauri-apps/plugins-workspace.git\u0026quot;\nnpm notice\nnpm notice 📦  @tauri-apps/plugin-opener@2.5.4\nnpm notice Tarball Contents\nnpm notice 888B LICENSE.spdx\nnpm notice 4.2kB README.md\nnpm notice 3.1kB dist-js/index.cjs\nnpm notice 2.0kB dist-js/index.d.ts\nnpm notice 3.1kB dist-js/index.js\nnpm notice 11B dist-js/init.d.ts\nnpm notice 730B package.json\nnpm notice Tarball Details\nnpm notice name: @tauri-apps/plugin-opener\nnpm notice version: 2.5.4\nnpm notice filename: tauri-apps-plugin-opener-2.5.4.tgz\nnpm notice package size: 3.5 kB\nnpm notice unpacked size: 14.1 kB\nnpm notice shasum: b37883e4d36125b8c5a0c74f683395958a65bd7d\nnpm notice integrity: sha512-1HnPkb+AmgO29[...]aUJtT57lfO9CQ==\nnpm notice total files: 7\nnpm notice\nnpm notice Publishing to https://registry.npmjs.org/ with tag latest and public access\nnpm notice publish Signed provenance statement with source and build information from GitHub Actions\nnpm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1429011743\n+ @tauri-apps/plugin-opener@2.5.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eopener v2.5.4\u003c/h2\u003e\n\u003ch2\u003e[2.5.4]\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/c1fd33b3a2735f2e25c1d026dc524af932db3315\"\u003e\u003ccode\u003ec1fd33b3\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/pull/3343\"\u003e#3343\u003c/a\u003e by \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/../../Legend-Master\"\u003e\u003ccode\u003e@​Legend-Master\u003c/code\u003e\u003c/a\u003e) Fix \u003ccode\u003erevealItemInDir\u003c/code\u003e/\u003ccode\u003ereveal_items_in_dir\u003c/code\u003e can't reveal network paths like \u003ccode\u003e\\\\wsl.localhost\\Ubuntu\\etc\u003c/code\u003e on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/e7a68fa63755603b9fa12d28e077eea645551d24\"\u003e\u003ccode\u003ee7a68fa\u003c/code\u003e\u003c/a\u003e publish new versions (\u003ca href=\"https://redirect.github.com/tauri-apps/plugins-workspace/issues/3068\"\u003e#3068\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/b5550a3b0d199eb33abdc2ac981aea44afcb1379\"\u003e\u003ccode\u003eb5550a3\u003c/code\u003e\u003c/a\u003e chore: temp delete updater changefile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/93426f85120f49beb9f40222bff45185a32d54a9\"\u003e\u003ccode\u003e93426f8\u003c/code\u003e\u003c/a\u003e fix: fix docsrs builds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tauri-apps/plugins-workspace/commit/4ee61e055e58da6ca1ad8b8da31cd61498bd3c9b\"\u003e\u003ccode\u003e4ee61e0\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;chore: temp delete updater changefile\u0026quot;\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tauri-apps/plugins-workspace/compare/http-v2.5.3...http-v2.5.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bits-ui` from 2.18.0 to 2.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/huntabyte/bits-ui/releases\"\u003ebits-ui's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ebits-ui@2.18.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix(text-selection-layer): snapshot enabled and pointer handlers for listeners (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/pull/2041\"\u003e#2041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix(Tooltip): set wrapper pointer-events when hoverable content is disabled (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/pull/2041\"\u003e#2041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix(Menu): prevent page scroll-jump on item hover when \u003ccode\u003escroll-padding\u003c/code\u003e is set (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/pull/2035\"\u003e#2035\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/25f81378415fe35932ab7a6214149bb4ec4f520c\"\u003e\u003ccode\u003e25f8137\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/issues/2042\"\u003e#2042\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/158364e9c0f63a58919e55500aed95d9847c77ee\"\u003e\u003ccode\u003e158364e\u003c/code\u003e\u003c/a\u003e fix(menu): use preventScroll when focusing items on hover and content on item...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/5a3f7ce7279828e52230a6b155757e1b7f03b2be\"\u003e\u003ccode\u003e5a3f7ce\u003c/code\u003e\u003c/a\u003e fix(Tooltip): pointer event handling (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/issues/2041\"\u003e#2041\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huntabyte/bits-ui/commit/788fc03ee6a961f30222913c71800920c6b44a50\"\u003e\u003ccode\u003e788fc03\u003c/code\u003e\u003c/a\u003e chore: update workflows to Node 24 and latest action versions (\u003ca href=\"https://redirect.github.com/huntabyte/bits-ui/issues/2032\"\u003e#2032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/huntabyte/bits-ui/compare/bits-ui@2.18.0...bits-ui@2.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dexie` from 4.4.2 to 4.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexie/Dexie.js/releases\"\u003edexie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDexie v4.4.3\u003c/h2\u003e\n\u003cp\u003eThis is a maintenance release with bug fixes and a configuration API improvement.\u003c/p\u003e\n\u003ch2\u003eRelated Package Releases\u003c/h2\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003ePackage\u003c/th\u003e\n\u003cth\u003eVersion\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003edexie\u003c/td\u003e\n\u003ctd\u003e4.4.3\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003edexie-cloud-addon\u003c/td\u003e\n\u003ctd\u003e4.4.13\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003ch3\u003edexie@4.4.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: \u003ccode\u003edelByKeyPath()\u003c/code\u003e creates empty intermediate objects on missing path\u003c/strong\u003e — \u003ccode\u003eDexie.delByKeyPath(obj, \u0026quot;foo.bar\u0026quot;)\u003c/code\u003e on an object without \u003ccode\u003efoo\u003c/code\u003e would create \u003ccode\u003e{foo: {}}\u003c/code\u003e as a side effect instead of doing nothing. This caused a real-world bug in dexie-cloud-addon where clearing a dotted key from a changeSpec (e.g. \u003ccode\u003eclaims.sub\u003c/code\u003e) would leave \u003ccode\u003e{claims: {}}\u003c/code\u003e in the spec, which then overwrote the inline primary key with \u003ccode\u003eundefined\u003c/code\u003e, resulting in: \u003ccode\u003eDataError: Evaluating the object store's key path did not yield a value\u003c/code\u003e. Fixed in \u003ccode\u003esetByKeyPath\u003c/code\u003e to bail out early when value is \u003ccode\u003eundefined\u003c/code\u003e and the intermediate path doesn't exist. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/issues/2303\"\u003e#2303\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: Collection.sortBy() mutates frozen array in immutable cache mode\u003c/strong\u003e — calling \u003ccode\u003e.sortBy()\u003c/code\u003e on a table when using immutable cache mode could throw \u003ccode\u003eTypeError: Cannot assign to read only property\u003c/code\u003e because \u003ccode\u003eArray.sort()\u003c/code\u003e was called on a frozen array. Fixed by sorting on a copy instead. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2294\"\u003e#2294\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003edexie-cloud-addon@4.4.12\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003erename: \u003ccode\u003emaxStringLength\u003c/code\u003e → \u003ccode\u003elargeStringThreshold\u003c/code\u003e\u003c/strong\u003e — the string offloading option is renamed for clarity. The old name is kept as a backward-compatible alias. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2290\"\u003e#2290\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: blob writebacks routed through BlobSavingQueue to avoid PSD context loss\u003c/strong\u003e — after an async native \u003ccode\u003efetch\u003c/code\u003e (blob download), Dexie's PSD zone is no longer active, causing \u003ccode\u003etable.mutate()\u003c/code\u003e to crash with \u003ccode\u003eCannot read properties of undefined (reading 'table')\u003c/code\u003e. This surfaced as \u003ccode\u003e[dexie-cloud:blobResolve] Failed to resolve BlobRefs\u003c/code\u003e. Fixed by always routing blob writebacks through \u003ccode\u003eBlobSavingQueue.saveBlobs()\u003c/code\u003e, which opens a proper Dexie rw-transaction in a fresh JS task. Fixes lazy blob mode crash when using Dexie hooks with dexie-cloud-addon. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: eager blob downloader could starve RAM\u003c/strong\u003e — the eager downloader triggered \u003ccode\u003eblobResolveMiddleware\u003c/code\u003e which resolved all pending blobs into memory at once. Fixed by downloading blobs in chunks with a query limit, so memory usage stays bounded regardless of how many blobs are pending. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: in-flight blob downloads are now deduplicated\u003c/strong\u003e — if a blob is requested after download starts but before it is persisted, the existing download promise is reused instead of starting a new download. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efix: use \u003ccode\u003ecache: no-store\u003c/code\u003e for blob fetch requests\u003c/strong\u003e — avoids the browser caching raw blob responses and double-storing them. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2302\"\u003e#2302\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003edexie-cloud-addon@4.4.13\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: DataError when applying server-side \u003ccode\u003e$logins\u003c/code\u003e update\u003c/strong\u003e — when a user received a server update for the \u003ccode\u003e$logins\u003c/code\u003e table, dexie-cloud-addon tried to clear \u003ccode\u003eclaims.sub\u003c/code\u003e from the changeSpec using \u003ccode\u003edelByKeyPath\u003c/code\u003e. Due to the bug above, this left \u003ccode\u003e{claims: {}}\u003c/code\u003e in the spec, overwriting the inline primary key with \u003ccode\u003eundefined\u003c/code\u003e and causing \u003ccode\u003eDataError: Evaluating the object store's key path did not yield a value\u003c/code\u003e. Fixed by guarding against empty changeSpec objects after key deletion. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2304\"\u003e#2304\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003edexie-observable\u003c/code\u003e and \u003ccode\u003edexie-syncable\u003c/code\u003e README updated to mark them as legacy/unmaintained, with a recommendation to use \u003ccode\u003edexie-cloud-addon\u003c/code\u003e for sync. (\u003ca href=\"https://redirect.github.com/dexie/Dexie.js/pull/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/30134f6bc3e32a3a2a31cb12e69eb6bc838b0dcd\"\u003e\u003ccode\u003e30134f6\u003c/code\u003e\u003c/a\u003e Trigger new dev build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/9dd614d4fe78915dd157c9b6c717508999806aae\"\u003e\u003ccode\u003e9dd614d\u003c/code\u003e\u003c/a\u003e DataError after updating a user in dexie cloud when that user got an update f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/0919742f12b3567d24c07fd3fa164b2108174a39\"\u003e\u003ccode\u003e0919742\u003c/code\u003e\u003c/a\u003e Trigger dev build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/27103018a91cd8b72914f3fcf1c7d166beae821e\"\u003e\u003ccode\u003e2710301\u003c/code\u003e\u003c/a\u003e Fix delByKeyPath so that it does not create empty object when keyPath is dott...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/a02483137c2c86c209cf253d7bd06fee54d42137\"\u003e\u003ccode\u003ea024831\u003c/code\u003e\u003c/a\u003e dexie-cloud-addon@4.4.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/988ec9c8220f4751c97d14bf95a7cc4fff8754a5\"\u003e\u003ccode\u003e988ec9c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexie/Dexie.js/issues/2302\"\u003e#2302\u003c/a\u003e from dexie/liz/fix-blobsave-hooks-psd-context\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/b74758fb196071875323c7c28cff80bf224334af\"\u003e\u003ccode\u003eb74758f\u003c/code\u003e\u003c/a\u003e Use cache: no-store to avoid double storing blobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/ed59f5c7d7f6bf5452818784c1e9b7f31dfd0c5b\"\u003e\u003ccode\u003eed59f5c\u003c/code\u003e\u003c/a\u003e Implify one bit more\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/f0bb943189e3504124331118f676482f88fd63ae\"\u003e\u003ccode\u003ef0bb943\u003c/code\u003e\u003c/a\u003e Simplified the loop in eagerBlobDownloader by requesting keys first.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexie/Dexie.js/commit/d2c3ef08b3f572c868f7daa53ce23845ecd4de3d\"\u003e\u003ccode\u003ed2c3ef0\u003c/code\u003e\u003c/a\u003e Bugfix: eager blob downloader would trigger blobResolveMiddleware and resolve...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexie/Dexie.js/compare/v4.4.2...v4.4.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 3.4.2 to 3.4.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCleaned up the repository root, renamed some and removed unneeded files\u003c/li\u003e\n\u003cli\u003eFixed an issue with handling of Trusted Types policies, thanks \u003ca href=\"https://github.com/fulstadev\"\u003e\u003ccode\u003e@​fulstadev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the node iterator for better template scrubbing, thanks \u003ca href=\"https://github.com/IamLeandrooooo\"\u003e\u003ccode\u003e@​IamLeandrooooo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncluded formerly missing LICENSE-MPL in published npm package, thanks \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHardened the handling of Shadow Roots when using \u003ccode\u003eIN_PLACE\u003c/code\u003e, thanks \u003ca href=\"https://github.com/GameZoneHacker\"\u003e\u003ccode\u003e@​GameZoneHacker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved a problem leading to permanent hook pollution, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactored the test suite and expanded test coverage significantly\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed several issues with DOM Clobbering in \u003ccode\u003eIN_PLACE\u003c/code\u003e mode, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHardened the checks for cross-realm \u003ccode\u003eIN_PLACE\u003c/code\u003e and Shadow DOM sanitization, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded more test coverage for \u003ccode\u003eIN_PLACE\u003c/code\u003e and general DOM Clobbering attacks\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a bypass caused by the new HTML element \u003ccode\u003eselectedcontent\u003c/code\u003e added in 3.4.4, thanks \u003ca href=\"https://github.com/KabirAcharya\"\u003e\u003ccode\u003e@​KabirAcharya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNote that this is a security release for an issue introduced in 3.4.4 and should be upgraded to immediately.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003eselectedcontent\u003c/code\u003e element to default allow-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded the \u003ccode\u003ecommand\u003c/code\u003e and \u003ccode\u003ecommandfor\u003c/code\u003e attributes to default allowed-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better template scrubbing for \u003ccode\u003eIN_PLACE\u003c/code\u003e operations, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded stronger checks for cross-realm windows, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/fg0x0\"\u003e\u003ccode\u003e@​fg0x0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated demo website and made sure it uses the latest from main\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, dependabot, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🚨 \u003cstrong\u003eThis release had been flagged as deprecated, please use DOMPurify 3.4.5 instead\u003c/strong\u003e 🚨\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with handling of nested Shadow DOM trees, thanks \u003ca href=\"https://github.com/fishjojo1\"\u003e\u003ccode\u003e@​fishjojo1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the template regexes to be more robust against ReDoS attacks, thanks \u003ca href=\"https://github.com/aleung27\"\u003e\u003ccode\u003e@​aleung27\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the node iteration code to catch more Shadow DOM related issues\u003c/li\u003e\n\u003cli\u003eUpdated Playwright and added Node 26 to test matrix\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bcdd8285412dc9c4c149652aed2d712e790d6ccf\"\u003e\u003ccode\u003ebcdd828\u003c/code\u003e\u003c/a\u003e release: 3.4.8 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1439\"\u003e#1439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/ca30f070c360df162a3e3848e80e6fd3c9e74bff\"\u003e\u003ccode\u003eca30f07\u003c/code\u003e\u003c/a\u003e release: 3.4.7 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1414\"\u003e#1414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bb7739e5bccec7e1ab3dae3f3e42d02db3acaaae\"\u003e\u003ccode\u003ebb7739e\u003c/code\u003e\u003c/a\u003e release: 3.4.6 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1394\"\u003e#1394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/011b0c78f2a0f57ee54f5fcccb697a46ca6e63ea\"\u003e\u003ccode\u003e011b0c7\u003c/code\u003e\u003c/a\u003e release: 3.4.5 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1382\"\u003e#1382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5817ad969c15e67dfcd6cb37248d6e9c1553e7c3\"\u003e\u003ccode\u003e5817ad9\u003c/code\u003e\u003c/a\u003e release: 3.4.4 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/520edb0371a9638f9b51f1798051299a250c686b\"\u003e\u003ccode\u003e520edb0\u003c/code\u003e\u003c/a\u003e release: 3.4.3 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1352\"\u003e#1352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/3.4.2...3.4.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.3.0 to 6.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e for argon2 memory limit (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1943\"\u003e#1943\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2014\"\u003e#2014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix RSA signing using SHA3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1952\"\u003e#1952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow creating signature notations when generating/reformatting keys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1953\"\u003e#1953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003e'node16'\u003c/code\u003e/\u003ccode\u003e'nodenext'\u003c/code\u003e compatibility, and emit type declarations for .ts files with external exports under \u003ccode\u003edist/types\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1987\"\u003e#1987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix AnyPacket declaration to also include \u003ccode\u003eBasePacket\u0026lt;true\u0026gt;\u003c/code\u003e subclasses (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1991\"\u003e#1991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-zero IV usages for AES-CFB (spec compliance issue; no security or interoperability impact) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ac0048404b74a3595d503125b53f3b3d0486bec\"\u003e\u003ccode\u003e2ac0048\u003c/code\u003e\u003c/a\u003e 6.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/3c6abc9a9b1ad33a02a96a6e420857f63ba387c9\"\u003e\u003ccode\u003e3c6abc9\u003c/code\u003e\u003c/a\u003e Argon2: set hard limit for \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e to cap memory at ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cba29041e089b18a44d32d0defa1ccf0414bb938\"\u003e\u003ccode\u003ecba2904\u003c/code\u003e\u003c/a\u003e Internal: fix \u003ccode\u003ereadExactSubarray\u003c/code\u003e to correctly enforce end boundary (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2013\"\u003e#2013\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/4318a48703d9bd606d3062a4e485ef14d08dfd4c\"\u003e\u003ccode\u003e4318a48\u003c/code\u003e\u003c/a\u003e Run npm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/dd9274e9e23ef3e25cb14df9e3b6ff4177758757\"\u003e\u003ccode\u003edd9274e\u003c/code\u003e\u003c/a\u003e Fix non-zero IV usages for AES-CFB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/0a67d5e9b056f7696c2c21a53981c8cbfd6a1cf9\"\u003e\u003ccode\u003e0a67d5e\u003c/code\u003e\u003c/a\u003e npm: add \u003ccode\u003emin-release-age\u003c/code\u003e constraint (for manual installs)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ba545d4015ca65e35b93c2d1facd310ce1e94fb\"\u003e\u003ccode\u003e2ba545d\u003c/code\u003e\u003c/a\u003e Bump the dev-dependencies group across 1 directory with 9 updates (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2011\"\u003e#2011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/657ac6495e3aa78f78bdfd18edad38a042fcb066\"\u003e\u003ccode\u003e657ac64\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-unicorn from 62.0.0 to 64.0.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1999\"\u003e#1999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/df8c044392042cd2a1fac50d74081aefbf598e51\"\u003e\u003ccode\u003edf8c044\u003c/code\u003e\u003c/a\u003e Bump fflate from 0.8.2 to 0.8.3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2007\"\u003e#2007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/38915311010a1984078a41f6df90e898751e3acb\"\u003e\u003ccode\u003e3891531\u003c/code\u003e\u003c/a\u003e Bump fast-xml-builder (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2003\"\u003e#2003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `preact` from 10.29.1 to 10.29.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/preactjs/preact/releases\"\u003epreact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e10.29.2\u003c/h2\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix hydration when we have defaultValue or value on a textarea (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5081\"\u003e#5081\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eMaintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS for GitHub configuration (v10.x) (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5088\"\u003e#5088\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix trusted publishing workflow (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5084\"\u003e#5084\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTrusted publishing (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5072\"\u003e#5072\u003c/a\u003e, thanks \u003ca href=\"https://github.com/JoviDeCroock\"\u003e\u003ccode\u003e@​JoviDeCroock\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/fce6ed7a6d5f2c7333d9c26fb09f5bb9e929a737\"\u003e\u003ccode\u003efce6ed7\u003c/code\u003e\u003c/a\u003e 10.29.2 (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5091\"\u003e#5091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/84581d0b9bcc8788058fa171f437445471fc0f9f\"\u003e\u003ccode\u003e84581d0\u003c/code\u003e\u003c/a\u003e Fix buggy edge case (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5090\"\u003e#5090\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/5a39554bbde4f7768e2537f19896e3ea7cbb592b\"\u003e\u003ccode\u003e5a39554\u003c/code\u003e\u003c/a\u003e Add CODEOWNERS for GitHub configuration (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5088\"\u003e#5088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/562e0f510bb98ccc73d0fea4e8c1339a3cb1da07\"\u003e\u003ccode\u003e562e0f5\u003c/code\u003e\u003c/a\u003e Fix trusted publishing workflow (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5084\"\u003e#5084\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/3a012555a9cd572fb85016c915ac61aecded51b7\"\u003e\u003ccode\u003e3a01255\u003c/code\u003e\u003c/a\u003e Trusted publishing (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5072\"\u003e#5072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/preactjs/preact/commit/cae8d3a4a6695809e287ec7fddd992db377a1234\"\u003e\u003ccode\u003ecae8d3a\u003c/code\u003e\u003c/a\u003e Fix migrations when we have defaultValue or value on a textarea (\u003ca href=\"https://redirect.github.com/preactjs/preact/issues/5081\"\u003e#5081\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/preactjs/preact/compare/10.29.1...10.29.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for preact since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `svelte` from 5.55.1 to 5.56.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.56.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore errors that occur in destroyed effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18384\"\u003e#18384\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: type BigInts in \u003ccode\u003e$state.snapshot(...)\u003c/code\u003e return values (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18388\"\u003e#18388\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.56.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: properly track effect end node for async sibling component (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18371\"\u003e#18371\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent false-positive reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: bump esrap dependency (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18372\"\u003e#18372\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore declaration tags for animation directive (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18366\"\u003e#18366\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reject pending async deriveds on discard (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18308\"\u003e#18308\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.56.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: error at compile time on duplicate snippet/declaration tag definitions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18351\"\u003e#18351\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: parse declaration tag contents more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18353\"\u003e#18353\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly transform references to earlier declarators in a declaration tag (e.g. \u003ccode\u003e{let a = $state(0), b = $derived(a * 2)}\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid spurious \u003ccode\u003estate_referenced_locally\u003c/code\u003e warnings for \u003ccode\u003e$derived\u003c/code\u003e declarations in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: tolerate whitespace before \u003ccode\u003elet\u003c/code\u003e/\u003ccode\u003econst\u003c/code\u003e in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent infinite loop when a tag's expression ends with a trailing \u003ccode\u003e/\u003c/code\u003e at the end of the input (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18350\"\u003e#18350\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: more robust parsing of declaration tags with regards to \u003ccode\u003etype\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18330\"\u003e#18330\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: preserve newlines in spread input values when the \u003ccode\u003etype\u003c/code\u003e attribute is applied after \u003ccode\u003evalue\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18345\"\u003e#18345\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: update \u003ccode\u003eSvelteURLSearchParams\u003c/code\u003e when setting duplicate keys to the same joined value (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18336\"\u003e#18336\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: check references for blockers on server, too (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18352\"\u003e#18352\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.56.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow declarations in the template (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18282\"\u003e#18282\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.56.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore errors that occur in destroyed effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18384\"\u003e#18384\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: type BigInts in \u003ccode\u003e$state.snapshot(...)\u003c/code\u003e return values (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18388\"\u003e#18388\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.56.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: properly track effect end node for async sibling component (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18371\"\u003e#18371\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent false-positive reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: bump esrap dependency (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18372\"\u003e#18372\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: ignore declaration tags for animation directive (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18366\"\u003e#18366\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reject pending async deriveds on discard (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18308\"\u003e#18308\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.56.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: error at compile time on duplicate snippet/declaration tag definitions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18351\"\u003e#18351\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: parse declaration tag contents more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18353\"\u003e#18353\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly transform references to earlier declarators in a declaration tag (e.g. \u003ccode\u003e{let a = $state(0), b = $derived(a * 2)}\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid spurious \u003ccode\u003estate_referenced_locally\u003c/code\u003e warnings for \u003ccode\u003e$derived\u003c/code\u003e declarations in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: tolerate whitespace before \u003ccode\u003elet\u003c/code\u003e/\u003ccode\u003econst\u003c/code\u003e in declaration tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18348\"\u003e#18348\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent infinite loop when a tag's expression ends with a trailing \u003ccode\u003e/\u003c/code\u003e at the end of the input (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18350\"\u003e#18350\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e...\n\n_Description has been truncated_","html_url":"https://github.com/forwardemail/mail.forwardemail.net/pull/86","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/forwardemail%2Fmail.forwardemail.net/issues/86","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/86/packages"}},{"old_version":"6.3.0","new_version":"6.3.1","update_type":"patch","path":null,"pr_created_at":"2026-06-07T22:04:15.000Z","version_change":"6.3.0 → 6.3.1","issue":{"uuid":"4608868448","node_id":"PR_kwDOBxlnvM7jsn-F","number":831,"state":"closed","title":"build(deps): bump the npm-deps group across 1 directory with 9 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-07T22:54:13.