Sourced from @​microsoft/api-extractor's changelog.

7.57.7

Mon, 09 Mar 2026 15:14:07 GMT

Patches

• Bump minimatch version from 10.2.1 to 10.2.3 to address CVE-2026-27903.

7.57.6

Wed, 25 Feb 2026 21:39:42 GMT

Patches

• Bump @microsoft/tsdoc-config to ~0.18.1 to mitigate CVE-2025-69873.

7.57.5

Wed, 25 Feb 2026 00:34:29 GMT

Version update only

7.57.4

Tue, 24 Feb 2026 01:13:27 GMT

Version update only

7.57.3

Mon, 23 Feb 2026 00:42:21 GMT

Patches

• Add missing "./extends/*.json" to the package.json "exports" field so that "@​microsoft/api-extractor/extends/tsdoc-base.json" is importable.

7.57.2

Fri, 20 Feb 2026 16:14:49 GMT

Patches

• Bump minimatch from 10.1.2 to 10.2.1

7.57.1

Fri, 20 Feb 2026 00:15:03 GMT

Patches

• Add "node" condition before "import" in the "exports" map so that Node.js uses the CJS output (which handles extensionless imports), while bundlers still use ESM via "import". Fixes microsoft/rushstack#5644.

7.57.0

Thu, 19 Feb 2026 00:04:52 GMT

Minor changes

... (truncated)

• ee40f81 Bump versions [skip ci]
• 8a51049 Update changelogs [skip ci]
• e35bece chore: bump minimatch to 10.2.3 to fix vulnerability (#5675)
• f8a668d chore: bump decoupled local dependencies (#5674)
• 3b13f32 Bump versions [skip ci]
• b8a4224 Update changelogs [skip ci]
• 1a448ee Fix issues with missing files in published @microsoft/load-themed-styles an...
• 737b20a Bump TSDoc and @typescript-eslint/* dependencies to address CVEs. (#5672)
• 1a2e3a6 chore: bump decoupled local dependencies (#5660)
• 75ba91c Bump versions [skip ci]
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)