Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

Upgrade: [dependabot] - bump semantic-release-pypi from 5.1.3 to 5.2.0

Closed
Number: #90
Type: Pull Request
State: Closed
Author: dependabot[bot] dependabot[bot]
Association: Unknown
Comments: 2
Created: March 12, 2026 at 11:55 AM UTC
(3 months ago)
Updated: March 12, 2026 at 11:58 AM UTC
(3 months ago)
Closed: March 12, 2026 at 11:58 AM UTC
(3 months ago)
Time to Close: 3 minutes
Labels:
dependencies javascript
Description:

Bumps semantic-release-pypi from 5.1.3 to 5.2.0.

Release notes

Sourced from semantic-release-pypi's releases.

v5.2.0

5.2.0 (2026-03-11)

Bug Fixes

  • switch from yarn to npm and run npm audit fix to fix most vulnerabilities (a143131)

Features

  • add skipIfConflict option to handle 409 Conflict responses during package publishing (#47) (58b6bba)
Commits
  • b859fef chore(release): 5.2.0 [skip ci]
  • 58b6bba feat: add skipIfConflict option to handle 409 Conflict responses during packa...
  • b18db8a ci: remove push event in test workflow
  • f19e323 chore: update pyenv version from 3.9.7 to 3.13
  • a143131 fix: switch from yarn to npm and run npm audit fix to fix most vulnerabilities
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Package Dependencies
Package:
semantic-release-pypi
Ecosystem:
npm
Version Change:
5.1.3 → 5.2.0
Update Type:
Minor
Actions
View on GitHub View Repository All Dependabot PRs
Technical Details
ID: 14558234
UUID: 4064124241
Node ID: PR_kwDOQVmwD87KAiJY
Host: GitHub
Repository: NHSDigital/eps-common-workflows