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-07T22:04:15.000Z","updated_at":"2026-06-07T22:54:14.000Z","time_to_close":2998,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm-deps","update_count":9,"packages":[{"name":"dompurify","old_version":"3.4.7","new_version":"3.4.8","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"squire-rte","old_version":"2.4.6","new_version":"2.4.7","repository_url":"https://github.com/neilj/Squire"},{"name":"@types/chrome","old_version":"0.1.42","new_version":"0.1.43","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@types/jquery","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"eslint-plugin-jsdoc","old_version":"63.0.0","new_version":"63.0.2","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"openpgp","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"stylelint","old_version":"17.12.0","new_version":"17.13.0","repository_url":"https://github.com/stylelint/stylelint"},{"name":"typescript-eslint","old_version":"8.60.0","new_version":"8.60.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"undici-types","old_version":"8.3.0","new_version":"8.4.0","repository_url":"https://github.com/nodejs/undici"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-deps group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.4.7` | `3.4.8` |\n| [squire-rte](https://github.com/neilj/Squire) | `2.4.6` | `2.4.7` |\n| [@types/chrome](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/chrome) | `0.1.42` | `0.1.43` |\n| [@types/jquery](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jquery) | `4.0.0` | `4.0.1` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `63.0.0` | `63.0.2` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.3.0` | `6.3.1` |\n| [stylelint](https://github.com/stylelint/stylelint) | `17.12.0` | `17.13.0` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.60.0` | `8.60.1` |\n| [undici-types](https://github.com/nodejs/undici) | `8.3.0` | `8.4.0` |\n\n\nUpdates `dompurify` from 3.4.7 to 3.4.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCleaned up the repository root, renamed some and removed unneeded files\u003c/li\u003e\n\u003cli\u003eFixed an issue with handling of Trusted Types policies, thanks \u003ca href=\"https://github.com/fulstadev\"\u003e\u003ccode\u003e@​fulstadev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the node iterator for better template scrubbing, thanks \u003ca href=\"https://github.com/IamLeandrooooo\"\u003e\u003ccode\u003e@​IamLeandrooooo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncluded formerly missing LICENSE-MPL in published npm package, thanks \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bcdd8285412dc9c4c149652aed2d712e790d6ccf\"\u003e\u003ccode\u003ebcdd828\u003c/code\u003e\u003c/a\u003e release: 3.4.8 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1439\"\u003e#1439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/3.4.7...3.4.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `squire-rte` from 2.4.6 to 2.4.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastmail/Squire/blob/master/CHANGELOG.md\"\u003esquire-rte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[2.4.7] - 2026-06-02\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrag and drop of text/html is now handled by Squire rather than letting the\nbrowser do it. This gives consistency with cut/paste operations in terms of\ncleaning and sanitising HTML.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/neilj/Squire/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/chrome` from 0.1.42 to 0.1.43\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/jquery` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jquery\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `eslint-plugin-jsdoc` from 63.0.0 to 63.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/releases\"\u003eeslint-plugin-jsdoc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev63.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/compare/v63.0.1...v63.0.2\"\u003e63.0.2\u003c/a\u003e (2026-06-06)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow typedef returns that may be void; fixes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1390\"\u003e#1390\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1699\"\u003e#1699\u003c/a\u003e) (\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/319e84b21dfc21213f42998beee26e199660747c\"\u003e319e84b\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev63.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/compare/v63.0.0...v63.0.1\"\u003e63.0.1\u003c/a\u003e (2026-06-01)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eempty-tags\u003c/code\u003e:\u003c/strong\u003e preserve start and ending delimiters to avoid erros with single-line tags; fixes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1697\"\u003e#1697\u003c/a\u003e (\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/938a1f0caf9f5de4dc04acd269a9a5eb3e5eb424\"\u003e938a1f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/50a7fbcf4abf7b27ca2774f65397f2f74395ea41\"\u003e\u003ccode\u003e50a7fbc\u003c/code\u003e\u003c/a\u003e chore: update semver and devDeps.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/6041995ba873b5641e3b9bd1f95de004b4b9e7da\"\u003e\u003ccode\u003e6041995\u003c/code\u003e\u003c/a\u003e docs: fix in output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/319e84b21dfc21213f42998beee26e199660747c\"\u003e\u003ccode\u003e319e84b\u003c/code\u003e\u003c/a\u003e fix: allow typedef returns that may be void; fixes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1390\"\u003e#1390\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1699\"\u003e#1699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/938a1f0caf9f5de4dc04acd269a9a5eb3e5eb424\"\u003e\u003ccode\u003e938a1f0\u003c/code\u003e\u003c/a\u003e fix(\u003ccode\u003eempty-tags\u003c/code\u003e): preserve start and ending delimiters to avoid erros with s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/1f857a9e61ddb45539b65e5e8eb1f1ae3af4dab4\"\u003e\u003ccode\u003e1f857a9\u003c/code\u003e\u003c/a\u003e chore: update jsdoccomment, comment-parser, object-deep-merge, semver, devDeps.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/3d53b88baed2b49e04b4aa71599d1b449efcc3f8\"\u003e\u003ccode\u003e3d53b88\u003c/code\u003e\u003c/a\u003e docs: fix AST and Selectors links; closes \u003ca href=\"https://redirect.github.com/gajus/eslint-plugin-jsdoc/issues/1691\"\u003e#1691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/commit/a0b05f530b575a317c430c1cac7ac1a439828414\"\u003e\u003ccode\u003ea0b05f5\u003c/code\u003e\u003c/a\u003e chore(deps): bump minimatch from 3.0.5 to 10.2.5\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gajus/eslint-plugin-jsdoc/compare/v63.0.0...v63.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.3.0 to 6.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e for argon2 memory limit (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1943\"\u003e#1943\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2014\"\u003e#2014\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix RSA signing using SHA3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1952\"\u003e#1952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow creating signature notations when generating/reformatting keys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1953\"\u003e#1953\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003e'node16'\u003c/code\u003e/\u003ccode\u003e'nodenext'\u003c/code\u003e compatibility, and emit type declarations for .ts files with external exports under \u003ccode\u003edist/types\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1987\"\u003e#1987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix AnyPacket declaration to also include \u003ccode\u003eBasePacket\u0026lt;true\u0026gt;\u003c/code\u003e subclasses (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1991\"\u003e#1991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix non-zero IV usages for AES-CFB (spec compliance issue; no security or interoperability impact) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ac0048404b74a3595d503125b53f3b3d0486bec\"\u003e\u003ccode\u003e2ac0048\u003c/code\u003e\u003c/a\u003e 6.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/3c6abc9a9b1ad33a02a96a6e420857f63ba387c9\"\u003e\u003ccode\u003e3c6abc9\u003c/code\u003e\u003c/a\u003e Argon2: set hard limit for \u003ccode\u003econfig.maxArgon2MemoryExponent\u003c/code\u003e to cap memory at ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cba29041e089b18a44d32d0defa1ccf0414bb938\"\u003e\u003ccode\u003ecba2904\u003c/code\u003e\u003c/a\u003e Internal: fix \u003ccode\u003ereadExactSubarray\u003c/code\u003e to correctly enforce end boundary (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2013\"\u003e#2013\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/4318a48703d9bd606d3062a4e485ef14d08dfd4c\"\u003e\u003ccode\u003e4318a48\u003c/code\u003e\u003c/a\u003e Run npm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/dd9274e9e23ef3e25cb14df9e3b6ff4177758757\"\u003e\u003ccode\u003edd9274e\u003c/code\u003e\u003c/a\u003e Fix non-zero IV usages for AES-CFB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2012\"\u003e#2012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/0a67d5e9b056f7696c2c21a53981c8cbfd6a1cf9\"\u003e\u003ccode\u003e0a67d5e\u003c/code\u003e\u003c/a\u003e npm: add \u003ccode\u003emin-release-age\u003c/code\u003e constraint (for manual installs)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/2ba545d4015ca65e35b93c2d1facd310ce1e94fb\"\u003e\u003ccode\u003e2ba545d\u003c/code\u003e\u003c/a\u003e Bump the dev-dependencies group across 1 directory with 9 updates (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2011\"\u003e#2011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/657ac6495e3aa78f78bdfd18edad38a042fcb066\"\u003e\u003ccode\u003e657ac64\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-unicorn from 62.0.0 to 64.0.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1999\"\u003e#1999\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/df8c044392042cd2a1fac50d74081aefbf598e51\"\u003e\u003ccode\u003edf8c044\u003c/code\u003e\u003c/a\u003e Bump fflate from 0.8.2 to 0.8.3 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2007\"\u003e#2007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/38915311010a1984078a41f6df90e898751e3acb\"\u003e\u003ccode\u003e3891531\u003c/code\u003e\u003c/a\u003e Bump fast-xml-builder (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/2003\"\u003e#2003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.3.0...v6.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `stylelint` from 17.12.0 to 17.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stylelint/stylelint/releases\"\u003estylelint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e17.13.0\u003c/h2\u003e\n\u003cp\u003eIt fixes 3 bugs, including a false negative one.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: \u003ccode\u003edeclaration-block-no-duplicate-properties\u003c/code\u003e false negatives for interleaved non-consecutive duplicates with \u003ccode\u003eignore: [\u0026quot;consecutive-duplicates(-*)\u0026quot;]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9324\"\u003e#9324\u003c/a\u003e) (\u003ca href=\"https://github.com/sarathfrancis90\"\u003e\u003ccode\u003e@​sarathfrancis90\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-max-type\u003c/code\u003e false positives for nested selectors (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9319\"\u003e#9319\u003c/a\u003e) (\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-type-no-unknown\u003c/code\u003e false positives for \u003ccode\u003einstall\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9308\"\u003e#9308\u003c/a\u003e) (\u003ca href=\"https://github.com/Mouvedia\"\u003e\u003ccode\u003e@​Mouvedia\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md\"\u003estylelint's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e17.13.0 - 2026-06-06\u003c/h2\u003e\n\u003cp\u003eIt fixes 3 bugs, including a false negative one.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: \u003ccode\u003edeclaration-block-no-duplicate-properties\u003c/code\u003e false negatives for interleaved non-consecutive duplicates with \u003ccode\u003eignore: [\u0026quot;consecutive-duplicates(-*)\u0026quot;]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/pull/9324\"\u003e#9324\u003c/a\u003e) (\u003ca href=\"https://github.com/sarathfrancis90\"\u003e\u003ccode\u003e@​sarathfrancis90\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-max-type\u003c/code\u003e false positives for nested selectors (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/pull/9319\"\u003e#9319\u003c/a\u003e) (\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed: \u003ccode\u003eselector-type-no-unknown\u003c/code\u003e false positives for \u003ccode\u003einstall\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/pull/9308\"\u003e#9308\u003c/a\u003e) (\u003ca href=\"https://github.com/Mouvedia\"\u003e\u003ccode\u003e@​Mouvedia\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/7fcee2b3155adb43daa2078762a15c2d9a24e69b\"\u003e\u003ccode\u003e7fcee2b\u003c/code\u003e\u003c/a\u003e Release 17.13.0 (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9342\"\u003e#9342\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/3b7287b2eb88474f63f6d17474e87ba836bf1f43\"\u003e\u003ccode\u003e3b7287b\u003c/code\u003e\u003c/a\u003e Refactor to reuse shared utilities (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9337\"\u003e#9337\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/8e889c3394f410916343a5e4c2b372ec514184d0\"\u003e\u003ccode\u003e8e889c3\u003c/code\u003e\u003c/a\u003e Bump lint-staged from 17.0.4 to 17.0.5 (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9334\"\u003e#9334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/a74aab46df5a94afa0cf4fddc9faf6eeacf34293\"\u003e\u003ccode\u003ea74aab4\u003c/code\u003e\u003c/a\u003e Bump the stylelint-actions group with 5 updates (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9333\"\u003e#9333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/74c644828b839add46650d67390a0f1094dbcf7a\"\u003e\u003ccode\u003e74c6448\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003edeclaration-block-no-duplicate-properties\u003c/code\u003e false negatives for interleav...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/1cd26ac54ed16b92f77487f85b9305ca320f4085\"\u003e\u003ccode\u003e1cd26ac\u003c/code\u003e\u003c/a\u003e Skip changeset verification on fork PRs CI (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9331\"\u003e#9331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/712b9867f7a1fa631813f577d7941686a10d3a58\"\u003e\u003ccode\u003e712b986\u003c/code\u003e\u003c/a\u003e Fix vulnerable dependencies via \u003ccode\u003enpm audit fix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9328\"\u003e#9328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/27196b71dbc255bd612ad26dee40bf276a8123b0\"\u003e\u003ccode\u003e27196b7\u003c/code\u003e\u003c/a\u003e Fix CI badge in README.md (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9329\"\u003e#9329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/179bba2e5a3264f9e96baf3318afdf113ea4f8dc\"\u003e\u003ccode\u003e179bba2\u003c/code\u003e\u003c/a\u003e Refactor to use \u003ccode\u003e@import\u003c/code\u003e over \u003ccode\u003e@typedef\u003c/code\u003e for simple imports (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9326\"\u003e#9326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stylelint/stylelint/commit/94eab544e488dddb43829353649da8debd6427b5\"\u003e\u003ccode\u003e94eab54\u003c/code\u003e\u003c/a\u003e Document using our PR template (\u003ca href=\"https://redirect.github.com/stylelint/stylelint/issues/9327\"\u003e#9327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/stylelint/stylelint/compare/17.12.0...17.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `typescript-eslint` from 8.60.0 to 8.60.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003etypescript-eslint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.60.1\u003c/h2\u003e\n\u003ch2\u003e8.60.1 (2026-06-01)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e respect ECMAScript line terminators in ts-comment rules (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12352\"\u003e#12352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-shadow] correct rule to match ESLint v10 handling (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12182\"\u003e#12182\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003cli\u003eNevette Bailey \u003ca href=\"https://github.com/nevette-bailey\"\u003e\u003ccode\u003e@​nevette-bailey\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.60.1\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md\"\u003etypescript-eslint's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.60.1 (2026-06-01)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for typescript-eslint to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.60.1\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/4f84a697aedc436559c3ae09b5b357d98b448d68\"\u003e\u003ccode\u003e4f84a69\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.60.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/1849b530c254fb4f89d7270160f3a998e4acd964\"\u003e\u003ccode\u003e1849b53\u003c/code\u003e\u003c/a\u003e chore: typecheck using tsgo (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint/issues/12139\"\u003e#12139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.60.1/packages/typescript-eslint\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `undici-types` from 8.3.0 to 8.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodejs/undici/releases\"\u003eundici-types's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: register connect listener before initiating requests in close-and-destroy test by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5272\"\u003enodejs/undici#5272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: stabilize tls-cert-leak regression by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5306\"\u003enodejs/undici#5306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace tspl with native test context in test/examples.js by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5300\"\u003enodejs/undici#5300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp2: remove redundant request stream binding by \u003ca href=\"https://github.com/trivikr\"\u003e\u003ccode\u003e@​trivikr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5302\"\u003enodejs/undici#5302\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: limit cache-tests workers on Windows by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5309\"\u003enodejs/undici#5309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: use test context cleanup hooks in parser issue tests by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5282\"\u003enodejs/undici#5282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd redirect option to strip headers on redirect by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5281\"\u003enodejs/undici#5281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(test): fix lint failure by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5316\"\u003enodejs/undici#5316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(ci): use \u003ccode\u003enpm ci\u003c/code\u003e instead of \u003ccode\u003enpm install\u003c/code\u003e by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5315\"\u003enodejs/undici#5315\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify formData security considerations by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5320\"\u003enodejs/undici#5320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add EventSource server example by \u003ca href=\"https://github.com/Will-thom\"\u003e\u003ccode\u003e@​Will-thom\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5321\"\u003enodejs/undici#5321\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): simplify \u003ccode\u003eaddAbortListener\u003c/code\u003e util by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5317\"\u003enodejs/undici#5317\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump ws from 8.20.0 to 8.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5325\"\u003enodejs/undici#5325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump jsondiffpatch from 0.7.3 to 0.7.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5313\"\u003enodejs/undici#5313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: match undici EoL to node version it's bundled in by \u003ca href=\"https://github.com/trivikr\"\u003e\u003ccode\u003e@​trivikr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5330\"\u003enodejs/undici#5330\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle all HTTP/2 request stream sync errors by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5311\"\u003enodejs/undici#5311\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve timeout errors for HTTP/2 requests by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5091\"\u003enodejs/undici#5091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(core): normalize autoSelectFamily timeout AggregateError by \u003ca href=\"https://github.com/youcefzemmar\"\u003e\u003ccode\u003e@​youcefzemmar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5329\"\u003enodejs/undici#5329\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(core): define \u003ccode\u003ekEnumerableProperty\u003c/code\u003e atomically by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5332\"\u003enodejs/undici#5332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(core): use \u003ccode\u003eregex.exec\u003c/code\u003e instead of \u003ccode\u003estring.match\u003c/code\u003e by \u003ca href=\"https://github.com/aduh95\"\u003e\u003ccode\u003e@​aduh95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5331\"\u003enodejs/undici#5331\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: reset invalid HTTP/2 sessions by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5310\"\u003enodejs/undici#5310\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(connect): add \u003ccode\u003epreferH2\u003c/code\u003e connector option to offer h2 first in ALPN by \u003ca href=\"https://github.com/Antamansid\"\u003e\u003ccode\u003e@​Antamansid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5327\"\u003enodejs/undici#5327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: fix flaky http2 trailers test by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5338\"\u003enodejs/undici#5338\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mock): restore single-arg MockCallHistory.filterCallsByX by \u003ca href=\"https://github.com/youcefzemmar\"\u003e\u003ccode\u003e@​youcefzemmar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5328\"\u003enodejs/undici#5328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: document missing error types in Errors.md by \u003ca href=\"https://github.com/cesarvspr\"\u003e\u003ccode\u003e@​cesarvspr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5339\"\u003enodejs/undici#5339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.35.3 to 4.36.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5346\"\u003enodejs/undici#5346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.9.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5347\"\u003enodejs/undici#5347\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump uWebSockets.js from v20.67.0 to v20.68.0 in /benchmarks by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5352\"\u003enodejs/undici#5352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump concurrently from 9.2.1 to 10.0.3 in /benchmarks by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5353\"\u003enodejs/undici#5353\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump step-security/harden-runner from 2.19.1 to 2.19.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5348\"\u003enodejs/undici#5348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 6.0.2 to 6.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5351\"\u003enodejs/undici#5351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump codecov/codecov-action from 6.0.0 to 6.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5349\"\u003enodejs/undici#5349\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: improve connect option documentation in Client.md by \u003ca href=\"https://github.com/AliMahmoudDev\"\u003e\u003ccode\u003e@​AliMahmoudDev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5344\"\u003enodejs/undici#5344\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mock): do not persist snapshots on close in playback mode by \u003ca href=\"https://github.com/GeoffreyBooth\"\u003e\u003ccode\u003e@​GeoffreyBooth\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5359\"\u003enodejs/undici#5359\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(fetch): remove abort listener when request settles by \u003ca href=\"https://github.com/ATOM00blue\"\u003e\u003ccode\u003e@​ATOM00blue\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5318\"\u003enodejs/undici#5318\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add Node.js global fetch regression coverage by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5361\"\u003enodejs/undici#5361\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(h2): make Client multiplex on h2 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4143\"\u003e#4143\u003c/a\u003e) by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5362\"\u003enodejs/undici#5362\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Will-thom\"\u003e\u003ccode\u003e@​Will-thom\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5321\"\u003enodejs/undici#5321\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/youcefzemmar\"\u003e\u003ccode\u003e@​youcefzemmar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5329\"\u003enodejs/undici#5329\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Antamansid\"\u003e\u003ccode\u003e@​Antamansid\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5327\"\u003enodejs/undici#5327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cesarvspr\"\u003e\u003ccode\u003e@​cesarvspr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5339\"\u003enodejs/undici#5339\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AliMahmoudDev\"\u003e\u003ccode\u003e@​AliMahmoudDev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5344\"\u003enodejs/undici#5344\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ATOM00blue\"\u003e\u003ccode\u003e@​ATOM00blue\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5318\"\u003enodejs/undici#5318\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v8.3.0...v8.4.0\"\u003ehttps://github.com/nodejs/undici/compare/v8.3.0...v8.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/43725b9913ebb3668af1c89d71a24a9ea0085e4f\"\u003e\u003ccode\u003e43725b9\u003c/code\u003e\u003c/a\u003e Bumped v8.4.0 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5370\"\u003e#5370\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/0acef154034717945b3fd58d070f3c52c570163b\"\u003e\u003ccode\u003e0acef15\u003c/code\u003e\u003c/a\u003e fix(h2): make Client multiplex on h2 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4143\"\u003e#4143\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5362\"\u003e#5362\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/c28254602b861999235e6abfd5cc56c6c324a1a6\"\u003e\u003ccode\u003ec282546\u003c/code\u003e\u003c/a\u003e test: add Node.js global fetch regression coverage (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5361\"\u003e#5361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/313f4e01689993cdb9a90a2d501d721885a80347\"\u003e\u003ccode\u003e313f4e0\u003c/code\u003e\u003c/a\u003e fix(fetch): remove abort listener when request settles (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5318\"\u003e#5318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/2f66db7322f4eefa3a014ec990becde802f08436\"\u003e\u003ccode\u003e2f66db7\u003c/code\u003e\u003c/a\u003e fix(mock): do not persist snapshots on close in playback mode (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5359\"\u003e#5359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/9b1d58fccdfcbbf138edc72bc33434e135918731\"\u003e\u003ccode\u003e9b1d58f\u003c/code\u003e\u003c/a\u003e docs: improve connect option documentation in Client.md (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5344\"\u003e#5344\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/55d3a9f3db88fd13e6898a49e6f2ce0e777636f9\"\u003e\u003ccode\u003e55d3a9f\u003c/code\u003e\u003c/a\u003e build(deps): bump codecov/codecov-action from 6.0.0 to 6.0.1 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5349\"\u003e#5349\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/7a7bb9d3059a01e50157fe2712617fb678b7d07e\"\u003e\u003ccode\u003e7a7bb9d\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5351\"\u003e#5351\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/b056727f2c3d745b120f479f8fa81bc06cca8f10\"\u003e\u003ccode\u003eb056727\u003c/code\u003e\u003c/a\u003e build(deps): bump step-security/harden-runner from 2.19.1 to 2.19.4 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5348\"\u003e#5348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/1f1407dcec6ded4736e51292c0d25d2480e773af\"\u003e\u003ccode\u003e1f1407d\u003c/code\u003e\u003c/a\u003e build(deps): bump concurrently from 9.2.1 to 10.0.3 in /benchmarks (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5353\"\u003e#5353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodejs/undici/compare/v8.3.0...v8.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/4cm4k1/flowcrypt-browser/pull/831","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/4cm4k1%2Fflowcrypt-browser/issues/831","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/831/packages"}},{"old_version":"6.0.1","new_version":"6.1.1","update_type":"minor","path":null,"pr_created_at":"2026-03-10T19:19:29.000Z","version_change":"6.0.1 → 6.1.1","issue":{"uuid":"4053727888","node_id":"PR_kwDOIf4Sk87Je3_m","number":14,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 21 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-11T00:09:22.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-10T19:19:29.000Z","updated_at":"2026-03-11T00:09:24.000Z","time_to_close":17393,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":21,"packages":[{"name":"diff","old_version":"7.0.0","new_version":"8.0.3","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"simple-git","old_version":"3.27.0","new_version":"3.32.3","repository_url":"https://github.com/steveukx/git-js"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.10","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"6.0.1","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.26.0","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.12","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.1","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 20 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `7.0.0` | `8.0.3` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.27.0` | `3.32.3` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.10` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.0.1` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.12` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the DefinitelyTyped types to JsDiff's own type definitions includes multiple fixes and also removes many exported types previously used for \u003ccode\u003eoptions\u003c/code\u003e arguments to diffing and patch-generation functions. (There are now different exported options types for abortable calls - ones with a \u003ccode\u003etimeout\u003c/code\u003e or \u003ccode\u003emaxEditLength\u003c/code\u003e that may give a result of \u003ccode\u003eundefined\u003c/code\u003e - and non-abortable calls.) See the TypeScript section of the README for some usage tips.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eDiff\u003c/code\u003e object is now a class\u003c/strong\u003e. Custom extensions of \u003ccode\u003eDiff\u003c/code\u003e, as described in the \u0026quot;Defining custom diffing behaviors\u0026quot; section of the README, can therefore now be done by writing a \u003ccode\u003eclass CustomDiff extends Diff\u003c/code\u003e and overriding methods, instead of the old way based on prototype inheritance. (I \u003cem\u003ethink\u003c/em\u003e code that did things the old way should still work, though!)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediff/lib/index.es6.js\u003c/code\u003e and \u003ccode\u003ediff/lib/index.mjs\u003c/code\u003e no longer exist, and the ESM version of the library is no longer bundled into a single file.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option for \u003ccode\u003ediffWords\u003c/code\u003e is no longer included in the type declarations\u003c/strong\u003e. The effect of passing \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e has always been to make \u003ccode\u003ediffWords\u003c/code\u003e just call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead, which was confusing, because that behaviour doesn't seem properly described as \u0026quot;ignoring\u0026quot; whitespace at all. The property remains available to non-TypeScript applications for the sake of backwards compatibility, but TypeScript applications will now see a type error if they try to pass \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e to \u003ccode\u003ediffWords\u003c/code\u003e and should change their code to call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJsDiff no longer purports to support ES3 environments. (I'm pretty sure it never truly did, despite claiming to in its README, since even the 1.0.0 release used \u003ccode\u003eArray.map\u003c/code\u003e which was added in ES5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/601\"\u003e#601\u003c/a\u003e - \u003cstrong\u003e\u003ccode\u003ediffJson\u003c/code\u003e's \u003ccode\u003estringifyReplacer\u003c/code\u003e option behaves more like \u003ccode\u003eJSON.stringify\u003c/code\u003e's \u003ccode\u003ereplacer\u003c/code\u003e argument now.\u003c/strong\u003e In particular:\n\u003cul\u003e\n\u003cli\u003eEach key/value pair now gets passed through the replacer once instead of twice\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ekey\u003c/code\u003e passed to the replacer when the top-level object is passed in as \u003ccode\u003evalue\u003c/code\u003e is now \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (previously, was \u003ccode\u003eundefined\u003c/code\u003e), and the \u003ccode\u003ekey\u003c/code\u003e passed with an array element is the array index as a string, like \u003ccode\u003e\u0026quot;0\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;1\u0026quot;\u003c/code\u003e (previously was whatever the key for the entire array was). Both the new behaviours match that of \u003ccode\u003eJSON.stringify\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/602\"\u003e#602\u003c/a\u003e - \u003cstrong\u003ediffing functions now consistently return \u003ccode\u003eundefined\u003c/code\u003e when called in async mode\u003c/strong\u003e (i.e. with a callback). Previously, there was an odd quirk where they would return \u003ccode\u003etrue\u003c/code\u003e if the strings being diffed were equal and \u003ccode\u003eundefined\u003c/code\u003e otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/1179ccb0d31f497449e998a6e67b1b9220565764\"\u003e\u003ccode\u003e1179ccb\u003c/code\u003e\u003c/a\u003e Ignore .zed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/949d6e2a44622b15b5a5be3ffcf196869c5a6b4c\"\u003e\u003ccode\u003e949d6e2\u003c/code\u003e\u003c/a\u003e Add test for the vuln I just fixed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/650\"\u003e#650\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/15a1585230748c8ae6f8274c202e0c87309142f5\"\u003e\u003ccode\u003e15a1585\u003c/code\u003e\u003c/a\u003e Fix the second denial-of-service vulnerability in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/649\"\u003e#649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/de95cca5329730cf9dcdd85c634633693b3ab3db\"\u003e\u003ccode\u003ede95cca\u003c/code\u003e\u003c/a\u003e Fix potentially cubic-time regex in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b9aeedef3fe4764c3408b52990767bd7ac0425ab\"\u003e\u003ccode\u003eb9aeede\u003c/code\u003e\u003c/a\u003e Allow more customisation of file headers in patches (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/641\"\u003e#641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/43c716c4a38aeb72939e41e7ef353a33615335bf\"\u003e\u003ccode\u003e43c716c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/636\"\u003e#636\u003c/a\u003e from kpdecker/dependabot/npm_and_yarn/node-forge-1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b8162c77d711e9c17e440e4f62bad7c88fad1a88\"\u003e\u003ccode\u003eb8162c7\u003c/code\u003e\u003c/a\u003e Bump node-forge from 1.3.1 to 1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad6dc1728e52e4124abcbf906072eaeaa9e63aea\"\u003e\u003ccode\u003ead6dc17\u003c/code\u003e\u003c/a\u003e Fix some bugs in the diffWords regex (and errors \u0026amp; ambiguities in the comment...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3e1774afcfadc806baa58ee780923e4d4097319a\"\u003e\u003ccode\u003e3e1774a\u003c/code\u003e\u003c/a\u003e Fix a comment typo (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/633\"\u003e#633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/7.0.0...v8.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.27.0 to 3.32.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ebc77774: Correctly identify current branch name when using \u003ccode\u003egit.status\u003c/code\u003e in a cloned empty repo.\u003c/p\u003e\n\u003cp\u003ePreviously \u003ccode\u003egit.status\u003c/code\u003e would report the current branch name as \u003ccode\u003eNo\u003c/code\u003e. Thank you to \u003ca href=\"https://github.com/MaddyGuthridge\"\u003e\u003ccode\u003e@​MaddyGuthridge\u003c/code\u003e\u003c/a\u003e for identifying this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.28.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2adf47d: Allow repeating git options like \u003ccode\u003e{'--opt': ['value1', 'value2']}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e22dc93f: Custom binary plugin should support the use of \u003ccode\u003e~\u003c/code\u003e character, used by Windows to shorten long folder names\nand folder names that have spaces in them (eg: \u003ccode\u003eC:\\Program Files\u003c/code\u003e might become \u003ccode\u003eC:\\PROGRA~1\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/skyshineb\"\u003e\u003ccode\u003e@​skyshineb\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/a1170e506eeeaade4a242bfbf6d0620d57872364\"\u003e\u003ccode\u003ea1170e5\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f7042088aa2dac59e3c49a84d7a2f4b26048a257\"\u003e\u003ccode\u003ef704208\u003c/code\u003e\u003c/a\u003e In extension to CVE-2022-25912, switch to case-insensitive check for `protoco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/4bb20811eb35c0fa5437553cad4eb8ebf8f6f6e6\"\u003e\u003ccode\u003e4bb2081\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7ae7537737bafc1e6559a28816785b10926fb095\"\u003e\u003ccode\u003e7ae7537\u003c/code\u003e\u003c/a\u003e Match tokens to word boundary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/c47ad103b07ce768cf69aec63e0c9f7f77a1ab0f\"\u003e\u003ccode\u003ec47ad10\u003c/code\u003e\u003c/a\u003e Lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/8d02097b726c2bc5360b4f55ee3ecb7e09648e4d\"\u003e\u003ccode\u003e8d02097\u003c/code\u003e\u003c/a\u003e Enhanced clone switch detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f6909a52807512cb4e29a654db2dcd409b019113\"\u003e\u003ccode\u003ef6909a5\u003c/code\u003e\u003c/a\u003e Remove test timeout override\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/77406267ceb19aa901495b6ae414020daf789ebf\"\u003e\u003ccode\u003e7740626\u003c/code\u003e\u003c/a\u003e Update plugin.unsafe.spec.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/b562a6c4c1a226d9c7789b72c76784f334c1efac\"\u003e\u003ccode\u003eb562a6c\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/23b070f0a4d320af5e745a42ae6176a629409566\"\u003e\u003ccode\u003e23b070f\u003c/code\u003e\u003c/a\u003e Fix regex for CLONE_OPTIONS constant (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.32.3/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for simple-git since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f\"\u003e\u003ccode\u003e7bc755d\u003c/code\u003e\u003c/a\u003e parse root off paths before sanitizing .. parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/c8cb84629dee649feedde03f2f4ea48f2e44e778\"\u003e\u003ccode\u003ec8cb846\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/1f0c2c9006b10199cf2686f8ef43e79a1773e1aa\"\u003e\u003ccode\u003e1f0c2c9\u003c/code\u003e\u003c/a\u003e 7.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/fbb08518bf290733b68ca4d4135f75becf73fd75\"\u003e\u003ccode\u003efbb0851\u003c/code\u003e\u003c/a\u003e build minified version as default export\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.0.1 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.26.0 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.12 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631...\n\n_Description has been truncated_","html_url":"https://github.com/omercnet/renovate/pull/14","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/omercnet%2Frenovate/issues/14","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/14/packages"}},{"old_version":"5.11.2","new_version":"6.1.1","update_type":"major","path":null,"pr_created_at":"2026-03-10T19:19:12.000Z","version_change":"5.11.2 → 6.1.1","issue":{"uuid":"4053726775","node_id":"PR_kwDOM3OYIc7Je3wo","number":8,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 22 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-11T03:01:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-10T19:19:12.000Z","updated_at":"2026-03-11T03:01:53.000Z","time_to_close":27758,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":22,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"simple-git","old_version":"3.26.0","new_version":"3.32.3","repository_url":"https://github.com/steveukx/git-js"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.10","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 21 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.26.0` | `3.32.3` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.10` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.26.0 to 3.32.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ebc77774: Correctly identify current branch name when using \u003ccode\u003egit.status\u003c/code\u003e in a cloned empty repo.\u003c/p\u003e\n\u003cp\u003ePreviously \u003ccode\u003egit.status\u003c/code\u003e would report the current branch name as \u003ccode\u003eNo\u003c/code\u003e. Thank you to \u003ca href=\"https://github.com/MaddyGuthridge\"\u003e\u003ccode\u003e@​MaddyGuthridge\u003c/code\u003e\u003c/a\u003e for identifying this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.28.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2adf47d: Allow repeating git options like \u003ccode\u003e{'--opt': ['value1', 'value2']}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.27.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e22dc93f: Custom binary plugin should support the use of \u003ccode\u003e~\u003c/code\u003e character, used by Windows to shorten long folder names\nand folder names that have spaces in them (eg: \u003ccode\u003eC:\\Program Files\u003c/code\u003e might become \u003ccode\u003eC:\\PROGRA~1\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/skyshineb\"\u003e\u003ccode\u003e@​skyshineb\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/a1170e506eeeaade4a242bfbf6d0620d57872364\"\u003e\u003ccode\u003ea1170e5\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f7042088aa2dac59e3c49a84d7a2f4b26048a257\"\u003e\u003ccode\u003ef704208\u003c/code\u003e\u003c/a\u003e In extension to CVE-2022-25912, switch to case-insensitive check for `protoco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/4bb20811eb35c0fa5437553cad4eb8ebf8f6f6e6\"\u003e\u003ccode\u003e4bb2081\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7ae7537737bafc1e6559a28816785b10926fb095\"\u003e\u003ccode\u003e7ae7537\u003c/code\u003e\u003c/a\u003e Match tokens to word boundary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/c47ad103b07ce768cf69aec63e0c9f7f77a1ab0f\"\u003e\u003ccode\u003ec47ad10\u003c/code\u003e\u003c/a\u003e Lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/8d02097b726c2bc5360b4f55ee3ecb7e09648e4d\"\u003e\u003ccode\u003e8d02097\u003c/code\u003e\u003c/a\u003e Enhanced clone switch detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f6909a52807512cb4e29a654db2dcd409b019113\"\u003e\u003ccode\u003ef6909a5\u003c/code\u003e\u003c/a\u003e Remove test timeout override\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/77406267ceb19aa901495b6ae414020daf789ebf\"\u003e\u003ccode\u003e7740626\u003c/code\u003e\u003c/a\u003e Update plugin.unsafe.spec.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/b562a6c4c1a226d9c7789b72c76784f334c1efac\"\u003e\u003ccode\u003eb562a6c\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/23b070f0a4d320af5e745a42ae6176a629409566\"\u003e\u003ccode\u003e23b070f\u003c/code\u003e\u003c/a\u003e Fix regex for CLONE_OPTIONS constant (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.32.3/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for simple-git since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f\"\u003e\u003ccode\u003e7bc755d\u003c/code\u003e\u003c/a\u003e parse root off paths before sanitizing .. parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/c8cb84629dee649feedde03f2f4ea48f2e44e778\"\u003e\u003ccode\u003ec8cb846\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/1f0c2c9006b10199cf2686f8ef43e79a1773e1aa\"\u003e\u003ccode\u003e1f0c2c9\u003c/code\u003e\u003c/a\u003e 7.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/fbb08518bf290733b68ca4d4135f75becf73fd75\"\u003e\u003ccode\u003efbb0851\u003c/code\u003e\u003c/a\u003e build minified version as default export\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6...\n\n_Description has been truncated_","html_url":"https://github.com/Jguest7/renovate/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}},{"old_version":"6.2.2","new_version":"6.3.0","update_type":"minor","path":null,"pr_created_at":"2026-03-07T02:49:30.000Z","version_change":"6.2.2 → 6.3.0","issue":{"uuid":"4037098545","node_id":"PR_kwDOP5MuvM7Ipjl1","number":83,"state":"closed","title":"build(deps): bump the minor-patches group across 1 directory with 46 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-07T05:52:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-07T02:49:30.000Z","updated_at":"2026-03-07T05:52:28.000Z","time_to_close":10977,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"minor-patches","update_count":46,"packages":[{"name":"@aws-sdk/client-lambda","old_version":"3.940.0","new_version":"3.1004.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/client-secrets-manager","old_version":"3.940.0","new_version":"3.1004.0","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@aws-sdk/util-arn-parser","old_version":"3.893.0","new_version":"3.972.3","repository_url":"https://github.com/aws/aws-sdk-js-v3"},{"name":"@casl/ability","old_version":"6.7.5","new_version":"6.8.0","repository_url":"https://github.com/stalniy/casl"},{"name":"@nestjs/throttler","old_version":"6.4.0","new_version":"6.5.0","repository_url":"https://github.com/nestjs/throttler"},{"name":"@tanstack/react-query","old_version":"5.90.11","new_version":"5.90.21","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-query-devtools","old_version":"5.91.1","new_version":"5.91.3","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-virtual","old_version":"3.13.12","new_version":"3.13.21","repository_url":"https://github.com/TanStack/virtual"},{"name":"class-validator","old_version":"0.14.3","new_version":"0.15.1","repository_url":"https://github.com/typestack/class-validator"},{"name":"express-session","old_version":"1.18.2","new_version":"1.19.0","repository_url":"https://github.com/expressjs/session"},{"name":"jotai","old_version":"2.15.1","new_version":"2.18.0","repository_url":"https://github.com/pmndrs/jotai"},{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"pg","old_version":"8.16.3","new_version":"8.20.0","repository_url":"https://github.com/brianc/node-postgres"},{"name":"react-error-boundary","old_version":"6.0.0","new_version":"6.1.1","repository_url":"https://github.com/bvaughn/react-error-boundary"},{"name":"react-hook-form","old_version":"7.67.0","new_version":"7.71.2","repository_url":"https://github.com/react-hook-form/react-hook-form"},{"name":"typeorm","old_version":"0.3.27","new_version":"0.3.28","repository_url":"https://github.com/typeorm/typeorm"},{"name":"@nestjs/schematics","old_version":"11.0.0","new_version":"11.0.9","repository_url":"https://github.com/nestjs/schematics"},{"name":"@nx/cypress","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/devkit","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/eslint","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/eslint-plugin","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/jest","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/js","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/nest","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/node","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/plugin","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/react","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/storybook","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/vite","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/web","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/webpack","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@nx/workspace","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"@swc/cli","old_version":"0.6.0","new_version":"0.8.0","repository_url":"https://github.com/swc-project/pkgs"},{"name":"@swc/core","old_version":"1.14.0","new_version":"1.15.18","repository_url":"https://github.com/swc-project/swc"},{"name":"@testing-library/react","old_version":"16.1.0","new_version":"16.3.2","repository_url":"https://github.com/testing-library/react-testing-library"},{"name":"babel-jest","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"eslint-config-prettier","old_version":"10.0.0","new_version":"10.1.8","repository_url":"https://github.com/prettier/eslint-config-prettier"},{"name":"eslint-plugin-import","old_version":"2.31.0","new_version":"2.32.0","repository_url":"https://github.com/import-js/eslint-plugin-import"},{"name":"eslint-plugin-jsx-a11y","old_version":"6.10.1","new_version":"6.10.2","repository_url":"https://github.com/jsx-eslint/eslint-plugin-jsx-a11y"},{"name":"html-webpack-plugin","old_version":"5.6.5","new_version":"5.6.6","repository_url":"https://github.com/jantimon/html-webpack-plugin"},{"name":"jest","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"jest-environment-jsdom","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"jest-util","old_version":"30.0.5","new_version":"30.2.0","repository_url":"https://github.com/jestjs/jest"},{"name":"jiti","old_version":"2.4.2","new_version":"2.6.1","repository_url":"https://github.com/unjs/jiti"},{"name":"nx","old_version":"22.1.3","new_version":"22.5.4","repository_url":"https://github.com/nrwl/nx"},{"name":"semantic-release","old_version":"25.0.2","new_version":"25.0.3","repository_url":"https://github.com/semantic-release/semantic-release"}],"path":null,"ecosystem":"npm"},"body":"Bumps the minor-patches group with 46 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@aws-sdk/client-lambda](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda) | `3.940.0` | `3.1004.0` |\n| [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) | `3.940.0` | `3.1004.0` |\n| [@aws-sdk/util-arn-parser](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/packages-internal/util-arn-parser) | `3.893.0` | `3.972.3` |\n| [@casl/ability](https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability) | `6.7.5` | `6.8.0` |\n| [@nestjs/throttler](https://github.com/nestjs/throttler) | `6.4.0` | `6.5.0` |\n| [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.90.11` | `5.90.21` |\n| [@tanstack/react-query-devtools](https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools) | `5.91.1` | `5.91.3` |\n| [@tanstack/react-virtual](https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual) | `3.13.12` | `3.13.21` |\n| [class-validator](https://github.com/typestack/class-validator) | `0.14.3` | `0.15.1` |\n| [express-session](https://github.com/expressjs/session) | `1.18.2` | `1.19.0` |\n| [jotai](https://github.com/pmndrs/jotai) | `2.15.1` | `2.18.0` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.2.2` | `6.3.0` |\n| [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg) | `8.16.3` | `8.20.0` |\n| [react-error-boundary](https://github.com/bvaughn/react-error-boundary) | `6.0.0` | `6.1.1` |\n| [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.67.0` | `7.71.2` |\n| [typeorm](https://github.com/typeorm/typeorm) | `0.3.27` | `0.3.28` |\n| [@nestjs/schematics](https://github.com/nestjs/schematics) | `11.0.0` | `11.0.9` |\n| [@nx/cypress](https://github.com/nrwl/nx/tree/HEAD/packages/cypress) | `22.1.3` | `22.5.4` |\n| [@nx/devkit](https://github.com/nrwl/nx/tree/HEAD/packages/devkit) | `22.1.3` | `22.5.4` |\n| [@nx/eslint](https://github.com/nrwl/nx/tree/HEAD/packages/eslint) | `22.1.3` | `22.5.4` |\n| [@nx/eslint-plugin](https://github.com/nrwl/nx/tree/HEAD/packages/eslint-plugin) | `22.1.3` | `22.5.4` |\n| [@nx/jest](https://github.com/nrwl/nx/tree/HEAD/packages/jest) | `22.1.3` | `22.5.4` |\n| [@nx/js](https://github.com/nrwl/nx/tree/HEAD/packages/js) | `22.1.3` | `22.5.4` |\n| [@nx/nest](https://github.com/nrwl/nx/tree/HEAD/packages/nest) | `22.1.3` | `22.5.4` |\n| [@nx/node](https://github.com/nrwl/nx/tree/HEAD/packages/node) | `22.1.3` | `22.5.4` |\n| [@nx/plugin](https://github.com/nrwl/nx/tree/HEAD/packages/plugin) | `22.1.3` | `22.5.4` |\n| [@nx/react](https://github.com/nrwl/nx/tree/HEAD/packages/react) | `22.1.3` | `22.5.4` |\n| [@nx/storybook](https://github.com/nrwl/nx/tree/HEAD/packages/storybook) | `22.1.3` | `22.5.4` |\n| [@nx/vite](https://github.com/nrwl/nx/tree/HEAD/packages/vite) | `22.1.3` | `22.5.4` |\n| [@nx/web](https://github.com/nrwl/nx/tree/HEAD/packages/web) | `22.1.3` | `22.5.4` |\n| [@nx/webpack](https://github.com/nrwl/nx/tree/HEAD/packages/webpack) | `22.1.3` | `22.5.4` |\n| [@nx/workspace](https://github.com/nrwl/nx/tree/HEAD/packages/workspace) | `22.1.3` | `22.5.4` |\n| [@swc/cli](https://github.com/swc-project/pkgs) | `0.6.0` | `0.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.14.0` | `1.15.18` |\n| [@testing-library/react](https://github.com/testing-library/react-testing-library) | `16.1.0` | `16.3.2` |\n| [babel-jest](https://github.com/jestjs/jest/tree/HEAD/packages/babel-jest) | `30.0.5` | `30.2.0` |\n| [eslint-config-prettier](https://github.com/prettier/eslint-config-prettier) | `10.0.0` | `10.1.8` |\n| [eslint-plugin-import](https://github.com/import-js/eslint-plugin-import) | `2.31.0` | `2.32.0` |\n| [eslint-plugin-jsx-a11y](https://github.com/jsx-eslint/eslint-plugin-jsx-a11y) | `6.10.1` | `6.10.2` |\n| [html-webpack-plugin](https://github.com/jantimon/html-webpack-plugin) | `5.6.5` | `5.6.6` |\n| [jest](https://github.com/jestjs/jest/tree/HEAD/packages/jest) | `30.0.5` | `30.2.0` |\n| [jest-environment-jsdom](https://github.com/jestjs/jest/tree/HEAD/packages/jest-environment-jsdom) | `30.0.5` | `30.2.0` |\n| [jest-util](https://github.com/jestjs/jest/tree/HEAD/packages/jest-util) | `30.0.5` | `30.2.0` |\n| [jiti](https://github.com/unjs/jiti) | `2.4.2` | `2.6.1` |\n| [nx](https://github.com/nrwl/nx/tree/HEAD/packages/nx) | `22.1.3` | `22.5.4` |\n| [semantic-release](https://github.com/semantic-release/semantic-release) | `25.0.2` | `25.0.3` |\n\n\nUpdates `@aws-sdk/client-lambda` from 3.940.0 to 3.1004.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e\u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1004.0\u003c/h2\u003e\n\u003ch4\u003e3.1004.0(2026-03-06)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecodegen:\u003c/strong\u003e  smithy-aws-typescript-codegen 0.46.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7825\"\u003e#7825\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9652a4b1b1796b35ef24fd7be4c13ed6eb1deb24\"\u003e9652a4b1\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-06 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8c6015c0d1c17e8807e3be1326377bcf2176efdd\"\u003e8c6015c0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-gameliftstreams:\u003c/strong\u003e  Added new Gen6 stream classes based on the EC2 G6f instance family. These stream classes provide cost-optimized options for streaming well-optimized or lower-fidelity games on Windows environments. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3ce882b68e004b3589f882c1d5fbb9443e07b5b1\"\u003e3ce882b6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Amazon Bedrock Guardrails account-level enforcement APIs now support lists for model inclusion and exclusion from guardrail enforcement. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/63b3598691d116dadd5c389362be5369d5901a39\"\u003e63b35986\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connect:\u003c/strong\u003e  Amazon Connect now supports the ability to programmatically configure and run automated tests for contact center experiences for Chat. Integrate testing into CICD pipelines, run multiple tests at scale, and retrieve results via API to automate validation of chat interactions and workflows. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/696614ae8195f9ba2f9d3366e2d27e3aacf45726\"\u003e696614ae\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bcm-data-exports:\u003c/strong\u003e  Fixed wrong endpoint resolutions in few regions. Added AWS CFN resource schema for BCM Data Exports. Added max value validation for pagination parameter. Fixed ARN format validation for BCM Data Exports resources. Updated size constraints for table properties. Added AccessDeniedException error. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/23fdf9940dbeb9fab236e565d4ef529779a19862\"\u003e23fdf994\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  AWS Deadline Cloud now supports cost scale factors for farms, enabling studios to adjust reported costs to reflect their actual rendering economics. Adjusted costs are reflected in Deadline Cloud's Usage Explorer and Budgets. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/16f6d5104bf57a9d034affe12f33d4f424c7ed0f\"\u003e16f6d510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-appintegrations:\u003c/strong\u003e  This release adds support for webhooks, allowing customers to create an Event Integration with a webhook source. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/c86ed4e1a4295d2654b2cc1ef8e195a6a97bcb58\"\u003ec86ed4e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore-control:\u003c/strong\u003e  Adds support for streaming memory records in AgentCore Memory (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/174685704e07d5b8cbb6414cd6d9f2f6a85736c3\"\u003e17468570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sesv2:\u003c/strong\u003e  Adds support for longer email message header values, increasing the maximum length from 870 to 995 characters for RFC 5322 compliance. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3a573039fa760964ce4b8aef17b46b96183f3087\"\u003e3a573039\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ebuild:\u003c/strong\u003e  fix package release ordering (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7829\"\u003e#7829\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/cc6da58f9b94de5e1bd45b6486fecdf222f669d1\"\u003ecc6da58f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-user-agent:\u003c/strong\u003e  use retry strategy mode property instead of legacy fallback (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7811\"\u003e#7811\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/db7863372abba6035e12aaf8a015f9f6bc020bbb\"\u003edb786337\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1004.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1003.0\u003c/h2\u003e\n\u003ch4\u003e3.1003.0(2026-03-05)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003ebump '@smithy/*' dependencies (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7822\"\u003e#7822\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e8ddd5442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eset downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7817\"\u003e#7817\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e03dad66b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003estrip trailing periods when the last character is non-alphanumeric (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7821\"\u003e#7821\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6b5b50b248cceac0353ad6b2dd3be974db27c6a4\"\u003e6b5b50b2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esort missed package.json files (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7820\"\u003e#7820\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/297b56431a1c8fe0563a55d35dd80c02e9bfb386\"\u003e297b5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003einclude deprecated-since in generated tsdoc (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7815\"\u003e#7815\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/17ecb20a27d0c2b7968db1edf3b453e4a4732849\"\u003e17ecb20a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-05 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e9a8d8dea104165b03857c991d4e9e8ae4dec3a3\"\u003ee9a8d8de\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-guardduty:\u003c/strong\u003e  Added MALICIOUS FILE to IndicatorType enum in MDC Sequence (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb9d466281db2b1023129d249ed576bd94730b18\"\u003ebb9d4662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-savingsplans:\u003c/strong\u003e  Added support for OpenSearch and Neptune Analytics to Database Savings Plans. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9e0639134fff8635622886260fb2127daa8778de\"\u003e9e063913\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sagemaker:\u003c/strong\u003e  Adds support for S3 Bucket Ownership validation for SageMaker Managed MLflow. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b62165643e03cc036e13cd463cde57116f36b38b\"\u003eb6216564\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connecthealth:\u003c/strong\u003e  Connect-Health SDK is AWS's unified SDK for the Amazon Connect Health offering. It allows healthcare developers to integrate purpose-built agents - such as patient insights, ambient documentation, and medical coding - into their existing applications, including EHRs, telehealth, and revenue cycle. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/454c6cb7d73b92d737c008a9d9ef7fdb6365d647\"\u003e454c6cb7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mpa:\u003c/strong\u003e  Updates to multi-party approval (MPA) service to add support for approval team baseline operations. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e95815438c56f42e2ffa47962c1aaa3c82afeef8\"\u003ee9581543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added metadata field to CapacityAllocation. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/d7cce1c2a1a299c49f16f9bc02ee88d904d723de\"\u003ed7cce1c2\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-lambda/CHANGELOG.md\"\u003e\u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1003.0...v3.1004.0\"\u003e3.1004.0\u003c/a\u003e (2026-03-06)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1002.0...v3.1003.0\"\u003e3.1003.0\u003c/a\u003e (2026-03-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1001.0...v3.1002.0\"\u003e3.1002.0\u003c/a\u003e (2026-03-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1000.0...v3.1001.0\"\u003e3.1001.0\u003c/a\u003e (2026-03-03)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.999.0...v3.1000.0\"\u003e3.1000.0\u003c/a\u003e (2026-02-27)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.998.0...v3.999.0\"\u003e3.999.0\u003c/a\u003e (2026-02-26)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-lambda\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.997.0...v3.998.0\"\u003e3.998.0\u003c/a\u003e (2026-02-25)\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/7c0815232f14789a405ec73195945552d991beb4\"\u003e\u003ccode\u003e7c08152\u003c/code\u003e\u003c/a\u003e Publish v3.1004.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4c36ea38e9ddc6deacd435c7c590921940f4c9ff\"\u003e\u003ccode\u003e4c36ea3\u003c/code\u003e\u003c/a\u003e Publish v3.1003.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e\u003ccode\u003e8ddd544\u003c/code\u003e\u003c/a\u003e chore: bump '@smithy/*' dependencies (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7822\"\u003e#7822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6b5b50b248cceac0353ad6b2dd3be974db27c6a4\"\u003e\u003ccode\u003e6b5b50b\u003c/code\u003e\u003c/a\u003e chore(clients): strip trailing periods when the last character is non-alphanu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e\u003ccode\u003e03dad66\u003c/code\u003e\u003c/a\u003e chore: set downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7817\"\u003e#7817\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/17ecb20a27d0c2b7968db1edf3b453e4a4732849\"\u003e\u003ccode\u003e17ecb20\u003c/code\u003e\u003c/a\u003e chore(clients): include deprecated-since in generated tsdoc (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7815\"\u003e#7815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/37f1adc72295176f8d844f5eaa13b427e27b28d6\"\u003e\u003ccode\u003e37f1adc\u003c/code\u003e\u003c/a\u003e test(clients): run client feature tests in browser mode too (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7808\"\u003e#7808\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/800431bb02b71bad13537bc615e456df77776b22\"\u003e\u003ccode\u003e800431b\u003c/code\u003e\u003c/a\u003e Publish v3.1002.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b8467bd179319f86804fea08e1b09d3a95166603\"\u003e\u003ccode\u003eb8467bd\u003c/code\u003e\u003c/a\u003e Publish v3.1001.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ab9e775920c7900a2759c22385091aa88eb6ee15\"\u003e\u003ccode\u003eab9e775\u003c/code\u003e\u003c/a\u003e chore(codegen): upgrade smithy 1.68.0 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda/issues/7806\"\u003e#7806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1004.0/clients/client-lambda\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/client-secrets-manager` from 3.940.0 to 3.1004.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e\u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1004.0\u003c/h2\u003e\n\u003ch4\u003e3.1004.0(2026-03-06)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecodegen:\u003c/strong\u003e  smithy-aws-typescript-codegen 0.46.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7825\"\u003e#7825\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9652a4b1b1796b35ef24fd7be4c13ed6eb1deb24\"\u003e9652a4b1\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-06 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8c6015c0d1c17e8807e3be1326377bcf2176efdd\"\u003e8c6015c0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-gameliftstreams:\u003c/strong\u003e  Added new Gen6 stream classes based on the EC2 G6f instance family. These stream classes provide cost-optimized options for streaming well-optimized or lower-fidelity games on Windows environments. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3ce882b68e004b3589f882c1d5fbb9443e07b5b1\"\u003e3ce882b6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock:\u003c/strong\u003e  Amazon Bedrock Guardrails account-level enforcement APIs now support lists for model inclusion and exclusion from guardrail enforcement. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/63b3598691d116dadd5c389362be5369d5901a39\"\u003e63b35986\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connect:\u003c/strong\u003e  Amazon Connect now supports the ability to programmatically configure and run automated tests for contact center experiences for Chat. Integrate testing into CICD pipelines, run multiple tests at scale, and retrieve results via API to automate validation of chat interactions and workflows. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/696614ae8195f9ba2f9d3366e2d27e3aacf45726\"\u003e696614ae\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bcm-data-exports:\u003c/strong\u003e  Fixed wrong endpoint resolutions in few regions. Added AWS CFN resource schema for BCM Data Exports. Added max value validation for pagination parameter. Fixed ARN format validation for BCM Data Exports resources. Updated size constraints for table properties. Added AccessDeniedException error. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/23fdf9940dbeb9fab236e565d4ef529779a19862\"\u003e23fdf994\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-deadline:\u003c/strong\u003e  AWS Deadline Cloud now supports cost scale factors for farms, enabling studios to adjust reported costs to reflect their actual rendering economics. Adjusted costs are reflected in Deadline Cloud's Usage Explorer and Budgets. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/16f6d5104bf57a9d034affe12f33d4f424c7ed0f\"\u003e16f6d510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-appintegrations:\u003c/strong\u003e  This release adds support for webhooks, allowing customers to create an Event Integration with a webhook source. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/c86ed4e1a4295d2654b2cc1ef8e195a6a97bcb58\"\u003ec86ed4e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-agentcore-control:\u003c/strong\u003e  Adds support for streaming memory records in AgentCore Memory (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/174685704e07d5b8cbb6414cd6d9f2f6a85736c3\"\u003e17468570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sesv2:\u003c/strong\u003e  Adds support for longer email message header values, increasing the maximum length from 870 to 995 characters for RFC 5322 compliance. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3a573039fa760964ce4b8aef17b46b96183f3087\"\u003e3a573039\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eBug Fixes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ebuild:\u003c/strong\u003e  fix package release ordering (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7829\"\u003e#7829\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/cc6da58f9b94de5e1bd45b6486fecdf222f669d1\"\u003ecc6da58f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emiddleware-user-agent:\u003c/strong\u003e  use retry strategy mode property instead of legacy fallback (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7811\"\u003e#7811\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/db7863372abba6035e12aaf8a015f9f6bc020bbb\"\u003edb786337\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.1004.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1003.0\u003c/h2\u003e\n\u003ch4\u003e3.1003.0(2026-03-05)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003ebump '@smithy/*' dependencies (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7822\"\u003e#7822\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e8ddd5442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eset downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7817\"\u003e#7817\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e03dad66b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003estrip trailing periods when the last character is non-alphanumeric (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7821\"\u003e#7821\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/6b5b50b248cceac0353ad6b2dd3be974db27c6a4\"\u003e6b5b50b2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esort missed package.json files (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7820\"\u003e#7820\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/297b56431a1c8fe0563a55d35dd80c02e9bfb386\"\u003e297b5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003einclude deprecated-since in generated tsdoc (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7815\"\u003e#7815\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/17ecb20a27d0c2b7968db1edf3b453e4a4732849\"\u003e17ecb20a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-03-05 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e9a8d8dea104165b03857c991d4e9e8ae4dec3a3\"\u003ee9a8d8de\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-guardduty:\u003c/strong\u003e  Added MALICIOUS FILE to IndicatorType enum in MDC Sequence (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/bb9d466281db2b1023129d249ed576bd94730b18\"\u003ebb9d4662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-savingsplans:\u003c/strong\u003e  Added support for OpenSearch and Neptune Analytics to Database Savings Plans. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/9e0639134fff8635622886260fb2127daa8778de\"\u003e9e063913\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sagemaker:\u003c/strong\u003e  Adds support for S3 Bucket Ownership validation for SageMaker Managed MLflow. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b62165643e03cc036e13cd463cde57116f36b38b\"\u003eb6216564\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connecthealth:\u003c/strong\u003e  Connect-Health SDK is AWS's unified SDK for the Amazon Connect Health offering. It allows healthcare developers to integrate purpose-built agents - such as patient insights, ambient documentation, and medical coding - into their existing applications, including EHRs, telehealth, and revenue cycle. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/454c6cb7d73b92d737c008a9d9ef7fdb6365d647\"\u003e454c6cb7\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-mpa:\u003c/strong\u003e  Updates to multi-party approval (MPA) service to add support for approval team baseline operations. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e95815438c56f42e2ffa47962c1aaa3c82afeef8\"\u003ee9581543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-ec2:\u003c/strong\u003e  Added metadata field to CapacityAllocation. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/d7cce1c2a1a299c49f16f9bc02ee88d904d723de\"\u003ed7cce1c2\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-secrets-manager/CHANGELOG.md\"\u003e\u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1003.0...v3.1004.0\"\u003e3.1004.0\u003c/a\u003e (2026-03-06)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1002.0...v3.1003.0\"\u003e3.1003.0\u003c/a\u003e (2026-03-05)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1001.0...v3.1002.0\"\u003e3.1002.0\u003c/a\u003e (2026-03-04)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.1000.0...v3.1001.0\"\u003e3.1001.0\u003c/a\u003e (2026-03-03)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.999.0...v3.1000.0\"\u003e3.1000.0\u003c/a\u003e (2026-02-27)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.998.0...v3.999.0\"\u003e3.999.0\u003c/a\u003e (2026-02-26)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/client-secrets-manager\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.997.0...v3.998.0\"\u003e3.998.0\u003c/a\u003e (2026-02-25)\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/7c0815232f14789a405ec73195945552d991beb4\"\u003e\u003ccode\u003e7c08152\u003c/code\u003e\u003c/a\u003e Publish v3.1004.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/4c36ea38e9ddc6deacd435c7c590921940f4c9ff\"\u003e\u003ccode\u003e4c36ea3\u003c/code\u003e\u003c/a\u003e Publish v3.1003.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/8ddd54420b62212cf3d797050e924efba1fada28\"\u003e\u003ccode\u003e8ddd544\u003c/code\u003e\u003c/a\u003e chore: bump '@smithy/*' dependencies (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7822\"\u003e#7822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e\u003ccode\u003e03dad66\u003c/code\u003e\u003c/a\u003e chore: set downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7817\"\u003e#7817\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/1eabedb495b19e9c5fe4b24b9f9e461ba25e648f\"\u003e\u003ccode\u003e1eabedb\u003c/code\u003e\u003c/a\u003e test(clients): ignore prettifying automated snapshot test code (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7819\"\u003e#7819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/800431bb02b71bad13537bc615e456df77776b22\"\u003e\u003ccode\u003e800431b\u003c/code\u003e\u003c/a\u003e Publish v3.1002.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/b8467bd179319f86804fea08e1b09d3a95166603\"\u003e\u003ccode\u003eb8467bd\u003c/code\u003e\u003c/a\u003e Publish v3.1001.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ab9e775920c7900a2759c22385091aa88eb6ee15\"\u003e\u003ccode\u003eab9e775\u003c/code\u003e\u003c/a\u003e chore(codegen): upgrade smithy 1.68.0 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager/issues/7806\"\u003e#7806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/d1523943486a2b1bbbfbb8cd117c442cb3853ab0\"\u003e\u003ccode\u003ed152394\u003c/code\u003e\u003c/a\u003e chore(util-user-agent-node): read typescript package.json version from proces...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e373aa8706d305625352a8fdb21cdbaadb1f971b\"\u003e\u003ccode\u003ee373aa8\u003c/code\u003e\u003c/a\u003e Publish v3.1000.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/v3.1004.0/clients/client-secrets-manager\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@aws-sdk/util-arn-parser` from 3.893.0 to 3.972.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/releases\"\u003e\u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.972.0\u003c/h2\u003e\n\u003ch4\u003e3.972.0(2026-01-20)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003ereplace rimraf with premove (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7669\"\u003e#7669\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e0b484fa47204e1ca66e04721aeac1102b498e2f\"\u003ee0b484fa\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-01-20 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3266a28d8d85c8102315f4a1d92c887cbdab6132\"\u003e3266a28d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-workspaces-instances:\u003c/strong\u003e  Added billing configuration support for WorkSpaces Instances with monthly and hourly billing modes, including new filtering capabilities for instance type searches. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a660c503907bed1a1d15e3a31edb2056b3dca024\"\u003ea660c503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-odb:\u003c/strong\u003e  Adds support for associating and disassociating IAM roles with Autonomous VM cluster resources through the AssociateIamRoleToResource and DisassociateIamRoleFromResource APIs. The GetCloudAutonomousVmCluster and ListCloudAutonomousVmClusters API responses now include the iamRoles field. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/f906d762f69f441ed48b173f58d2f2218e19ea41\"\u003ef906d762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-bedrock-runtime:\u003c/strong\u003e  Added support for extended prompt caching with one hour TTL. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/2cc679ff11476d18b56bd794f4af41a5ffc1ffe2\"\u003e2cc679ff\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-keyspaces:\u003c/strong\u003e  Adds support for managing table pre-warming in Amazon Keyspaces (for Apache Cassandra) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/a7d41c3f7d3f33647db8b42951ed237de405fa54\"\u003ea7d41c3f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-auto-scaling:\u003c/strong\u003e  This release adds support for three new filters when describing scaling activities, StartTimeLowerBound, StartTimeUpperBound, and Status. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5ca740f521259bb39b85a82385f92356009555d9\"\u003e5ca740f5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-verifiedpermissions:\u003c/strong\u003e  Amazon Verified Permissions now supports encryption of resources by a customer managed KMS key. Customers can now create new encrypted policy stores by passing in their customer managed key during policy store creation. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3fe5ed933fe118b4aa43f3006a8d58512dd3895f\"\u003e3fe5ed93\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.972.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.971.0\u003c/h2\u003e\n\u003ch4\u003e3.971.0(2026-01-16)\u003c/h4\u003e\n\u003ch5\u003eChores\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps-dev:\u003c/strong\u003e  bump vitest to 4.x (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7662\"\u003e#7662\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e4af3e38b68a52a718a52db86fd5a6f01499a8dc\"\u003ee4af3e38\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecodegen:\u003c/strong\u003e  tag maven release 0.42.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/pull/7664\"\u003e#7664\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/eea2ef451723516ef43924418fff7993b04759ca\"\u003eeea2ef45\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eDocumentation Changes\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient-sagemaker:\u003c/strong\u003e  Adding security consideration comments for lcc accessing execution role under root access (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/83b0e783e4888eca18f8ea964fef7dca47c89545\"\u003e83b0e783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-glacier:\u003c/strong\u003e  Documentation updates for Amazon Glacier's maintenance mode (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/18674f5d4601aa201831ed695aaa99a174cfffab\"\u003e18674f5d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003eNew Features\u003c/h5\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclients:\u003c/strong\u003e  update client endpoints as of 2026-01-16 (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5149b6b044bdd9fd1dbcdf216fffcd8e5b6f15dc\"\u003e5149b6b0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-datazone:\u003c/strong\u003e  This release adds support for numeric filtering and complex free-text searches cases for the Search and SearchListings APIs. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/3ce5567491d7817176e3e4745b2cea36bebc6708\"\u003e3ce55674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-connect:\u003c/strong\u003e  Adds support to allow customers to create form with Dispute configuration (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/faedfc8b8dc9ea1a6d35ade94630e64dbaa78361\"\u003efaedfc8b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-launch-wizard:\u003c/strong\u003e  Added UpdateDeployment, ListDeploymentPatternVersions and GetDeploymentPatternVersion APIs for Launch Wizard (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/5126f41ecd403e5fd3c24dbf75bad3a8256c8f8a\"\u003e5126f41e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient-resource-explorer-2:\u003c/strong\u003e  Added ViewName to View-related responses and ServiceViewName to GetServiceView response. (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/e0212a1077033159f7a429afad4fe47b84e61c4f\"\u003ee0212a10\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003eFor list of updated packages, view \u003cstrong\u003eupdated-packages.md\u003c/strong\u003e in \u003cstrong\u003eassets-3.971.0.zip\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003ev3.970.0\u003c/h2\u003e\n\u003ch4\u003e3.970.0(2026-01-15)\u003c/h4\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/blob/main/packages-internal/util-arn-parser/CHANGELOG.md\"\u003e\u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.972.3 (2026-03-04)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eset downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/7817\"\u003e#7817\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/03dad66b98363f09d1f0984b670be110caea8f62\"\u003e03dad66\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.2 (2026-01-25)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epackages-internal:\u003c/strong\u003e update metadata url paths (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/7679\"\u003e#7679\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/c3a351c1fdbb8e8124ddadfd07a2d29f88ec47f1\"\u003ec3a351c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e3.972.1 (2026-01-21)\u003c/h1\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epackages:\u003c/strong\u003e move package folders for internal pkgs (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js-v3/issues/7670\"\u003e#7670\u003c/a\u003e) (\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commit/ce66606d7028a9a2841fc27acdd4bab3a0917546\"\u003ece66606\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.971.0...v3.972.0\"\u003e3.972.0\u003c/a\u003e (2026-01-20)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.967.0...v3.968.0\"\u003e3.968.0\u003c/a\u003e (2026-01-13)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.965.0...v3.966.0\"\u003e3.966.0\u003c/a\u003e (2026-01-09)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js-v3/compare/v3.964.0...v3.965.0\"\u003e3.965.0\u003c/a\u003e (2026-01-07)\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​aws-sdk/util-arn-parser\u003c/code\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js-v3/commits/HEAD/packages-internal/util-arn-parser\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@casl/ability` from 6.7.5 to 6.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stalniy/casl/releases\"\u003e\u003ccode\u003e@​casl/ability\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​casl/ability\u003c/code\u003e: v6.8.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/stalniy/casl/compare/@casl/ability@6.7.5...@casl/ability@6.8.0\"\u003e6.8.0\u003c/a\u003e (2026-01-18)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexport the Rule and RuleOptions types (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1077\"\u003e#1077\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/c6c94d8f15da80262930f6eb32f708f1b030665e\"\u003ec6c94d8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update dependency \u003ccode\u003e@​types/jest\u003c/code\u003e to v30 (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1133\"\u003e#1133\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/12c59ce3ab717c49b980e2b3b7091c9e88e4d7e7\"\u003e12c59ce\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stalniy/casl/blob/master/packages/casl-ability/CHANGELOG.md\"\u003e\u003ccode\u003e@​casl/ability\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/stalniy/casl/compare/@casl/ability@6.7.5...@casl/ability@6.8.0\"\u003e6.8.0\u003c/a\u003e (2026-01-18)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexport the Rule and RuleOptions types (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1077\"\u003e#1077\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/c6c94d8f15da80262930f6eb32f708f1b030665e\"\u003ec6c94d8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update dependency \u003ccode\u003e@​types/jest\u003c/code\u003e to v30 (\u003ca href=\"https://redirect.github.com/stalniy/casl/issues/1133\"\u003e#1133\u003c/a\u003e) (\u003ca href=\"https://github.com/stalniy/casl/commit/12c59ce3ab717c49b980e2b3b7091c9e88e4d7e7\"\u003e12c59ce\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/8ede230033b7564b82e61cc0b0f9a237922d18ff\"\u003e\u003ccode\u003e8ede230\u003c/code\u003e\u003c/a\u003e chore: release master (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1134\"\u003e#1134\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/c6c94d8f15da80262930f6eb32f708f1b030665e\"\u003e\u003ccode\u003ec6c94d8\u003c/code\u003e\u003c/a\u003e feat: export the Rule and RuleOptions types (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1077\"\u003e#1077\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/12c59ce3ab717c49b980e2b3b7091c9e88e4d7e7\"\u003e\u003ccode\u003e12c59ce\u003c/code\u003e\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​types/jest\u003c/code\u003e to v30 (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1133\"\u003e#1133\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/befb6ffac4c32ed7f12ec935c63da1521a83407e\"\u003e\u003ccode\u003ebefb6ff\u003c/code\u003e\u003c/a\u003e chore: fixes ability changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stalniy/casl/commit/6d72cad79ce553394d99b2b72024415133956bc0\"\u003e\u003ccode\u003e6d72cad\u003c/code\u003e\u003c/a\u003e chore: updates release script (\u003ca href=\"https://github.com/stalniy/casl/tree/HEAD/packages/casl-ability/issues/1106\"\u003e#1106\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/stalniy/casl/commits/@casl/ability@6.8.0/packages/casl-ability\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​casl/ability\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/throttler` from 6.4.0 to 6.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/throttler/releases\"\u003e\u003ccode\u003e@​nestjs/throttler\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.5.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e58964d6: Add a setHeaders option to control whether to add headers to the response or not\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cb4254: Update to allow for support for Nest version 11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/throttler/blob/master/CHANGELOG.md\"\u003e\u003ccode\u003e@​nestjs/throttler\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.4.0\u003c/h2\u003e\n\u003ch2\u003e6.5.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e603cb82: handles edge case where multiple clients making frequent requests interfere with each other\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.5.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e58964d6: Add a setHeaders option to control whether to add headers to the response or not\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cb4254: Update to allow for support for Nest version 11\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efc93f3a: pass context to getTraker as a second arg\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.2.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efbf27c6: Add the guard interfaces for export for public use\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e3d1a9a5: Swap MD5 hash for SHA256 to better support OpenSSL 3.0 and future iterations\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.1.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eef69348: Update the readme for websockets\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.1.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ee058d50: Use ceil instead of floor while calculating expire and block expire at to properly account for rounding up instead of down and accidentally allowing for early continued requests. Related to \u003ca href=\"https://redirect.github.com/nestjs/throttler/issues/2074\"\u003e#2074\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/7b11a2e30c6d1ae5537e99e1d51291004ebfb75d\"\u003e\u003ccode\u003e7b11a2e\u003c/code\u003e\u003c/a\u003e chore: version packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/58964d686bd0595afbea79eace4ea25737ab7036\"\u003e\u003ccode\u003e58964d6\u003c/code\u003e\u003c/a\u003e feat: Add setHeader option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/4e970b2ccd9a54ec5ad4e1e3bbb577752369249b\"\u003e\u003ccode\u003e4e970b2\u003c/code\u003e\u003c/a\u003e fix: Remove interface change\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/02fdf5b5dcdc63494be40a0f88488e6bebbf5be7\"\u003e\u003ccode\u003e02fdf5b\u003c/code\u003e\u003c/a\u003e feat: Add setHeader option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/f618a8960e69403984f0930ee757f33c766914d8\"\u003e\u003ccode\u003ef618a89\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency ts-jest to v29.4.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/a988bc413f54b4a908928a74a4923689e90c1441\"\u003e\u003ccode\u003ea988bc4\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/express\u003c/code\u003e to v5.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/521fbea1e84084deac18f286418e0cb4076e3711\"\u003e\u003ccode\u003e521fbea\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency prettier to v3.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/473de777dadd4e67b57dabecbf634b7d990c6f0e\"\u003e\u003ccode\u003e473de77\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency prettier to v3.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/c7d69a73e8ee7e5a1ef5b9126796b2aba5994c0c\"\u003e\u003ccode\u003ec7d69a7\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency graphql-tools to v9.0.25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/throttler/commit/a11466df5fc67f38ec9b31b0e390b9ce0ad96f56\"\u003e\u003ccode\u003ea11466d\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​nestjs/cli\u003c/code\u003e to v11.0.14\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/throttler/compare/v6.4.0...v6.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-query` from 5.90.11 to 5.90.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/releases\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(react-query/useQueries): remove unreachable 'willFetch' branch in suspense promise collection (\u003ca href=\"https://redirect.github.com/TanStack/query/pull/10082\"\u003e#10082\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.17\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/e7258c5cb30cafa456cdb4e6bc75b43bf619954d\"\u003e\u003ccode\u003ee7258c5\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.16\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/53fc74ebb16730bd3317f039a69c6821386bae93\"\u003e\u003ccode\u003e53fc74e\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/dea1614aaad5c572cf43cea54b64ac09dc4d5b41\"\u003e\u003ccode\u003edea1614\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/269351b8ce4b4846da3d320ac5b850ee6aada0d6\"\u003e\u003ccode\u003e269351b\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.90.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(react-query/useQueries): remove unreachable 'willFetch' branch in suspense promise collection (\u003ca href=\"https://redirect.github.com/TanStack/query/pull/10082\"\u003e#10082\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/e7258c5cb30cafa456cdb4e6bc75b43bf619954d\"\u003e\u003ccode\u003ee7258c5\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/53fc74ebb16730bd3317f039a69c6821386bae93\"\u003e\u003ccode\u003e53fc74e\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/dea1614aaad5c572cf43cea54b64ac09dc4d5b41\"\u003e\u003ccode\u003edea1614\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/269351b8ce4b4846da3d320ac5b850ee6aada0d6\"\u003e\u003ccode\u003e269351b\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix(react-query): allow retryOnMount when throwOnError is function (\u003ca href=\"https://redirect.github.com/TanStack/query/pull/9338\"\u003e#9338\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/7f47906eaccc3f3aa5ce24b77a83bd7a620a237b\"\u003e\u003ccode\u003e7f47906\u003c/code\u003e\u003c/a\u003e]:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.16\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.90.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/fccef797d57d4a9566517bba87c8377f363920f2\"\u003e\u003ccode\u003efccef79\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/08050cb3ebb693ccf782558ba863fd5ff3df2e38\"\u003e\u003ccode\u003e08050cb\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10115\"\u003e#10115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/c5def66a18b77a0012b32bf65216d495daef42e2\"\u003e\u003ccode\u003ec5def66\u003c/code\u003e\u003c/a\u003e refactor(react-query/useQueries): remove unreachable 'willFetch' branch in su...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/da2ff5aeb816ad356d78f332328659edf1bf7d0a\"\u003e\u003ccode\u003eda2ff5a\u003c/code\u003e\u003c/a\u003e chore(vite.config): exclude '\u003cstrong\u003etests\u003c/strong\u003e' directory from coverage reports (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10084\"\u003e#10084\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/2a592d241bf5a832546bb9947514d9fc6d362fab\"\u003e\u003ccode\u003e2a592d2\u003c/code\u003e\u003c/a\u003e test(react-query/suspense): add test cases for 'static' staleTime with number...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/7e3ea62364842c750182c83af6c89d4123807385\"\u003e\u003ccode\u003e7e3ea62\u003c/code\u003e\u003c/a\u003e test(react-query/QueryResetErrorBoundary): relocate 'issue-9728' test and mig...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/dee5d3e9e43b3ab627b6eee8cf91318d99ccad1c\"\u003e\u003ccode\u003edee5d3e\u003c/code\u003e\u003c/a\u003e test(react-query/ssr): add 'useMutation' and 'useMutationState' tests for SSR...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/7ac4e20ddb4ae50357fe8ad91d5397740a58847c\"\u003e\u003ccode\u003e7ac4e20\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10067\"\u003e#10067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/9ff3de7981bc3d77ad0ba6caf2561de8a4bddd4e\"\u003e\u003ccode\u003e9ff3de7\u003c/code\u003e\u003c/a\u003e Upgrade to Vitest v4 (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/9862\"\u003e#9862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/0525ad1248e0380d465d05ca8b9b6a7b77f0eff0\"\u003e\u003ccode\u003e0525ad1\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10047\"\u003e#10047\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/53fc74ebb16730bd3317f039a69c6821386bae93\"\u003e\u003ccode\u003e53fc74e\u003c/code\u003e\u003c/a\u003e fix(query-core): fix combine not updating when queries change with stable ref...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/query/commits/@tanstack/react-query@5.90.21/packages/react-query\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​tanstack/react-query\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-query-devtools` from 5.91.1 to 5.91.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/releases\"\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.91.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/83366c46a6825b5c591399c705d8128743c527dd\"\u003e\u003ccode\u003e83366c4\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.93.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/blob/main/packages/react-query-devtools/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.91.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/83366c46a6825b5c591399c705d8128743c527dd\"\u003e\u003ccode\u003e83366c4\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.93.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.91.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/f9fc56a9b8724bcfae46f8f6cb229123478eb4db\"\u003e\u003ccode\u003ef9fc56a\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/query/commit/0b29b6f877d4b3a6d05b1c85fb9cb1e6ea736291\"\u003e\u003ccode\u003e0b29b6f\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.92.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.90.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/a678f0957cff5e2cf4efa26dbbeb0747e3bbee6d\"\u003e\u003ccode\u003ea678f09\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/10069\"\u003e#10069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/84564f1293f4ca067e9cb40bf3e51cce1939ef8d\"\u003e\u003ccode\u003e84564f1\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/10001\"\u003e#10001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/f15b7fcc01e995ab8835f1b1cc82ebb472c1ff64\"\u003e\u003ccode\u003ef15b7fc\u003c/code\u003e\u003c/a\u003e ci: prepare for trusted publishing (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/9952\"\u003e#9952\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/72d8ac5c592004b8f9c3ee086fcb9c3cd615ca05\"\u003e\u003ccode\u003e72d8ac5\u003c/code\u003e\u003c/a\u003e fix: update react and nextJs (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools/issues/9944\"\u003e#9944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TanStack/query/commits/@tanstack/react-query-devtools@5.91.3/packages/react-query-devtools\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-virtual` from 3.13.12 to 3.13.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/releases\"\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/be89e293ea01654df6334dc6473b65eebed13e51\"\u003e\u003ccode\u003ebe89e29\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.21\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/ff83e949408ba8a714436fa10cafc3725a56274b\"\u003e\u003ccode\u003eff83e94\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/843109c5bf780591a762f9767f3808fd15e3f94e\"\u003e\u003ccode\u003e843109c\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/9067574f1a0178d30e27bcac70853bdcbf437fec\"\u003e\u003ccode\u003e9067574\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/21d9a46eac034cb4299872891694965bceed526d\"\u003e\u003ccode\u003e21d9a46\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/db6df212ed83dd7e4eb6450d1340c95475667b7b\"\u003e\u003ccode\u003edb6df21\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.16\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat(react-virtual): add \u003ccode\u003euseFlushSync\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1100\"\u003e#1100\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eAdds a React-specific \u003ccode\u003euseFlushSync\u003c/code\u003e option to control whether \u003ccode\u003eflushSync\u003c/code\u003e is used for synchronous scroll correction during measurement.\u003c/p\u003e\n\u003cp\u003eThe default behavior remains unchanged (\u003ccode\u003euseFlushSync: true\u003c/code\u003e) to preserve the best scrolling experience.\nDisabling it avoids the React 19 warning about calling \u003ccode\u003eflushSync\u003c/code\u003e during render, at the cost of potentially increased visible whitespace during fast scrolling with dynamically sized items.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/5a273bf0c0bc0255ca172929f021c3b6e50cb69d\"\u003e\u003ccode\u003e5a273bf\u003c/code\u003e\u003c/a\u003e]:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.14\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/blob/main/packages/react-virtual/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.13.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/be89e293ea01654df6334dc6473b65eebed13e51\"\u003e\u003ccode\u003ebe89e29\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.21\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/ff83e949408ba8a714436fa10cafc3725a56274b\"\u003e\u003ccode\u003eff83e94\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.20\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/843109c5bf780591a762f9767f3808fd15e3f94e\"\u003e\u003ccode\u003e843109c\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/9067574f1a0178d30e27bcac70853bdcbf437fec\"\u003e\u003ccode\u003e9067574\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.18\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/21d9a46eac034cb4299872891694965bceed526d\"\u003e\u003ccode\u003e21d9a46\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.17\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/db6df212ed83dd7e4eb6450d1340c95475667b7b\"\u003e\u003ccode\u003edb6df21\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.16\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat(react-virtual): add \u003ccode\u003euseFlushSync\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1100\"\u003e#1100\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eAdds a React-specific \u003ccode\u003euseFlushSync\u003c/code\u003e option to control whether \u003ccode\u003eflushSync\u003c/code\u003e is used for synchronous scroll correction during measurement.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/c4da5cbb58784e9776f7c812545130e2c79bb119\"\u003e\u003ccode\u003ec4da5cb\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1137\"\u003e#1137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/be89e293ea01654df6334dc6473b65eebed13e51\"\u003e\u003ccode\u003ebe89e29\u003c/code\u003e\u003c/a\u003e fix(virtual-core): smooth scrolling for dynamic item sizes (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/d2a9995490c60cbe3e5e02a7857cdc1b91e1d71a\"\u003e\u003ccode\u003ed2a9995\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1136\"\u003e#1136\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/ff83e949408ba8a714436fa10cafc3725a56274b\"\u003e\u003ccode\u003eff83e94\u003c/code\u003e\u003c/a\u003e fix(virtual-core): early return in _measureElement for disconnected nodes (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/e0e4dcde5c99906eab2ab5aefd75e568b2ece967\"\u003e\u003ccode\u003ee0e4dcd\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1131\"\u003e#1131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/5d6acc953f62e892ce9eefa2bcc5340614efab15\"\u003e\u003ccode\u003e5d6acc9\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1113\"\u003e#1113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/c48b2ac9c4c47d4edebdd5f2058ba280022f6a8b\"\u003e\u003ccode\u003ec48b2ac\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1111\"\u003e#1111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/7fd265465a24eafb6d4d602fb981a0c64f42c708\"\u003e\u003ccode\u003e7fd2654\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1107\"\u003e#1107\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/0bcf14de9e8c17942feb404cba3e2a038ebf365b\"\u003e\u003ccode\u003e0bcf14d\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1102\"\u003e#1102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/1686256eacd3abc33bd20a9911fcccf9221aa0b5\"\u003e\u003ccode\u003e1686256\u003c/code\u003e\u003c/a\u003e feat(react-virtual): add useFlushSync option (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1100\"\u003e#1100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/virtual/commits/@tanstack/react-virtual@3.13.21/packages/react-virtual\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `class-validator` from 0.14.3 to 0.15.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typestack/class-validator/releases\"\u003eclass-validator's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: publish 0.15.0 for real by \u003ca href=\"https://github.com/braaar\"\u003e\u003ccode\u003e@​braaar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typestack/class-validator/pull/2671\"\u003etypestack/class-validator#2671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: publish 0.15.1 by \u003ca href=\"https://github.com/braaar\"\u003e\u003ccode\u003e@​braaar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typestack/class-validator/pull/2672\"\u003etypestack/class-validator#2672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/typestack/class-...\n\n_Description has been truncated_","html_url":"https://github.com/Ed-Fi-Alliance-OSS/Ed-Fi-AdminApp/pull/83","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ed-Fi-Alliance-OSS%2FEd-Fi-AdminApp/issues/83","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/83/packages"}},{"old_version":"6.0.1","new_version":"6.1.1","update_type":"minor","path":null,"pr_created_at":"2026-03-05T06:41:10.000Z","version_change":"6.0.1 → 6.1.1","issue":{"uuid":"4026195096","node_id":"PR_kwDONuO9l87IGCWJ","number":9,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 19 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-10T19:14:04.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-05T06:41:10.000Z","updated_at":"2026-03-10T19:14:06.000Z","time_to_close":477174,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":19,"packages":[{"name":"diff","old_version":"7.0.0","new_version":"8.0.3","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.1","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.10","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"6.0.1","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"4.0.1","new_version":"4.4.10","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.2","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `7.0.0` | `8.0.3` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.1` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.10` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.0.1` | `6.1.1` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `4.0.1` | `4.4.10` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.14.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.2` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the DefinitelyTyped types to JsDiff's own type definitions includes multiple fixes and also removes many exported types previously used for \u003ccode\u003eoptions\u003c/code\u003e arguments to diffing and patch-generation functions. (There are now different exported options types for abortable calls - ones with a \u003ccode\u003etimeout\u003c/code\u003e or \u003ccode\u003emaxEditLength\u003c/code\u003e that may give a result of \u003ccode\u003eundefined\u003c/code\u003e - and non-abortable calls.) See the TypeScript section of the README for some usage tips.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eDiff\u003c/code\u003e object is now a class\u003c/strong\u003e. Custom extensions of \u003ccode\u003eDiff\u003c/code\u003e, as described in the \u0026quot;Defining custom diffing behaviors\u0026quot; section of the README, can therefore now be done by writing a \u003ccode\u003eclass CustomDiff extends Diff\u003c/code\u003e and overriding methods, instead of the old way based on prototype inheritance. (I \u003cem\u003ethink\u003c/em\u003e code that did things the old way should still work, though!)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediff/lib/index.es6.js\u003c/code\u003e and \u003ccode\u003ediff/lib/index.mjs\u003c/code\u003e no longer exist, and the ESM version of the library is no longer bundled into a single file.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option for \u003ccode\u003ediffWords\u003c/code\u003e is no longer included in the type declarations\u003c/strong\u003e. The effect of passing \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e has always been to make \u003ccode\u003ediffWords\u003c/code\u003e just call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead, which was confusing, because that behaviour doesn't seem properly described as \u0026quot;ignoring\u0026quot; whitespace at all. The property remains available to non-TypeScript applications for the sake of backwards compatibility, but TypeScript applications will now see a type error if they try to pass \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e to \u003ccode\u003ediffWords\u003c/code\u003e and should change their code to call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJsDiff no longer purports to support ES3 environments. (I'm pretty sure it never truly did, despite claiming to in its README, since even the 1.0.0 release used \u003ccode\u003eArray.map\u003c/code\u003e which was added in ES5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/601\"\u003e#601\u003c/a\u003e - \u003cstrong\u003e\u003ccode\u003ediffJson\u003c/code\u003e's \u003ccode\u003estringifyReplacer\u003c/code\u003e option behaves more like \u003ccode\u003eJSON.stringify\u003c/code\u003e's \u003ccode\u003ereplacer\u003c/code\u003e argument now.\u003c/strong\u003e In particular:\n\u003cul\u003e\n\u003cli\u003eEach key/value pair now gets passed through the replacer once instead of twice\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ekey\u003c/code\u003e passed to the replacer when the top-level object is passed in as \u003ccode\u003evalue\u003c/code\u003e is now \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (previously, was \u003ccode\u003eundefined\u003c/code\u003e), and the \u003ccode\u003ekey\u003c/code\u003e passed with an array element is the array index as a string, like \u003ccode\u003e\u0026quot;0\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;1\u0026quot;\u003c/code\u003e (previously was whatever the key for the entire array was). Both the new behaviours match that of \u003ccode\u003eJSON.stringify\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/602\"\u003e#602\u003c/a\u003e - \u003cstrong\u003ediffing functions now consistently return \u003ccode\u003eundefined\u003c/code\u003e when called in async mode\u003c/strong\u003e (i.e. with a callback). Previously, there was an odd quirk where they would return \u003ccode\u003etrue\u003c/code\u003e if the strings being diffed were equal and \u003ccode\u003eundefined\u003c/code\u003e otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/1179ccb0d31f497449e998a6e67b1b9220565764\"\u003e\u003ccode\u003e1179ccb\u003c/code\u003e\u003c/a\u003e Ignore .zed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/949d6e2a44622b15b5a5be3ffcf196869c5a6b4c\"\u003e\u003ccode\u003e949d6e2\u003c/code\u003e\u003c/a\u003e Add test for the vuln I just fixed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/650\"\u003e#650\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/15a1585230748c8ae6f8274c202e0c87309142f5\"\u003e\u003ccode\u003e15a1585\u003c/code\u003e\u003c/a\u003e Fix the second denial-of-service vulnerability in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/649\"\u003e#649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/de95cca5329730cf9dcdd85c634633693b3ab3db\"\u003e\u003ccode\u003ede95cca\u003c/code\u003e\u003c/a\u003e Fix potentially cubic-time regex in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b9aeedef3fe4764c3408b52990767bd7ac0425ab\"\u003e\u003ccode\u003eb9aeede\u003c/code\u003e\u003c/a\u003e Allow more customisation of file headers in patches (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/641\"\u003e#641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/43c716c4a38aeb72939e41e7ef353a33615335bf\"\u003e\u003ccode\u003e43c716c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/636\"\u003e#636\u003c/a\u003e from kpdecker/dependabot/npm_and_yarn/node-forge-1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b8162c77d711e9c17e440e4f62bad7c88fad1a88\"\u003e\u003ccode\u003eb8162c7\u003c/code\u003e\u003c/a\u003e Bump node-forge from 1.3.1 to 1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad6dc1728e52e4124abcbf906072eaeaa9e63aea\"\u003e\u003ccode\u003ead6dc17\u003c/code\u003e\u003c/a\u003e Fix some bugs in the diffWords regex (and errors \u0026amp; ambiguities in the comment...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3e1774afcfadc806baa58ee780923e4d4097319a\"\u003e\u003ccode\u003e3e1774a\u003c/code\u003e\u003c/a\u003e Fix a comment typo (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/633\"\u003e#633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/7.0.0...v8.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.1 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.1...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.10\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f\"\u003e\u003ccode\u003e7bc755d\u003c/code\u003e\u003c/a\u003e parse root off paths before sanitizing .. parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/c8cb84629dee649feedde03f2f4ea48f2e44e778\"\u003e\u003ccode\u003ec8cb846\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/1f0c2c9006b10199cf2686f8ef43e79a1773e1aa\"\u003e\u003ccode\u003e1f0c2c9\u003c/code\u003e\u003c/a\u003e 7.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/fbb08518bf290733b68ca4d4135f75becf73fd75\"\u003e\u003ccode\u003efbb0851\u003c/code\u003e\u003c/a\u003e build minified version as default export\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.0.1 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 4.0.1 to 4.4.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/releases\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea4d95e6: Set downlevel types to be used in typescript@'\u0026lt;4.5'\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [a4d95e6]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.4.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea4d95e6: Set downlevel types to be used in typescript@'\u0026lt;4.5'\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [a4d95e6]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [d0954cc]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.13.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.8\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [2bf677c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.7\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e03c3dc8: update for rollup build externalLiveBindings=false\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [03c3dc8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.12.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.2.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.6\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [745867a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.12.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.2.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5eab7ea1c099488605ff3e442e26a7e5c1902d7f\"\u003e\u003ccode\u003e5eab7ea\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a4d95e6967ac79514ad6a7659c0b400e3c3d94d1\"\u003e\u003ccode\u003ea4d95e6\u003c/code\u003e\u003c/a\u003e fix: set downlevel types to be used in typescript@'\u0026lt;4.5' (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1906\"\u003e#1906\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/2acebecd260dba2cca593ef65bf262e2eb3ad283\"\u003e\u003ccode\u003e2acebec\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/06793cc98c1fce48f9f8362e7e99c5873da8f9b8\"\u003e\u003ccode\u003e06793cc\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/1f51a0cffaf7405444dca55bdf3f6fa77e24c888\"\u003e\u003ccode\u003e1f51a0c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a028fc557b1df0af2474e435d2fef64fd9244228\"\u003e\u003ccode\u003ea028fc5\u003c/code\u003e\u003c/a\u003e chore: replace rimraf with premove (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1834\"\u003e#1834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/0e8cc4926dee4e081bfc3fe9945813f7118da73b\"\u003e\u003ccode\u003e0e8cc49\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7e4bbf64112652f6bb5171ce2c14eebfc6aab964\"\u003e\u003ccode\u003e7e4bbf6\u003c/code\u003e\u003c/a\u003e chore: upgrade rimraf to v5.0.10 (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1829\"\u003e#1829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/521d67c38f8928c514d1fcea3fc08e40c2300513\"\u003e\u003ccode\u003e521d67c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/8b90f360df2a5c80c105db732b3c2f6972994854\"\u003e\u003ccode\u003e8b90f36\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@4.4.10/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.14.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.14.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.2 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.2...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `underscore` from 1.13.7 to 1.13.8\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/9374840c22e348083d0d072f30dc980622523259\"\u003e\u003ccode\u003e9374840\u003c/code\u003e\u003c/a\u003e Merge branch 'release/1.13.8'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/309ad7e6658b927ca5f28ce069665d9c523c53e5\"\u003e\u003ccode\u003e309ad7e\u003c/code\u003e\u003c/a\u003e Re-generate annotated sources and minified codemaps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a1ac1d33537662304d4985f61301112ea0f1f051\"\u003e\u003ccode\u003ea1ac1d3\u003c/code\u003e\u003c/a\u003e Add links to diff and docs in 1.13.8 change log entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/b579595ec9da8db15196bc1d3547833458939c44\"\u003e\u003ccode\u003eb579595\u003c/code\u003e\u003c/a\u003e Mention CVE-2026-27601 in comments and documentation (\u003ca href=\"https://redirect.github.com/jashkenas/underscore/issues/3011\"\u003e#3011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/45ea015a99069780db492a114c1e709dd77d3b89\"\u003e\u003ccode\u003e45ea015\u003c/code\u003e\u003c/a\u003e Revert obfuscations from 42823bb.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/4a4019e00beb2c42eda20c05f375a35983b748f0\"\u003e\u003ccode\u003e4a4019e\u003c/code\u003e\u003c/a\u003e Update minified bundles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/1ccfdd0c50470d862bb553c1e0c70567a59d4355\"\u003e\u003ccode\u003e1ccfdd0\u003c/code\u003e\u003c/a\u003e Add preliminary release notes for 1.13.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/42823bbff87e9fe82855d5adb5ba7ff839f8b446\"\u003e\u003ccode\u003e42823bb\u003c/code\u003e\u003c/a\u003e Temporarily obfuscate comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a6e23ae9647461ec33ad9f92a2ecfc220eea0a84\"\u003e\u003ccode\u003ea6e23ae\u003c/code\u003e\u003c/a\u003e Make _.isEqual nonrecursive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/f2b516441ab99b82045f2a336c348899e6527e00\"\u003e\u003ccode\u003ef2b5164\u003c/code\u003e\u003c/a\u003e Add regression test against s...\n\n_Description has been truncated_","html_url":"https://github.com/CasP0/renovate/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/CasP0%2Frenovate/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"}},{"old_version":"5.11.2","new_version":"6.1.1","update_type":"major","path":null,"pr_created_at":"2026-02-28T04:46:15.000Z","version_change":"5.11.2 → 6.1.1","issue":{"uuid":"4003888805","node_id":"PR_kwDOM3OYIc7G-KyI","number":6,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-05T06:42:58.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-28T04:46:15.000Z","updated_at":"2026-03-05T06:42:59.000Z","time_to_close":439003,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8...\n\n_Description has been truncated_","html_url":"https://github.com/Jguest7/renovate/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}},{"old_version":"5.11.2","new_version":"6.1.1","update_type":"major","path":null,"pr_created_at":"2026-02-28T03:58:55.000Z","version_change":"5.11.2 → 6.1.1","issue":{"uuid":"4003810238","node_id":"PR_kwDOM32T_c7G962K","number":19,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 16 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-04T01:25:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-28T03:58:55.000Z","updated_at":"2026-03-04T01:25:40.000Z","time_to_close":336403,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":16,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.3","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 14 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.3` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ea94840326c3f40522f1b544bd2303024b0eec35\"\u003e\u003ccode\u003eea94840\u003c/code\u003e\u003c/a\u003e 10.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0873fbabc00a86e09f4469386059a71abb136c93\"\u003e\u003ccode\u003e0873fba\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/cecaad16d79d71a9e86445d934c694e3fb9bf134\"\u003e\u003ccode\u003ececaad1\u003c/code\u003e\u003c/a\u003e more extglob coalescing for performance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce\"\u003e\u003ccode\u003e11d0df6\u003c/code\u003e\u003c/a\u003e limit nested extglob recursion, flatten extglobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/c3448c43a45d0f180e60c8974e05febb54ea5592\"\u003e\u003ccode\u003ec3448c4\u003c/code\u003e\u003c/a\u003e update assertValidPattern param type to unknown from any\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748\"\u003e\u003ccode\u003e0bf499a\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9f15c5819e99960c99bc7f13be437b2d4e1de2e6\"\u003e\u003ccode\u003e9f15c58\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/f42b239eca9b843f20e0590e94a24d07394a832f\"\u003e\u003ccode\u003ef42b239\u003c/code\u003e\u003c/a\u003e 10.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fa2133b3488d7fe590a5fb9549327471e81a0fc9\"\u003e\u003ccode\u003efa2133b\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b9d015374719dfb32083b33944e582a0636ddb4a\"\u003e\u003ccode\u003eb9d0153\u003c/code\u003e\u003c/a\u003e ci: update action workflows\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/automatik-engineering/renovate/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/automatik-engineering/renovate/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/automatik-engineering%2Frenovate/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"}},{"old_version":"5.11.2","new_version":"6.1.1","update_type":"major","path":null,"pr_created_at":"2026-02-22T21:45:58.000Z","version_change":"5.11.2 → 6.1.1","issue":{"uuid":"3975497578","node_id":"PR_kwDOM3OYIc7FgvLr","number":5,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-28T04:46:17.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-22T21:45:58.000Z","updated_at":"2026-02-28T04:46:19.000Z","time_to_close":457219,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.1","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/6d7ac34de6979f0b028b34fecd40349cd4dde186\"\u003e\u003ccode\u003e6d7ac34\u003c/code\u003e\u003c/a\u003e 10.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5\"\u003e\u003ccode\u003e2e111f3\u003c/code\u003e\u003c/a\u003e coalesce consecutive non-globstar * characters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a62a2a667db92078811f2b7fc345737deded17a\"\u003e\u003ccode\u003e1a62a2a\u003c/code\u003e\u003c/a\u003e 10.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/758b5a3089af0b178b31bd40eb2189343d82121b\"\u003e\u003ccode\u003e758b5a3\u003c/code\u003e\u003c/a\u003e changelog 10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/903e50ba7895f51cf3290541cd2cfe2b8e59167e\"\u003e\u003ccode\u003e903e50b\u003c/code\u003e\u003c/a\u003e add braceExpandMax option, format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a50a11077dc1c2c93191fbdf6ebf6012862db540\"\u003e\u003ccode\u003ea50a110\u003c/code\u003e\u003c/a\u003e 10.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a08c04628411d8f9d3eea4ccb4fd84a1a48a9fc5\"\u003e\u003ccode\u003ea08c046\u003c/code\u003e\u003c/a\u003e move back to og brace-expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fde70d1bfbe84069e025e58131b8efa1c50602c2\"\u003e\u003ccode\u003efde70d1\u003c/code\u003e\u003c/a\u003e 10.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/05210d8249922bf76ac9eff457e717bcd2f8d434\"\u003e\u003ccode\u003e05210d8\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ba4093ca1ca31684e32ab14e61780daacc8bc233\"\u003e\u003ccode\u003eba4093c\u003c/code\u003e\u003c/a\u003e update workflows and package stuff\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/l...\n\n_Description has been truncated_","html_url":"https://github.com/Jguest7/renovate/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"5.11.2","new_version":"6.1.1","update_type":"major","path":null,"pr_created_at":"2026-02-22T21:04:54.000Z","version_change":"5.11.2 → 6.1.1","issue":{"uuid":"3975429574","node_id":"PR_kwDONNAvi87FgiMr","number":90,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-28T04:17:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-22T21:04:54.000Z","updated_at":"2026-02-28T04:17:44.000Z","time_to_close":457969,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"minimatch","old_version":"10.0.1","new_version":"10.2.1","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.26.0","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.10","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `10.0.1` | `10.2.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.10` | `3.0.13` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 10.0.1 to 10.2.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/minimatch/blob/main/changelog.md\"\u003eminimatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echange log\u003c/h1\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ebraceExpandMax\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003emagicalBraces\u003c/code\u003e option for \u003ccode\u003eescape\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when \u003ccode\u003epartial: true\u003c/code\u003e is set.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003emakeRe\u003c/code\u003e when pattern ends in a final \u003ccode\u003e**\u003c/code\u003e path part.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequire node 20 or 22 and higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo default export, only named exports.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRecursive descent parser for extglob, allowing correct support\nfor arbitrarily nested extglob expressions\u003c/li\u003e\n\u003cli\u003eBump required Node.js version\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eunescape()\u003c/code\u003e method\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eMinimatch.hasMagic()\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for posix character classes in a unicode-aware way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ewindowsNoMagicRoot\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eoptimizationLevel\u003c/code\u003e configuration option, and revert the\ndefault back to the 6.2 style minimal optimizations, making the\nadvanced transforms introduced in 7.0 opt-in. Also, process\nprovided file paths in the same way in optimizationLevel:2\nmode, so \u003cem\u003emost\u003c/em\u003e things that matched with optimizationLevel 1 or\n0 \u003cem\u003eshould\u003c/em\u003e match with level 2 as well. However, level 1 is the\ndefault, out of an abundance of caution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/6d7ac34de6979f0b028b34fecd40349cd4dde186\"\u003e\u003ccode\u003e6d7ac34\u003c/code\u003e\u003c/a\u003e 10.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5\"\u003e\u003ccode\u003e2e111f3\u003c/code\u003e\u003c/a\u003e coalesce consecutive non-globstar * characters\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a62a2a667db92078811f2b7fc345737deded17a\"\u003e\u003ccode\u003e1a62a2a\u003c/code\u003e\u003c/a\u003e 10.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/758b5a3089af0b178b31bd40eb2189343d82121b\"\u003e\u003ccode\u003e758b5a3\u003c/code\u003e\u003c/a\u003e changelog 10.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/903e50ba7895f51cf3290541cd2cfe2b8e59167e\"\u003e\u003ccode\u003e903e50b\u003c/code\u003e\u003c/a\u003e add braceExpandMax option, format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a50a11077dc1c2c93191fbdf6ebf6012862db540\"\u003e\u003ccode\u003ea50a110\u003c/code\u003e\u003c/a\u003e 10.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/a08c04628411d8f9d3eea4ccb4fd84a1a48a9fc5\"\u003e\u003ccode\u003ea08c046\u003c/code\u003e\u003c/a\u003e move back to og brace-expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/fde70d1bfbe84069e025e58131b8efa1c50602c2\"\u003e\u003ccode\u003efde70d1\u003c/code\u003e\u003c/a\u003e 10.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/05210d8249922bf76ac9eff457e717bcd2f8d434\"\u003e\u003ccode\u003e05210d8\u003c/code\u003e\u003c/a\u003e update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ba4093ca1ca31684e32ab14e61780daacc8bc233\"\u003e\u003ccode\u003eba4093c\u003c/code\u003e\u003c/a\u003e update workflows and package stuff\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v10.0.1...v10.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.26.0 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.10 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp...\n\n_Description has been truncated_","html_url":"https://github.com/Reality2byte/renovate/pull/90","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Reality2byte%2Frenovate/issues/90","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/90/packages"}},{"old_version":"5.11.2","new_version":"6.1.1","update_type":"major","path":null,"pr_created_at":"2026-02-19T15:49:11.000Z","version_change":"5.11.2 → 6.1.1","issue":{"uuid":"3963665935","node_id":"PR_kwDOM3OYIc7E6lG-","number":2,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-21T00:20:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-19T15:49:11.000Z","updated_at":"2026-02-21T00:20:45.000Z","time_to_close":117092,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.25.6","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.25.6` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.25.6 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Jguest7/renovate/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Jguest7/renovate/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jguest7%2Frenovate/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"5.11.2","new_version":"6.1.1","update_type":"major","path":null,"pr_created_at":"2026-02-19T14:19:38.000Z","version_change":"5.11.2 → 6.1.1","issue":{"uuid":"3963231805","node_id":"PR_kwDOM32T_c7E5I2g","number":15,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 14 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-20T23:49:51.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-19T14:19:38.000Z","updated_at":"2026-02-20T23:49:53.000Z","time_to_close":120613,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":14,"packages":[{"name":"diff","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.8","repository_url":"https://github.com/ai/nanoid"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"5.11.2","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"qs","old_version":"6.13.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `5.11.2` | `6.1.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 5.2.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b7b6339dea15baa636bebe7092ec1cbabf001dea\"\u003e\u003ccode\u003eb7b6339\u003c/code\u003e\u003c/a\u003e v5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b5377abefc55cd424e82308515cfbdc4d53ad8a1\"\u003e\u003ccode\u003eb5377ab\u003c/code\u003e\u003c/a\u003e Update package version to 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/78017899c4c80d51db805b6e013079cadc6ed0ae\"\u003e\u003ccode\u003e7801789\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/042a8372f331ffd3d81b1e4b799409c7d944e6fd\"\u003e\u003ccode\u003e042a837\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nanoid` from 3.3.7 to 3.3.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ai/nanoid/blob/main/CHANGELOG.md\"\u003enanoid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.3.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a way to break Nano ID by passing non-integer size (by \u003ca href=\"https://github.com/myndzi\"\u003e\u003ccode\u003e@​myndzi\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/3044cd5e73f4cf31795f61f6e6b961c8c0a5c744\"\u003e\u003ccode\u003e3044cd5\u003c/code\u003e\u003c/a\u003e Release 3.3.8 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/4fe34959c34e5b3573889ed4f24fe91d1d3e7231\"\u003e\u003ccode\u003e4fe3495\u003c/code\u003e\u003c/a\u003e Update size limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ai/nanoid/commit/d643045f40d6dc8afa000a644d857da1436ed08c\"\u003e\u003ccode\u003ed643045\u003c/code\u003e\u003c/a\u003e Fix pool pollution, infinite loop (\u003ca href=\"https://redirect.github.com/ai/nanoid/issues/510\"\u003e#510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ai/nanoid/compare/3.3.7...3.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 5.11.2 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.2...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003estringify\u003c/code\u003e: avoid a crash when a \u003ccode\u003efilter\u003c/code\u003e key is \u003ccode\u003enull\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eutils.merge\u003c/code\u003e: functions should not be stringified into keys\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/automatik-engineering/renovate/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/automatik-engineering/renovate/pull/15","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/automatik-engineering%2Frenovate/issues/15","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/15/packages"}},{"old_version":"6.0.1","new_version":"6.1.1","update_type":"minor","path":null,"pr_created_at":"2026-02-19T14:09:15.000Z","version_change":"6.0.1 → 6.1.1","issue":{"uuid":"3963183240","node_id":"PR_kwDOIf4Sk87E4-lQ","number":7,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-20T00:14:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-19T14:09:15.000Z","updated_at":"2026-02-20T00:14:51.000Z","time_to_close":36334,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":17,"packages":[{"name":"diff","old_version":"7.0.0","new_version":"8.0.3","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"glob","old_version":"11.0.0","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"markdown-it","old_version":"14.1.0","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"tar","old_version":"7.4.3","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"openpgp","old_version":"6.0.1","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"@babel/helpers","old_version":"7.26.0","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"@octokit/endpoint","old_version":"9.0.5","new_version":"9.0.6","repository_url":"https://github.com/octokit/endpoint.js"},{"name":"@octokit/request-error","old_version":"5.1.0","new_version":"5.1.1","repository_url":"https://github.com/octokit/request-error.js"},{"name":"@octokit/request","old_version":"8.4.0","new_version":"8.4.1","repository_url":"https://github.com/octokit/request.js"},{"name":"@smithy/config-resolver","old_version":"3.0.12","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.13.1","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tmp","old_version":"0.2.3","new_version":"0.2.5","repository_url":"https://github.com/raszi/node-tmp"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [diff](https://github.com/kpdecker/jsdiff) | `7.0.0` | `8.0.3` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `12.0.0` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `14.1.0` | `14.1.1` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.8` |\n| [openpgp](https://github.com/openpgpjs/openpgpjs) | `6.0.1` | `6.1.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [@octokit/endpoint](https://github.com/octokit/endpoint.js) | `9.0.5` | `9.0.6` |\n| [@octokit/request-error](https://github.com/octokit/request-error.js) | `5.1.0` | `5.1.1` |\n| [@octokit/request](https://github.com/octokit/request.js) | `8.4.0` | `8.4.1` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.12` | `3.0.13` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.15.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.2.3` | `0.2.5` |\n\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the DefinitelyTyped types to JsDiff's own type definitions includes multiple fixes and also removes many exported types previously used for \u003ccode\u003eoptions\u003c/code\u003e arguments to diffing and patch-generation functions. (There are now different exported options types for abortable calls - ones with a \u003ccode\u003etimeout\u003c/code\u003e or \u003ccode\u003emaxEditLength\u003c/code\u003e that may give a result of \u003ccode\u003eundefined\u003c/code\u003e - and non-abortable calls.) See the TypeScript section of the README for some usage tips.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eDiff\u003c/code\u003e object is now a class\u003c/strong\u003e. Custom extensions of \u003ccode\u003eDiff\u003c/code\u003e, as described in the \u0026quot;Defining custom diffing behaviors\u0026quot; section of the README, can therefore now be done by writing a \u003ccode\u003eclass CustomDiff extends Diff\u003c/code\u003e and overriding methods, instead of the old way based on prototype inheritance. (I \u003cem\u003ethink\u003c/em\u003e code that did things the old way should still work, though!)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediff/lib/index.es6.js\u003c/code\u003e and \u003ccode\u003ediff/lib/index.mjs\u003c/code\u003e no longer exist, and the ESM version of the library is no longer bundled into a single file.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option for \u003ccode\u003ediffWords\u003c/code\u003e is no longer included in the type declarations\u003c/strong\u003e. The effect of passing \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e has always been to make \u003ccode\u003ediffWords\u003c/code\u003e just call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead, which was confusing, because that behaviour doesn't seem properly described as \u0026quot;ignoring\u0026quot; whitespace at all. The property remains available to non-TypeScript applications for the sake of backwards compatibility, but TypeScript applications will now see a type error if they try to pass \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e to \u003ccode\u003ediffWords\u003c/code\u003e and should change their code to call \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e instead.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJsDiff no longer purports to support ES3 environments. (I'm pretty sure it never truly did, despite claiming to in its README, since even the 1.0.0 release used \u003ccode\u003eArray.map\u003c/code\u003e which was added in ES5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/601\"\u003e#601\u003c/a\u003e - \u003cstrong\u003e\u003ccode\u003ediffJson\u003c/code\u003e's \u003ccode\u003estringifyReplacer\u003c/code\u003e option behaves more like \u003ccode\u003eJSON.stringify\u003c/code\u003e's \u003ccode\u003ereplacer\u003c/code\u003e argument now.\u003c/strong\u003e In particular:\n\u003cul\u003e\n\u003cli\u003eEach key/value pair now gets passed through the replacer once instead of twice\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ekey\u003c/code\u003e passed to the replacer when the top-level object is passed in as \u003ccode\u003evalue\u003c/code\u003e is now \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (previously, was \u003ccode\u003eundefined\u003c/code\u003e), and the \u003ccode\u003ekey\u003c/code\u003e passed with an array element is the array index as a string, like \u003ccode\u003e\u0026quot;0\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;1\u0026quot;\u003c/code\u003e (previously was whatever the key for the entire array was). Both the new behaviours match that of \u003ccode\u003eJSON.stringify\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/602\"\u003e#602\u003c/a\u003e - \u003cstrong\u003ediffing functions now consistently return \u003ccode\u003eundefined\u003c/code\u003e when called in async mode\u003c/strong\u003e (i.e. with a callback). Previously, there was an odd quirk where they would return \u003ccode\u003etrue\u003c/code\u003e if the strings being diffed were equal and \u003ccode\u003eundefined\u003c/code\u003e otherwise.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/1179ccb0d31f497449e998a6e67b1b9220565764\"\u003e\u003ccode\u003e1179ccb\u003c/code\u003e\u003c/a\u003e Ignore .zed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/949d6e2a44622b15b5a5be3ffcf196869c5a6b4c\"\u003e\u003ccode\u003e949d6e2\u003c/code\u003e\u003c/a\u003e Add test for the vuln I just fixed (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/650\"\u003e#650\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/15a1585230748c8ae6f8274c202e0c87309142f5\"\u003e\u003ccode\u003e15a1585\u003c/code\u003e\u003c/a\u003e Fix the second denial-of-service vulnerability in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/649\"\u003e#649\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/de95cca5329730cf9dcdd85c634633693b3ab3db\"\u003e\u003ccode\u003ede95cca\u003c/code\u003e\u003c/a\u003e Fix potentially cubic-time regex in parsePatch (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b9aeedef3fe4764c3408b52990767bd7ac0425ab\"\u003e\u003ccode\u003eb9aeede\u003c/code\u003e\u003c/a\u003e Allow more customisation of file headers in patches (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/641\"\u003e#641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/43c716c4a38aeb72939e41e7ef353a33615335bf\"\u003e\u003ccode\u003e43c716c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/636\"\u003e#636\u003c/a\u003e from kpdecker/dependabot/npm_and_yarn/node-forge-1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/b8162c77d711e9c17e440e4f62bad7c88fad1a88\"\u003e\u003ccode\u003eb8162c7\u003c/code\u003e\u003c/a\u003e Bump node-forge from 1.3.1 to 1.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad6dc1728e52e4124abcbf906072eaeaa9e63aea\"\u003e\u003ccode\u003ead6dc17\u003c/code\u003e\u003c/a\u003e Fix some bugs in the diffWords regex (and errors \u0026amp; ambiguities in the comment...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3e1774afcfadc806baa58ee780923e4d4097319a\"\u003e\u003ccode\u003e3e1774a\u003c/code\u003e\u003c/a\u003e Fix a comment typo (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/633\"\u003e#633\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/7.0.0...v8.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.0...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `markdown-it` from 14.1.0 to 14.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md\"\u003emarkdown-it's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.1.1] - 2026-01-11\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed regression from v13 in linkify inline rule. Specific patterns could\ncause high CPU use. Thanks to \u003ca href=\"https://github.com/ltduc147\"\u003e\u003ccode\u003e@​ltduc147\u003c/code\u003e\u003c/a\u003e for report.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/b4a9b659ef5734223731cfaa3ad5eacc6fc22918\"\u003e\u003ccode\u003eb4a9b65\u003c/code\u003e\u003c/a\u003e 14.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26\"\u003e\u003ccode\u003e4b4bbca\u003c/code\u003e\u003c/a\u003e Fixed perf regression in linkify-it wrapper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/markdown-it/markdown-it/commit/d2782d892a51201b25d3eeab172201ad5a53a24c\"\u003e\u003ccode\u003ed2782d8\u003c/code\u003e\u003c/a\u003e Add supplementary example-driven documentation (\u003ca href=\"https://redirect.github.com/markdown-it/markdown-it/issues/1092\"\u003e#1092\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/markdown-it/markdown-it/compare/14.1.0...14.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 7.4.3 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.0.1 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.26.0 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/endpoint` from 9.0.5 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/endpoint.js/releases\"\u003e\u003ccode\u003e@​octokit/endpoint\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e599ff4f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/endpoint.js/commit/599ff4f76534ea2872f40b41c4ffbbcca987d6a5\"\u003e\u003ccode\u003e599ff4f\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/endpoint.js/issues/515\"\u003e#515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/endpoint.js/compare/v9.0.5...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request-error` from 5.1.0 to 5.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request-error.js/releases\"\u003e\u003ccode\u003e@​octokit/request-error\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003e5.1.1\u003c/a\u003e (2025-02-14)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e12a14f0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53\"\u003e\u003ccode\u003eb51ed27\u003c/code\u003e\u003c/a\u003e test: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de\"\u003e\u003ccode\u003e12a14f0\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/dayshift\"\u003e\u003ccode\u003e@​dayshift\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@octokit/request` from 8.4.0 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/octokit/request.js/releases\"\u003e\u003ccode\u003e@​octokit/request\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003e8.4.1\u003c/a\u003e (2025-02-15)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e) (\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e356411e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2\"\u003e\u003ccode\u003e356411e\u003c/code\u003e\u003c/a\u003e fix: ReDos regex vulnerability, reported by \u003ca href=\"https://github.com/DayShift\"\u003e\u003ccode\u003e@​DayShift\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/octokit/request.js/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.12 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.1 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.1...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar-fs` from 2.1.1 to 2.1.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/f421a235565b6a6d305bdf87e999ebdfae9dd1cc\"\u003e\u003ccode\u003ef421a23\u003c/code\u003e\u003c/a\u003e 2.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/c412fa130e216d4c01392f6fb62c8725c1a4ac8b\"\u003e\u003ccode\u003ec412fa1\u003c/code\u003e\u003c/a\u003e refactor to same pattern as v3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/4b7e8688a54268b7c3268848504167635050aa10\"\u003e\u003ccode\u003e4b7e868\u003c/code\u003e\u003c/a\u003e 2.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/266194b94b5ab0b6c2ad2739e4247970dbd1e7ba\"\u003e\u003ccode\u003e266194b\u003c/code\u003e\u003c/a\u003e hardlink tweak from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/d97731b0e1b8a244ab859784b514cfcf5585ad3d\"\u003e\u003ccode\u003ed97731b\u003c/code\u003e\u003c/a\u003e 2.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mafintosh/tar-fs/commit/fd1634e869e7c5f85948e95eabdaa8451a085de5\"\u003e\u003ccode\u003efd1634e\u003c/code\u003e\u003c/a\u003e symlink tweak from main\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mafintosh/tar-fs/compare/v2.1.1...v2.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tmp` from 0.2.3 to 0.2.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/3d2fe387f3f91b13830b9182faa02c3231ea8258\"\u003e\u003ccode\u003e3d2fe38\u003c/code\u003e\u003c/a\u003e Bump up the version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/e16282879e5d0554fe824e1ab3df724847e91183\"\u003e\u003ccode\u003ee162828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/raszi/node-tmp/issues/309\"\u003e#309\u003c/a\u003e from fflorent/fix-tmp-dir-with-dir\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b847d2f1a42b625c26149f4a2029ed00a1edf90b\"\u003e\u003ccode\u003eb847d2f\u003c/code\u003e\u003c/a\u003e Fix use of tmp.dir() with \u003ccode\u003edir\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/08fa3abac32b621506512724b28b56b9c4a95846\"\u003e\u003ccode\u003e08fa3ab\u003c/code\u003e\u003c/a\u003e Update version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/1cf4ec54180a77a2a95dc1941efa1659774c8787\"\u003e\u003ccode\u003e1cf4ec5\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/188b25e529496e37adaf1a1d9dccb40019a08b1b\"\u003e\u003ccode\u003e188b25e\u003c/code\u003e\u003c/a\u003e Fix GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/73b9fe45bbb40157acdfab8126dd0911de91c8fa\"\u003e\u003ccode\u003e73b9fe4\u003c/code\u003e\u003c/a\u003e Add test case for GHSA-52f5-9888-hmc6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/b8e2f29a7575352e49e4882a836aab4bd2ec927f\"\u003e\u003ccode\u003eb8e2f29\u003c/code\u003e\u003c/a\u003e Remove broken tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/2892a027b4d2d3a25d1d08a398bc108a0200857f\"\u003e\u003ccode\u003e2892a02\u003c/code\u003e\u003c/a\u003e Remove outdated URL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/raszi/node-tmp/commit/f5923182461a89e9de5a7a09c75f410a76979ae7\"\u003e\u003ccode\u003ef592318\u003c/code\u003e\u003c/a\u003e Reformat package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually b...\n\n_Description has been truncated_","html_url":"https://github.com/omercnet/renovate/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/omercnet%2Frenovate/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"}},{"old_version":"5.11.3","new_version":"6.3.0","update_type":"major","path":null,"pr_created_at":"2026-01-20T21:12:48.000Z","version_change":"5.11.3 → 6.3.0","issue":{"uuid":"3835486194","node_id":"PR_kwDOQ9oRwM6-Tq_Z","number":1,"state":"open","title":"Bump openpgp from 5.11.3 to 6.3.0","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-20T21:12:48.000Z","updated_at":"2026-01-20T21:22:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"openpgp","old_version":"5.11.3","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":null,"ecosystem":"npm"},"body":"Bumps [openpgp](https://github.com/openpgpjs/openpgpjs) from 5.11.3 to 6.3.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix zlib compression for data larger than 65KB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1894\"\u003eopenpgpjs/openpgpjs#1894\u003c/a\u003e):\nAffected versions: v6.2.0 and v6.2.1 .\nAs compression is disabled by default in openpgpjs, the issue only affects users who enabled zlib compression via e.g. \u003ccode\u003econfig.preferredCompressionAlgorithm = openpgp.enums.compression.zlib\u003c/code\u003e and encrypted or signed data larger than 65KB.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLightweight build: lazy load tweetnacl dependency module (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1877\"\u003eopenpgpjs/openpgpjs#1877\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eKey validation: use WebCrypto API when available for curve25519\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eInternal dependency updates\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplement OpenPGP message grammar validation (add \u003ccode\u003econfig.enforceGrammar\u003c/code\u003e, enabled by default) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnable using WebCrypto for X25519 when available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1829\"\u003e#1829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrefer subkeys with higher algorithm IDs (in case of equal creation timestamps), on the assumption that that's the most\nmodern/secure algorithm (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1854\"\u003e#1854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove packet stream \u0026amp; error handling (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1856\"\u003e#1856\u003c/a\u003e):\n\u003cul\u003e\n\u003cli\u003ePacket parsing errors in not-yet-authenticated streams (i.e. SEIPDv1 with allowUnauthenticatedStream: true) get delayed until the decrypted data stream is authenticated\u003c/li\u003e\n\u003cli\u003eNon-critical unknown packets get turned into UnparseablePacket` objects on the packet stream instead of being ignored\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eMake Issuer Key ID signature subpacket non-critical (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove type definition for the \u003ccode\u003eUser\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1857\"\u003e#1857\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.3...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=5.11.3\u0026new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/bravellian/apt-repo-catalog/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bravellian%2Fapt-repo-catalog/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"5.11.3","new_version":"6.3.0","update_type":"major","path":null,"pr_created_at":"2026-01-20T09:21:10.000Z","version_change":"5.11.3 → 6.3.0","issue":{"uuid":"3832820347","node_id":"PR_kwDOQ9Zce86-Ksm4","number":9,"state":"open","title":"chore(deps): bump openpgp from 5.11.3 to 6.3.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-20T09:21:10.000Z","updated_at":"2026-01-21T13:46:09.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"openpgp","old_version":"5.11.3","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":null,"ecosystem":"npm"},"body":"Bumps [openpgp](https://github.com/openpgpjs/openpgpjs) from 5.11.3 to 6.3.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix zlib compression for data larger than 65KB (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1894\"\u003eopenpgpjs/openpgpjs#1894\u003c/a\u003e):\nAffected versions: v6.2.0 and v6.2.1 .\nAs compression is disabled by default in openpgpjs, the issue only affects users who enabled zlib compression via e.g. \u003ccode\u003econfig.preferredCompressionAlgorithm = openpgp.enums.compression.zlib\u003c/code\u003e and encrypted or signed data larger than 65KB.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.1...v6.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eLightweight build: lazy load tweetnacl dependency module (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1877\"\u003eopenpgpjs/openpgpjs#1877\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eKey validation: use WebCrypto API when available for curve25519\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eInternal dependency updates\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.0...v6.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplement OpenPGP message grammar validation (add \u003ccode\u003econfig.enforceGrammar\u003c/code\u003e, enabled by default) (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnable using WebCrypto for X25519 when available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1829\"\u003e#1829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrefer subkeys with higher algorithm IDs (in case of equal creation timestamps), on the assumption that that's the most\nmodern/secure algorithm (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1854\"\u003e#1854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove packet stream \u0026amp; error handling (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1856\"\u003e#1856\u003c/a\u003e):\n\u003cul\u003e\n\u003cli\u003ePacket parsing errors in not-yet-authenticated streams (i.e. SEIPDv1 with allowUnauthenticatedStream: true) get delayed until the decrypted data stream is authenticated\u003c/li\u003e\n\u003cli\u003eNon-critical unknown packets get turned into UnparseablePacket` objects on the packet stream instead of being ignored\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eMake Issuer Key ID signature subpacket non-critical (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove type definition for the \u003ccode\u003eUser\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1857\"\u003e#1857\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.11.3...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=5.11.3\u0026new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/gabrielee5/kript/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/gabrielee5%2Fkript/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"}},{"old_version":"6.2.2","new_version":"6.3.0","update_type":"minor","path":null,"pr_created_at":"2026-01-13T18:15:54.000Z","version_change":"6.2.2 → 6.3.0","issue":{"uuid":"3809991850","node_id":"PR_kwDOCG8vVc68_Ywm","number":2974,"state":"closed","title":"Bump the dependencies group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-19T22:17:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-13T18:15:54.000Z","updated_at":"2026-01-19T22:17:58.000Z","time_to_close":532922,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":3,"packages":[{"name":"i18next","old_version":"25.3.6","new_version":"25.7.4","repository_url":"https://github.com/i18next/i18next"},{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"zod","old_version":"4.1.12","new_version":"4.3.5","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the dependencies group with 3 updates in the /app directory: [i18next](https://github.com/i18next/i18next), [openpgp](https://github.com/openpgpjs/openpgpjs) and [zod](https://github.com/colinhacks/zod).\n\nUpdates `i18next` from 25.3.6 to 25.7.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/releases\"\u003ei18next's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev25.7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Interpolation breaks when cloning an instance \u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/2376\"\u003e2376\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etype definitions for new transDefaultProps option in react-i18next [react-i18next: \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/1895\"\u003e#1895\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/1895\"\u003ei18next/react-i18next#1895\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e#2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector function for testing purposes \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2346\"\u003e2346\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: enableSelector: true doesn't work with custom keySeparator \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2341\"\u003e2341\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: KeyPrefix not working with new selector api \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2340\"\u003e2340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd new selector API to improve TypeScript IDE performance \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2322\"\u003e2322\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eTo enable it, set \u003ccode\u003eenableSelector: true\u003c/code\u003e in your configuration options\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/blob/master/CHANGELOG.md\"\u003ei18next's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e25.7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Interpolation breaks when cloning an instance \u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/2376\"\u003e2376\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etype definitions for new transDefaultProps option in react-i18next [react-i18next: \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/1895\"\u003e#1895\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/i18next/react-i18next/issues/1895\"\u003ei18next/react-i18next#1895\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/04392be4ec46325e2ef9fdb184f93d64c206f85a\"\u003e\u003ccode\u003e04392be\u003c/code\u003e\u003c/a\u003e 25.7.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/92c8f482ab3fac9b4ff29a1cbf622e26fff22397\"\u003e\u003ccode\u003e92c8f48\u003c/code\u003e\u003c/a\u003e fix: Interpolation breaks when cloning an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2376\"\u003e#2376\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/5f44eb70189ff7b1a7ff289bd4b642bdc170c152\"\u003e\u003ccode\u003e5f44eb7\u003c/code\u003e\u003c/a\u003e fix img url\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/1e5f568674433e496ef3608784203935aff11eea\"\u003e\u003ccode\u003e1e5f568\u003c/code\u003e\u003c/a\u003e remove old addRule function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/e328830d3916037d667f972b775db2113c53441a\"\u003e\u003ccode\u003ee328830\u003c/code\u003e\u003c/a\u003e fallbackLng object with same language (omitting default fallback)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/c77c20383f42b2fb9bcba6da4982e3ed2434350b\"\u003e\u003ccode\u003ec77c203\u003c/code\u003e\u003c/a\u003e jsr update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/a73189767e031a889db35baca3598a08626ec903\"\u003e\u003ccode\u003ea731897\u003c/code\u003e\u003c/a\u003e 25.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/c60d722711aafa082c55b04063fc69b477cadef8\"\u003e\u003ccode\u003ec60d722\u003c/code\u003e\u003c/a\u003e type definitions for new transDefaultProps option in react-i18next\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/3e160f39c2bd4506e0be3c2af74c039219405389\"\u003e\u003ccode\u003e3e160f3\u003c/code\u003e\u003c/a\u003e jsr update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/3bd82e3686530fde480917c06131dbc571678a8d\"\u003e\u003ccode\u003e3bd82e3\u003c/code\u003e\u003c/a\u003e 25.7.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/i18next/i18next/compare/v25.3.6...v25.7.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.2.2 to 6.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zod` from 4.1.12 to 4.3.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/colinhacks/zod/releases\"\u003ezod's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.3.5\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e21afffdb42ccab554036312e33fed0ea3cb8f982 [Docs] Update migration guide docs for deprecation of message (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5595\"\u003e#5595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee36743e513aadb307b29949a80d6eb0dcc8fc278 Improve mini treeshaking\u003c/li\u003e\n\u003cli\u003e0cdc0b8597999fd9ca99767b912c1e82c1ff2d6c 4.3.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.4\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e1a8bea3b474eada6f219c163d0d3ad09fadabe72 Add integration tests\u003c/li\u003e\n\u003cli\u003ee01cd02b2f23d7e9078d3813830b146f8a2258b4 Support patternProperties for looserecord (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5592\"\u003e#5592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e089e5fbb0f58ce96d2c4fb34cd91724c78df4af5 Improve looseRecord docs\u003c/li\u003e\n\u003cli\u003edecef9c418d9a598c3f1bada06891ba5d922c5cd Fix lint\u003c/li\u003e\n\u003cli\u003e9443aab00d44d5d5f4a7eada65fc0fc851781042 Drop iso time in fromJSONSchema\u003c/li\u003e\n\u003cli\u003e66bda7491a1b9eab83bdeec0c12f4efc7290bd48 Remove .refine() from ZodMiniType\u003c/li\u003e\n\u003cli\u003eb4ab94ca608cd5b581bfc12b20dd8d95b35b3009 4.3.4\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.3\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ef3b2151959d215d405f54dff3c7ab3bf1fd887ca v4.3.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.2\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebf96635d243118de6e4f260077aa137453790bf6 Loosen strictObjectinside intersection (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5587\"\u003e#5587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef71dc0182ab0f0f9a6be6295b07faca269e10179 Remove Juno (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5590\"\u003e#5590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0f41e5a12a43e6913c9dcb501b2b5136ea86500d 4.3.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0fe88407a4149c907929b757dc6618d8afe998fc allow non-overwriting extends with refinements. 4.3.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cp\u003eThis is Zod's biggest release since 4.0. It addresses several of Zod's longest-standing feature requests.\u003c/p\u003e\n\u003ch2\u003e\u003ccode\u003ez.fromJSONSchema()\u003c/code\u003e\u003c/h2\u003e\n\u003cp\u003eConvert JSON Schema to Zod (\u003ca href=\"https://redirect.github.com/colinhacks/zod/pull/5534\"\u003e#5534\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/colinhacks/zod/pull/5586\"\u003e#5586\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eYou can now convert JSON Schema definitions directly into Zod schemas. This function supports JSON Schema \u003ccode\u003e\u0026quot;draft-2020-12\u0026quot;\u003c/code\u003e, \u003ccode\u003e\u0026quot;draft-7\u0026quot;\u003c/code\u003e, \u003ccode\u003e\u0026quot;draft-4\u0026quot;\u003c/code\u003e, and OpenAPI 3.0.\u003c/p\u003e\n\u003cpre lang=\"typescript\"\u003e\u003ccode\u003eimport * as z from \u0026quot;zod\u0026quot;;\n\u003cp\u003econst schema = z.fromJSONSchema({\ntype: \u0026quot;object\u0026quot;,\nproperties: {\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/0cdc0b8597999fd9ca99767b912c1e82c1ff2d6c\"\u003e\u003ccode\u003e0cdc0b8\u003c/code\u003e\u003c/a\u003e 4.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/e36743e513aadb307b29949a80d6eb0dcc8fc278\"\u003e\u003ccode\u003ee36743e\u003c/code\u003e\u003c/a\u003e Improve mini treeshaking\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/21afffdb42ccab554036312e33fed0ea3cb8f982\"\u003e\u003ccode\u003e21afffd\u003c/code\u003e\u003c/a\u003e [Docs] Update migration guide docs for deprecation of message (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5595\"\u003e#5595\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/b4ab94ca608cd5b581bfc12b20dd8d95b35b3009\"\u003e\u003ccode\u003eb4ab94c\u003c/code\u003e\u003c/a\u003e 4.3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/66bda7491a1b9eab83bdeec0c12f4efc7290bd48\"\u003e\u003ccode\u003e66bda74\u003c/code\u003e\u003c/a\u003e Remove .refine() from ZodMiniType\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/9443aab00d44d5d5f4a7eada65fc0fc851781042\"\u003e\u003ccode\u003e9443aab\u003c/code\u003e\u003c/a\u003e Drop iso time in fromJSONSchema\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/decef9c418d9a598c3f1bada06891ba5d922c5cd\"\u003e\u003ccode\u003edecef9c\u003c/code\u003e\u003c/a\u003e Fix lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/089e5fbb0f58ce96d2c4fb34cd91724c78df4af5\"\u003e\u003ccode\u003e089e5fb\u003c/code\u003e\u003c/a\u003e Improve looseRecord docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/e01cd02b2f23d7e9078d3813830b146f8a2258b4\"\u003e\u003ccode\u003ee01cd02\u003c/code\u003e\u003c/a\u003e Support patternProperties for looserecord (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5592\"\u003e#5592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/1a8bea3b474eada6f219c163d0d3ad09fadabe72\"\u003e\u003ccode\u003e1a8bea3\u003c/code\u003e\u003c/a\u003e Add integration tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/colinhacks/zod/compare/v4.1.12...v4.3.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/freedomofpress/securedrop-client/pull/2974","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop-client/issues/2974","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2974/packages"}},{"old_version":"6.2.2","new_version":"6.3.0","update_type":"minor","path":null,"pr_created_at":"2025-12-15T21:26:27.000Z","version_change":"6.2.2 → 6.3.0","issue":{"uuid":"3732185658","node_id":"PR_kwDOCG8vVc65BEP0","number":2923,"state":"closed","title":"Bump the dependencies group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-13T18:15:43.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-15T21:26:27.000Z","updated_at":"2026-01-13T18:15:45.000Z","time_to_close":2494156,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":4,"packages":[{"name":"i18next","old_version":"25.3.6","new_version":"25.7.2","repository_url":"https://github.com/i18next/i18next"},{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"},{"name":"tailwindcss","old_version":"4.1.12","new_version":"4.1.17","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"zod","old_version":"4.1.12","new_version":"4.1.13","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the dependencies group with 4 updates in the /app directory: [i18next](https://github.com/i18next/i18next), [openpgp](https://github.com/openpgpjs/openpgpjs), [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) and [zod](https://github.com/colinhacks/zod).\n\nUpdates `i18next` from 25.3.6 to 25.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/releases\"\u003ei18next's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e#2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector function for testing purposes \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2346\"\u003e2346\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: enableSelector: true doesn't work with custom keySeparator \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2341\"\u003e2341\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: KeyPrefix not working with new selector api \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2340\"\u003e2340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev25.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd new selector API to improve TypeScript IDE performance \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2322\"\u003e2322\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eTo enable it, set \u003ccode\u003eenableSelector: true\u003c/code\u003e in your configuration options\u003c/li\u003e\n\u003cli\u003eWith \u003ccode\u003eenableSelector: \u0026quot;optimize\u0026quot;\u003c/code\u003e, i18next can now handle translation dictionaries of any size, without affecting IDE performance or build times\u003c/li\u003e\n\u003cli\u003eTo assist with the migration, we've published the following packages:\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahrjarrett/i18next-selector/tree/main/packages/codemod\"\u003e\u003ccode\u003e@​i18next-selector/codemod\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahrjarrett/i18next-selector/tree/main/packages/vite-plugin\"\u003e\u003ccode\u003e@​i18next-selector/vite-plugin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/i18next/i18next/blob/master/CHANGELOG.md\"\u003ei18next's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e25.7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Invalid overwrite of default value for overloadTranslationOptionHandler \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2374\"\u003e2374\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eTS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e2372\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance \u003ccode\u003ecloneInstance\u003c/code\u003e to create a new interpolator if interpolation options are passed in. This will address \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2371\"\u003e2371\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: dependency updates \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2368\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etypes: export \u003ccode\u003eInterpolationMap\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: createInstance does not exist on an instance \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2366\"\u003e2366\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003efeat\u003c/strong\u003e: \u003ccode\u003eexists()\u003c/code\u003e method now respects \u003ccode\u003ereturnObjects\u003c/code\u003e option - returns \u003ccode\u003efalse\u003c/code\u003e when accessing an object key with \u003ccode\u003ereturnObjects: false\u003c/code\u003e, enabling detection of object vs string keys \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2359\"\u003e2359\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eNote\u003c/strong\u003e: This is a potential behavior change. If you were previously calling \u003ccode\u003eexists()\u003c/code\u003e with \u003ccode\u003ereturnObjects: false\u003c/code\u003e on object keys, those calls will now return \u003ccode\u003efalse\u003c/code\u003e instead of \u003ccode\u003etrue\u003c/code\u003e. This enables developers to detect whether a key points to an object or string value.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport esm type declaration for keyFromSelector \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2356\"\u003e2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003elast change\u003c/a\u003e =\u0026gt; for cjs there is just 1 default export, no named exports, fixes \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2348\"\u003e2348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector from index.cjs \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2347\"\u003e2347\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eexport keyFromSelector function for testing purposes \u003ca href=\"https://redirect.github.com/i18next/i18next/pull/2346\"\u003e2346\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e25.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: enableSelector: true doesn't work with custom keySeparator \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2341\"\u003e2341\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/3bd82e3686530fde480917c06131dbc571678a8d\"\u003e\u003ccode\u003e3bd82e3\u003c/code\u003e\u003c/a\u003e 25.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/547c78509c35cfce03f1db7497c97f7d9641a5ba\"\u003e\u003ccode\u003e547c785\u003c/code\u003e\u003c/a\u003e fix: Invalid overwrite of default value for overloadTranslationOptionHandler ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/1ea14ddd526d1ddd6467df964be0633d20713374\"\u003e\u003ccode\u003e1ea14dd\u003c/code\u003e\u003c/a\u003e jsr update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/1e9ecb5a5d0a2248675e71aae85b17446c2cb530\"\u003e\u003ccode\u003e1e9ecb5\u003c/code\u003e\u003c/a\u003e 25.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/7f2479b3bd99d38c60d68ed0e18e058e1a1322d9\"\u003e\u003ccode\u003e7f2479b\u003c/code\u003e\u003c/a\u003e TS: remove wrong signature \u003ca href=\"https://redirect.github.com/i18next/i18next/issues/2372\"\u003e#2372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/34dc5eb8e6273c59fa74a582ad2b0713b5c5cf6a\"\u003e\u003ccode\u003e34dc5eb\u003c/code\u003e\u003c/a\u003e fix publish_jsr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/39598602a375f58e8876d076ca09a44597772628\"\u003e\u003ccode\u003e3959860\u003c/code\u003e\u003c/a\u003e fix publish_jsr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/9468e4420433451c1f21d1c32d4c0fdcaf6f0698\"\u003e\u003ccode\u003e9468e44\u003c/code\u003e\u003c/a\u003e fix script\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/9b74b9bc3f04bbcc66927bee0401a261f9e9f26b\"\u003e\u003ccode\u003e9b74b9b\u003c/code\u003e\u003c/a\u003e fix script\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/i18next/i18next/commit/eb9529ef2ac23087de834ed20524ae2c220afcc2\"\u003e\u003ccode\u003eeb9529e\u003c/code\u003e\u003c/a\u003e fix script\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/i18next/i18next/compare/v25.3.6...v25.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `openpgp` from 6.2.2 to 6.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tailwindcss` from 4.1.12 to 4.1.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/releases\"\u003etailwindcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSubstitute \u003ccode\u003e@variant\u003c/code\u003e inside legacy JS APIs (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19263\"\u003e#19263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent occasional crash on Windows when loaded into a worker thread (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19242\"\u003e#19242\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.16\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDiscard candidates with an empty data type (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19172\"\u003e#19172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization of arbitrary variants with attribute selectors (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19176\"\u003e#19176\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix invalid colors due to nested \u003ccode\u003e\u0026amp;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19184\"\u003e#19184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for \u003ccode\u003e\u0026amp; \u0026gt; :pseudo\u003c/code\u003e and \u003ccode\u003e\u0026amp; :pseudo\u003c/code\u003e arbitrary variants (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19178\"\u003e#19178\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.15\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix Safari devtools rendering issue due to \u003ccode\u003ecolor-mix\u003c/code\u003e fallback (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19069\"\u003e#19069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress Lightning CSS warnings about \u003ccode\u003e:deep\u003c/code\u003e, \u003ccode\u003e:slotted\u003c/code\u003e, and \u003ccode\u003e:global\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19094\"\u003e#19094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix resolving theme keys when starting with the name of another theme key in JS configs and plugins (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19097\"\u003e#19097\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow named groups in combination with \u003ccode\u003enot-*\u003c/code\u003e, \u003ccode\u003ehas-*\u003c/code\u003e, and \u003ccode\u003ein-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19100\"\u003e#19100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent important utilities from affecting other utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19110\"\u003e#19110\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDon’t index into strings with the \u003ccode\u003etheme(…)\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19111\"\u003e#19111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix parsing issue when \u003ccode\u003e\\t\u003c/code\u003e is used in at-rules (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19130\"\u003e#19130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Canonicalize utilities containing \u003ccode\u003e0\u003c/code\u003e values (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19095\"\u003e#19095\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Migrate deprecated \u003ccode\u003ebreak-words\u003c/code\u003e to \u003ccode\u003ewrap-break-word\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19157\"\u003e#19157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the \u003ccode\u003epostinstall\u003c/code\u003e script from oxide (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19149\"\u003e#19149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.14\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHandle \u003ccode\u003e'\u003c/code\u003e syntax in ClojureScript when extracting classes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18888\"\u003e#18888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHandle \u003ccode\u003e@variant\u003c/code\u003e inside \u003ccode\u003e@custom-variant\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18885\"\u003e#18885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge suggestions when using \u003ccode\u003e@utility\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18900\"\u003e#18900\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that file system watchers created when using the CLI are always cleaned up (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18905\"\u003e#18905\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-column\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-column-start\u003c/code\u003e or \u003ccode\u003egrid-column-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-row\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-row-start\u003c/code\u003e or \u003ccode\u003egrid-row-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent duplicate CSS when overwriting a static utility with a theme key (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18056\"\u003e#18056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eShow Lightning CSS warnings (if any) when optimizing/minifying (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18918\"\u003e#18918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003edefault\u003c/code\u003e export condition for \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18948\"\u003e#18948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-throw errors from PostCSS nodes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDetect classes in markdown inline directives (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18967\"\u003e#18967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure files with only \u003ccode\u003e@theme\u003c/code\u003e produce no output when built (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18979\"\u003e#18979\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport Maud templates when extracting classes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18988\"\u003e#18988\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Do not migrate \u003ccode\u003evariant = 'outline'\u003c/code\u003e during upgrades (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18922\"\u003e#18922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Show version mismatch (if any) when running upgrade tool (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19028\"\u003e#19028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Ensure first class inside \u003ccode\u003eclassName\u003c/code\u003e is migrated (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19031\"\u003e#19031\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md\"\u003etailwindcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.17] - 2025-11-06\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSubstitute \u003ccode\u003e@variant\u003c/code\u003e inside legacy JS APIs (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19263\"\u003e#19263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent occasional crash on Windows when loaded into a worker thread (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19242\"\u003e#19242\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.16] - 2025-10-23\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDiscard candidates with an empty data type (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19172\"\u003e#19172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization of arbitrary variants with attribute selectors (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19176\"\u003e#19176\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix invalid colors due to nested \u003ccode\u003e\u0026amp;\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19184\"\u003e#19184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for \u003ccode\u003e\u0026amp; \u0026gt; :pseudo\u003c/code\u003e and \u003ccode\u003e\u0026amp; :pseudo\u003c/code\u003e arbitrary variants (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19178\"\u003e#19178\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.15] - 2025-10-20\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix Safari devtools rendering issue due to \u003ccode\u003ecolor-mix\u003c/code\u003e fallback (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19069\"\u003e#19069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSuppress Lightning CSS warnings about \u003ccode\u003e:deep\u003c/code\u003e, \u003ccode\u003e:slotted\u003c/code\u003e, and \u003ccode\u003e:global\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19094\"\u003e#19094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix resolving theme keys when starting with the name of another theme key in JS configs and plugins (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19097\"\u003e#19097\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow named groups in combination with \u003ccode\u003enot-*\u003c/code\u003e, \u003ccode\u003ehas-*\u003c/code\u003e, and \u003ccode\u003ein-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19100\"\u003e#19100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent important utilities from affecting other utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19110\"\u003e#19110\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDon’t index into strings with the \u003ccode\u003etheme(…)\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19111\"\u003e#19111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix parsing issue when \u003ccode\u003e\\t\u003c/code\u003e is used in at-rules (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19130\"\u003e#19130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Canonicalize utilities containing \u003ccode\u003e0\u003c/code\u003e values (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19095\"\u003e#19095\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: Migrate deprecated \u003ccode\u003ebreak-words\u003c/code\u003e to \u003ccode\u003ewrap-break-word\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19157\"\u003e#19157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the \u003ccode\u003epostinstall\u003c/code\u003e script from oxide (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19149\"\u003e#19149\u003c/a\u003e)(\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19149\"\u003etailwindlabs/tailwindcss#19149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.14] - 2025-10-01\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHandle \u003ccode\u003e'\u003c/code\u003e syntax in ClojureScript when extracting classes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18888\"\u003e#18888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHandle \u003ccode\u003e@variant\u003c/code\u003e inside \u003ccode\u003e@custom-variant\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18885\"\u003e#18885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMerge suggestions when using \u003ccode\u003e@utility\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18900\"\u003e#18900\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure that file system watchers created when using the CLI are always cleaned up (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18905\"\u003e#18905\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-column\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-column-start\u003c/code\u003e or \u003ccode\u003egrid-column-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not generate \u003ccode\u003egrid-row\u003c/code\u003e utilities when configuring \u003ccode\u003egrid-row-start\u003c/code\u003e or \u003ccode\u003egrid-row-end\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18907\"\u003e#18907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePrevent duplicate CSS when overwriting a static utility with a theme key (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18056\"\u003e#18056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eShow Lightning CSS warnings (if any) when optimizing/minifying (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18918\"\u003e#18918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003edefault\u003c/code\u003e export condition for \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18948\"\u003e#18948\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-throw errors from PostCSS nodes (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18373\"\u003e#18373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDetect classes in markdown inline directives (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18967\"\u003e#18967\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure files with only \u003ccode\u003e@theme\u003c/code\u003e produce no output when built (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/18979\"\u003e#18979\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/e9c9c4f79db00a7a1dc7a3e2a13ced3b19f55555\"\u003e\u003ccode\u003ee9c9c4f\u003c/code\u003e\u003c/a\u003e Release v4.1.17 (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19272\"\u003e#19272\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/dc6a3ce349a082e6c437288e52d0eea9a9ea4ff2\"\u003e\u003ccode\u003edc6a3ce\u003c/code\u003e\u003c/a\u003e Substitute \u003ccode\u003e@variant\u003c/code\u003e inside utilities (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19263\"\u003e#19263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/e71e70eda9c0372872b9c8bf7d70d35c22004bd4\"\u003e\u003ccode\u003ee71e70e\u003c/code\u003e\u003c/a\u003e Update magic-string 0.30.19 → 0.30.21 (minor) (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19238\"\u003e#19238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/cbbbe844759a35f5bd2a976bb6e66e1f7104c574\"\u003e\u003ccode\u003ecbbbe84\u003c/code\u003e\u003c/a\u003e Release 4.1.16 (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19185\"\u003e#19185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/601d6719f8f400f623818a1f54e07caceee18bb4\"\u003e\u003ccode\u003e601d671\u003c/code\u003e\u003c/a\u003e Fix incorrect colors used in pseudo-element (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19184\"\u003e#19184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/a41add9fab39821d345c0ac9fe8dd0100d42a7fb\"\u003e\u003ccode\u003ea41add9\u003c/code\u003e\u003c/a\u003e Improve canonicalization for \u003ccode\u003e\u0026amp; \u0026gt; :pseudo\u003c/code\u003e and \u003ccode\u003e\u0026amp; :pseudo\u003c/code\u003e arbitrary variants...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/0113b88fbd5ed51d9858ddd25c7c27b9a7e3c227\"\u003e\u003ccode\u003e0113b88\u003c/code\u003e\u003c/a\u003e Fix canonicalization of arbitrary variants with attribute selectors (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19176\"\u003e#19176\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/29687e01838dd4ddf0ce158eb119724365918608\"\u003e\u003ccode\u003e29687e0\u003c/code\u003e\u003c/a\u003e Discard candidates with an empty data type (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19172\"\u003e#19172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/56e7f3b2c294e6fb1934fb41fd5fdfc3b5af6965\"\u003e\u003ccode\u003e56e7f3b\u003c/code\u003e\u003c/a\u003e Improve memory usage during canonicalization (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19171\"\u003e#19171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/3a4ab8201b8f3cc6df709625ead233da670835d5\"\u003e\u003ccode\u003e3a4ab82\u003c/code\u003e\u003c/a\u003e Stop suggesting legacy utilities (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss/issues/19169\"\u003e#19169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commits/v4.1.17/packages/tailwindcss\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `zod` from 4.1.12 to 4.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/colinhacks/zod/releases\"\u003ezod's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.13\u003c/h2\u003e\n\u003ch2\u003eCommits:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e5c2602ceb8be8941c64bbe5ac7d92cc174ae6f7e Update AI widget (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5318\"\u003e#5318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed3da530deb713c853e79405adddf770e156d50ac reflect the specified regex correctly in error (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5338\"\u003e#5338\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e39f8c45b8a29de2330b485862b83cb35849f4238 faster initialization (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5352\"\u003e#5352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee9e27905cc0f37cb079ea473af8359d5e17a57a1 Clean up comment\u003c/li\u003e\n\u003cli\u003e8e4739fadbd7de710eb67d34ba7e06a1029a68ab Update inferred z.promise() type\u003c/li\u003e\n\u003cli\u003e2849df8907b011ab056d67ae8e3d27577ac4ed3e fix(locales): improve Dutch (nl) localization (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5367\"\u003e#5367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb0d3c9f628b60d358b66acf8f0ef7937fc9e8950 Run tests on windows\u003c/li\u003e\n\u003cli\u003e6fd61b71b85e4fef4c168a46c3ebcc574f26255f feat unitest (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5358\"\u003e#5358\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea4e4bc80e204577c698cf1369dd63c2b986d35f3 Lock to node 24\u003c/li\u003e\n\u003cli\u003e8de8bad0fa84194b81efd32474462d7a236a1ee4 Fix windows build\u003c/li\u003e\n\u003cli\u003eb2c186bbae3a74a12acd385c1ced3ed978235cf8 Use Node LTS\u003c/li\u003e\n\u003cli\u003eb73b1f61c798efdf497852872b4c19cd4111c1f3 Consolidate isTransforming logic\u003c/li\u003e\n\u003cli\u003ed85f3ea4da53a1b232017dd4e4a2874eca4d8d76 Fix \u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5353\"\u003e#5353\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e1bac0f37b529eb9a0d833a01200f5a898e8e6220 Fix test.yml\u003c/li\u003e\n\u003cli\u003e86d4dad5bc27b4b35df533c9170a552ad8c6c3bc Fix partial record\u003c/li\u003e\n\u003cli\u003e5e6c0fd7471636feffe5763c9b7637879da459fe Fix attw on windows\u003c/li\u003e\n\u003cli\u003e27fc616b8edb93cc27a4d25b37479d6e418bbccf Extend test timeout\u003c/li\u003e\n\u003cli\u003e8d336c4d15e1917d78b67b890f7182f26633b56f Remove windows runner\u003c/li\u003e\n\u003cli\u003e5be72e0ef4dceb1387febb7981079ecdeb5e2817 chore(doc): update metadata.tsx (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5331\"\u003e#5331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecb0272a0ad9962df95832a78587f54afec685351 docs: add 'cd zod' step to development setup instructions (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5394\"\u003e#5394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e24e3325dc63010e4f74e23caf91199652e8b12a9 docs: replace 'Refinement' with 'Transform' in transforms section (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5397\"\u003e#5397\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e644a08203ebb00e23484b3f9a986ae783ce26a9a chore: add resource for validating environment variables with Zod (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5403\"\u003e#5403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e1cfcf578a47527044e85455e79c907fd913adc Change doc for email validation method in Zod schema (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5392\"\u003e#5392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e88cf9441448608d9de24b47b8a4a4ba879fc2433 Fix: Iterate over keys in catchall object using \u0026quot;in\u0026quot; operator. (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5376\"\u003e#5376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaa437325c5957c0cf57667cd7b8568603ee7ecd3 Emphasise that \u003ccode\u003eenum\u003c/code\u003e validates against values, for object literal \u0026amp; \u003ccode\u003eenum\u003c/code\u003es (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5386\"\u003e#5386\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3a4bd00aaa16276ffeb2708cc083a633bd4dd756 Improve Hebrew localization for Zod error messages (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5409\"\u003e#5409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec10f9d109874aeca6855383616c086b077d39f89 Fix typos (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5420\"\u003e#5420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e86f0ef918bb24f4ab9f1ce2afc5cf2d1a4a99473 Documentation Improvements (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5417\"\u003e#5417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee120a4877f4d8d076abf2db5c5cceab91a046be9 Fix opt tuple\u003c/li\u003e\n\u003cli\u003ef9bbb50c48f9c07ca869d28d6a7086d7290b97a3 Improve tuple\u003c/li\u003e\n\u003cli\u003e0ba0f348f677688b69ed78473e022f5d225b41fc Optimize docs caching/ISR (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3ec66c74b3fbc2616e880a90751c2cad7270bb3 Improve docs caching\u003c/li\u003e\n\u003cli\u003ec8cce4b607a7c0ca99cfb454571a3948ee9e85fb docs: fix typos and links (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5428\"\u003e#5428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e84ec04708525d6e83e3408d5d3a21edde742bdc5 docs(ecosystem): Add react-f3 (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5429\"\u003e#5429\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3396515cc6f04f5f346a1e00256ad09998dbaeb3 Docs: Fix typo in safeExtend description (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5445\"\u003e#5445\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3d93a7d593c19dc1822bc96a7c9d47312c29995e feat: MAC address validation in v4 and mini (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5440\"\u003e#5440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef2f0d178e1c526bc00ad0385706efad318bd44b0 Fix dual package hazard for \u003ccode\u003eglobalRegistry\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5452\"\u003e#5452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9fc493f86f17a5fc550df78e7e261137885f51ea fix: use oneOf for discriminated unions in JSON Schema (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5453\"\u003e#5453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e603dbe8dba6253c702ca8cf10b5299910dba3c88 Clean up regex, drop backreferences\u003c/li\u003e\n\u003cli\u003eab69b9ee813713a111b56a60c2df929eaf5ba426 Update mac addr tests\u003c/li\u003e\n\u003cli\u003ef7910528901c05293bad275fffcb54a82e28fcc9 chore: upgrade vitest to v4 (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5028\"\u003e#5028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef97e80da9197064937a58167619967bee4ebb638 fix(core): prevent infinite recursion for recursive tuples (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5089\"\u003e#5089\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5094\"\u003e#5094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e002e01ad0fcc17b17683adafc80f2a86e8d355a9 fix(record): handle non-function constructor field in isPlainObject (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5098\"\u003e#5098\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e67165174eb8c7d5c6e76e760830f3109b4fdbd0e docs(contributing): add instructions on building \u003ccode\u003e@​zod/docs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5114\"\u003e#5114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8b0603dde684f1665bb2329111ed187f73ccf0ac Fix typo in ISO time documentation (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5277\"\u003e#5277\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebe85ecc48a83e7f65ac0458d25f832fb4e28c9e7 docs(codecs): correct \u003ccode\u003estringToDate\u003c/code\u003e safeDecode methods (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e50bba5462546401939920a6566a81c0d9c8ef7e1 Add zodgres to ecosystem documentation (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5308\"\u003e#5308\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/4063e802d539d04182fc3e66a543ae6d1ba5658e\"\u003e\u003ccode\u003e4063e80\u003c/code\u003e\u003c/a\u003e Update check-semver script\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/2cdd82b663706fdf642d7f030841a5b278f9173c\"\u003e\u003ccode\u003e2cdd82b\u003c/code\u003e\u003c/a\u003e 4.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/a774750d113982da28a2768b0a7c2de1f20c04e8\"\u003e\u003ccode\u003ea774750\u003c/code\u003e\u003c/a\u003e v4.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/0e803a29344a2f0ee637940cca96be3e6978b22e\"\u003e\u003ccode\u003e0e803a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Do not allow unsound pick/omit\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/5bfc8f269a81d9edc283e7920868161e4129fb23\"\u003e\u003ccode\u003e5bfc8f2\u003c/code\u003e\u003c/a\u003e Fix docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/3de39eea6f7ed286ae182093d0c91f3a6fdcca06\"\u003e\u003ccode\u003e3de39ee\u003c/code\u003e\u003c/a\u003e Implement slugify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/162fe298f0ec76d7f7883afbebdd732eb3c60773\"\u003e\u003ccode\u003e162fe29\u003c/code\u003e\u003c/a\u003e Add z.meta and z.describe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/0f4ce73ad0c5610c3c53857d05ebae619d229aa3\"\u003e\u003ccode\u003e0f4ce73\u003c/code\u003e\u003c/a\u003e Do not allow unsound pick/omit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/f52344e76bed0e69175ca8893c84736cf97b5d11\"\u003e\u003ccode\u003ef52344e\u003c/code\u003e\u003c/a\u003e Fix vitest 4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/colinhacks/zod/commit/d44253d6498564ecd24a6248ddca4e9bf4e43058\"\u003e\u003ccode\u003ed44253d\u003c/code\u003e\u003c/a\u003e Add support for number literal and TypeScript's enum keys in \u003ccode\u003ez.record\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/colinhacks/zod/issues/5334\"\u003e#5334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/colinhacks/zod/compare/v4.1.12...v4.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/freedomofpress/securedrop-client/pull/2923","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/freedomofpress%2Fsecuredrop-client/issues/2923","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2923/packages"}},{"old_version":"6.2.2","new_version":"6.3.0","update_type":"minor","path":null,"pr_created_at":"2025-12-15T03:04:34.000Z","version_change":"6.2.2 → 6.3.0","issue":{"uuid":"3728500612","node_id":"PR_kwDOJe0PbM640kKa","number":358,"state":"closed","title":"build(deps): bump openpgp from 6.2.2 to 6.3.0","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-15T03:04:47.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-15T03:04:34.000Z","updated_at":"2025-12-15T03:04:54.000Z","time_to_close":13,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"openpgp","old_version":"6.2.2","new_version":"6.3.0","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":null,"ecosystem":"npm"},"body":"Bumps [openpgp](https://github.com/openpgpjs/openpgpjs) from 6.2.2 to 6.3.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Node.js v24 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1896\"\u003eopenpgpjs/openpgpjs#1896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1933\"\u003eopenpgpjs/openpgpjs#1933\u003c/a\u003e)\nSince decompression can increase the memory usage non-linearly, add a \u003ccode\u003econfig.maxDecompressedMessageSize\u003c/code\u003e option to limit the decompressed message size.\nBy default it's set to \u003ccode\u003eInfinity\u003c/code\u003e, i.e. no limit.\nSet the config option to a number of bytes to limit the size of data that gets decompressed.\u003c/li\u003e\n\u003cli\u003eSwitch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1887\"\u003eopenpgpjs/openpgpjs#1887\u003c/a\u003e)\nTo facilitate the above.\u003c/li\u003e\n\u003cli\u003eUse native CompressionStream/DecompressionStream when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1935\"\u003eopenpgpjs/openpgpjs#1935\u003c/a\u003e)\nFor improved compression/decompression performance when not streaming.\u003c/li\u003e\n\u003cli\u003eUse bufferless transforms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1893\"\u003eopenpgpjs/openpgpjs#1893\u003c/a\u003e)\nFor lower memory usage, especially when streaming.\u003c/li\u003e\n\u003cli\u003eJSDoc: make sure only user-facing entities are included in the docs, and add TS support (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1923\"\u003eopenpgpjs/openpgpjs#1923\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious dependency version bumps\u003c/li\u003e\n\u003cli\u003eVarious improvements to CI\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/e1cab74d1baa3e64fa173b831a595b3b9f4d4ae6\"\u003e\u003ccode\u003ee1cab74\u003c/code\u003e\u003c/a\u003e 6.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/fccbc3ec425084a2f1c7b9f59b16a89b304bec56\"\u003e\u003ccode\u003efccbc3e\u003c/code\u003e\u003c/a\u003e Use native Compression Streams API when not streaming (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1935\"\u003e#1935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a61cf1fcc898c31defaac9ffdc6e91f505618899\"\u003e\u003ccode\u003ea61cf1f\u003c/code\u003e\u003c/a\u003e Add config option to limit decompressed message size (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1933\"\u003e#1933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6ab6b9c842d7c04f278485c06259e95493db46a0\"\u003e\u003ccode\u003e6ab6b9c\u003c/code\u003e\u003c/a\u003e Tests: use native web streams when TransformStream is available (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1934\"\u003e#1934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1b2c842e601e9c25bb43c2b37b606f5beba62225\"\u003e\u003ccode\u003e1b2c842\u003c/code\u003e\u003c/a\u003e [npm audit fix] bump glob and js-yaml (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1939\"\u003e#1939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/341354f6a8c1e0ab3472ea64acb1792327a75c37\"\u003e\u003ccode\u003e341354f\u003c/code\u003e\u003c/a\u003e Tests: Stub \u003ccode\u003enavigator.hardwareConcurrency\u003c/code\u003e in Node v21+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/db9531df0f56942611e8d694cfe9be648293aa40\"\u003e\u003ccode\u003edb9531d\u003c/code\u003e\u003c/a\u003e Tests: Bump mocha timeout for browser tests (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1941\"\u003e#1941\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d00821b49bcadc1c877a83015c463fae9a61e9a5\"\u003e\u003ccode\u003ed00821b\u003c/code\u003e\u003c/a\u003e CI: add workflow permissions (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1937\"\u003e#1937\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/d27ef927b55ef44aff06dd5b08d10e734341019b\"\u003e\u003ccode\u003ed27ef92\u003c/code\u003e\u003c/a\u003e Bump playwright from 1.56.0 to 1.57.0 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1936\"\u003e#1936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/1af590a4177c619f23355045ccbfc18b95e0fbd6\"\u003e\u003ccode\u003e1af590a\u003c/code\u003e\u003c/a\u003e Switch from seek-bzip to unbzip2-stream (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1887\"\u003e#1887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.2.2...v6.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=6.2.2\u0026new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/qoomon/yolo-secret/pull/358","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qoomon%2Fyolo-secret/issues/358","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/358/packages"}},{"old_version":"5.5.0","new_version":"6.1.1","update_type":"major","path":"/ForkChatClient in the npm_and_yarn group across 1 directory","pr_created_at":"2025-12-11T15:37:59.000Z","version_change":"5.5.0 → 6.1.1","issue":{"uuid":"3719910797","node_id":"PR_kwDOH8XSjM64Ypku","number":8,"state":"closed","title":"Bump openpgp from 5.5.0 to 6.1.1 in /ForkChatClient in the npm_and_yarn group across 1 directory","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-21T20:24:32.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-11T15:37:59.000Z","updated_at":"2026-02-21T20:24:34.000Z","time_to_close":6237993,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"openpgp","old_version":"5.5.0","new_version":"6.1.1","repository_url":"https://github.com/openpgpjs/openpgpjs"}],"path":"/ForkChatClient in the npm_and_yarn group across 1 directory","ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 1 update in the /ForkChatClient directory: [openpgp](https://github.com/openpgpjs/openpgpjs).\n\nUpdates `openpgp` from 5.5.0 to 6.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openpgpjs/openpgpjs/releases\"\u003eopenpgp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.1 - Security Patch\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAddress \u003ca href=\"https://github.com/openpgpjs/openpgpjs/security/advisories/GHSA-8qff-qr5q-5pr8\"\u003eCVE-2025-47934\u003c/a\u003e (Message signature verification could be spoofed)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix decryption support for non-standard, legacy AEAD-encrypted messages and keys that used \u003ccode\u003eexperimentalGCM\u003c/code\u003e from OpenPGP.js v5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1811\"\u003eopenpgpjs/openpgpjs#1811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThrow on encryption using the non-standard \u003ccode\u003eexperimentalGCM\u003c/code\u003e AEAD algorithm\n(The \u003ccode\u003eenums.aead.gcm\u003c/code\u003e ID standardized by RFC9580 should be used instead.)\u003c/li\u003e\n\u003cli\u003eImprove internal tree-shaking and lazy load md5 (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1812\"\u003eopenpgpjs/openpgpjs#1812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/pull/1820\"\u003eopenpgpjs/openpgpjs#1820\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.1...v6.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ES imports for webpack: declare \u003ccode\u003eexports.browser\u003c/code\u003e entrypoint as higher priority than \u003ccode\u003eimport\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eopenpgp.verify\u003c/code\u003e/\u003ccode\u003edecrypt\u003c/code\u003e with \u003ccode\u003eexpectSigned: true\u003c/code\u003e and \u003ccode\u003eformat: 'binary'\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1805\"\u003e#1805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTS: fix \u003ccode\u003egenerateKey\u003c/code\u003e (\u003ccode\u003eoptions.type\u003c/code\u003e) and \u003ccode\u003ePrivateKey.getDecryptionKeys()\u003c/code\u003e type declarations (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1807\"\u003e#1807\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate hash algorithm preferences order by (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1804\"\u003e#1804\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/openpgpjs/openpgpjs/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eOpenPGP.js v6 adds support for the new version of the OpenPGP specification, \u003ca href=\"https://datatracker.ietf.org/doc/rfc9580/\"\u003eRFC 9580\u003c/a\u003e. It also increases compliance with the specification, as demonstrated by the \u003ca href=\"https://sequoia-pgp.gitlab.io/openpgp-interoperability-test-suite/results.html?impls=192\"\u003eOpenPGP interoperability test suite\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eOpenPGP.js v6 only makes minor API changes.\nThis is the first stable release of OpenPGP.js v6: no more breaking changes to the high-level API will be made until the next major release.\u003c/p\u003e\n\u003cp\u003eFor the changes since the previous pre-release (\u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v6.0.0-beta.3.patch.0...v6.0.0\"\u003ev6.0.0-beta.3.patch.1\u003c/a\u003e), see the end of this message.\nHere we list a summary of the main changes since v5:\u003c/p\u003e\n\u003ch3\u003ePlatform support changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe library is now declared as a \u003ccode\u003emodule\u003c/code\u003e (\u003ccode\u003etype: module\u003c/code\u003e in package.json), and declares exports, alongside the legacy package.json entrypoints, which should ensure backwards compatibility. Still, bundlers might be affected by the package.json changes depending on how they load the library.\u003c/li\u003e\n\u003cli\u003eNode.js:\n\u003cul\u003e\n\u003cli\u003eDrop support for Node.js versions below 18 (OpenPGP.js v5 supported Node.js v14 and above).\u003c/li\u003e\n\u003cli\u003eStreaming: drop support for native Node Readable stream: require passing Node Web Streams (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eWeb:\n\u003cul\u003e\n\u003cli\u003eRequire availability of the Web Crypto API's \u003ccode\u003eSubtleCrypto\u003c/code\u003e (insecure contexts are no longer supported, as \u003ccode\u003eSubtleCrypto\u003c/code\u003e is not available there)\u003c/li\u003e\n\u003cli\u003eRequire availability of the Web Streams API, since it's now supported in all browsers (applications can load a polyfill if they need to support older browser versions: see \u003ca href=\"https://github.com/openpgpjs/openpgpjs/tree/v6.0.0#platform-support\"\u003eREADME\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire availability of native \u003ccode\u003eBigInt\u003c/code\u003es (not supported by e.g. Safari 13 and below, see \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/BigInt#browser_compatibility\"\u003efull compatibility table\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eArgon2 has been added as S2K algorithm (on all platforms). For performance reasons, the implementation relies on a WASM module, thus web apps might need to make changes to their CSP policy in order to use the feature. Alternatively, since the Argon2 WASM module is only loaded if needed, apps can manually reject password-encrypted messages and private keys which use Argon2 by checking e.g. \u003ccode\u003eSymEncryptedSessionKeyPacket.s2k?.type === 'argon2'\u003c/code\u003e or \u003ccode\u003eSecretKeyPacket|SecretSubkeyPacket.keyPacket.s2k?.type  === 'argon2'\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking API changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure primary key meets strength and algo requirements when encrypting/verifying/signing using subkeys (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1719\"\u003e#1719\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eread[Private]Key\u003c/code\u003e: support parsing key blocks (return first parsable key); previously, parsing would fail if a block with more than one key was given in input (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1755\"\u003e#1755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ePrivateKey.getDecryptionKeys\u003c/code\u003e will now throw if no decryption key is found (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1789\"\u003e#1789\u003c/a\u003e). Previously, an empty array was returned. As a consequence of this change, some \u003ccode\u003eopenpgp.decrypt\u003c/code\u003e errors will be more specific.\u003c/li\u003e\n\u003cli\u003eRefuse to use keys without key flags (see \u003ccode\u003econfig.allowMissingKeyFlags\u003c/code\u003e below)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/cacf5c42455876f76c61b3e5e779e237f8a68baf\"\u003e\u003ccode\u003ecacf5c4\u003c/code\u003e\u003c/a\u003e 6.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/bd54e8535ca29b3bef58a8c02296892e408be356\"\u003e\u003ccode\u003ebd54e85\u003c/code\u003e\u003c/a\u003e Don't mutate message during verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/96b13a468b42ffecd9a5c3330b9ca67f697cd7ca\"\u003e\u003ccode\u003e96b13a4\u003c/code\u003e\u003c/a\u003e 6.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/432856ff0ed1cdac79194574ef53a2fc805a1c01\"\u003e\u003ccode\u003e432856f\u003c/code\u003e\u003c/a\u003e Fix signing using keys without preferred hash algorithms (\u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1820\"\u003e#1820\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/b2bd8a0fdd12902484d65baa4ae4eb7f146fcd32\"\u003e\u003ccode\u003eb2bd8a0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openpgpjs/openpgpjs/issues/1812\"\u003e#1812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/6db98f1e47b3dd737443f4af24d8c57aa70d5eb8\"\u003e\u003ccode\u003e6db98f1\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking in armor module\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/8e5da7897183dd52633148996a052f9ecd9d3ae3\"\u003e\u003ccode\u003e8e5da78\u003c/code\u003e\u003c/a\u003e Internal: improve tree-shaking of web-stream-tools\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a5d894f514bf0fa8c7c15322d5652fddc29379a8\"\u003e\u003ccode\u003ea5d894f\u003c/code\u003e\u003c/a\u003e Internal: avoid importing \u003ccode\u003eenums\u003c/code\u003e in legacy_cipher chunk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/a16160fc660b8f46b8bb2e9ca4ff4981b9a1f183\"\u003e\u003ccode\u003ea16160f\u003c/code\u003e\u003c/a\u003e Use noble-hashes for md5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openpgpjs/openpgpjs/commit/abe750cf7cbed0b6a61db6617921a5535f4fdbfb\"\u003e\u003ccode\u003eabe750c\u003c/code\u003e\u003c/a\u003e Lightweight build: lazy load md5 hashing module\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/openpgpjs/openpgpjs/compare/v5.5.0...v6.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~twiss\"\u003etwiss\u003c/a\u003e, a new releaser for openpgp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=openpgp\u0026package-manager=npm_and_yarn\u0026previous-version=5.5.0\u0026new-version=6.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/realfork/ForkChat/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/realfork/ForkChat/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/realfork%2FForkChat/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}}]}