chore(deps-dev): bump @vscode/vsce from 2.21.1 to 3.4.1
Open
Number: #508
Type: Pull Request
State: Open
Type: Pull Request
State: Open
Author:
![dependabot[bot]](https://github.com/dependabot.png)
dependabot[bot]
Association: Contributor
Comments: 0
dependabot[bot]Association: Contributor
Comments: 0
Created:
May 19, 2025 at 01:28 PM UTC
(about 1 year ago)
(about 1 year ago)
Updated:
May 19, 2025 at 01:28 PM UTC
(about 1 year ago)
(about 1 year ago)
Labels:
dependencies javascript
dependencies javascript
Description:
Bumps @vscode/vsce from 2.21.1 to 3.4.1.
Release notes
Sourced from @vscode/vsce's releases.
v3.4.1
Changes:
This list of changes was auto generated.
v3.4.1-1
Changes:
- #1149: Fix false positives in private key scanning
This list of changes was auto generated.
v3.4.1-0
Changes:
- #1148: Clarify unpublish command description
This list of changes was auto generated.
v3.4.0
Changes:
- #1145: Allow packaging .env and secrets using command line flags
- #1144: Scan for secrets and disallow .env files
- #1141: Add
language-model-toolstag for MCP extensions- #1138: Proper entry point validation
- #1137: Add 'mcp' tag support in TagsProcessor
- #1131: Remove deprecated SVG sources from TrustedSVGSources array
- #1127: Improve error message for Personal Access Token verification
This list of changes was auto generated.
v3.3.3-6
Changes:
- #1145: Allow packaging .env and secrets using command line flags
... (truncated)
Commits
5e2323fMerge pull request #1149 from microsoft/benibenj/latin-junglefowl649ca03To many false positives for private key scanningefd9d4eMerge pull request #1148 from microsoft/benibenj/fellow-xerinaeff17ac0:lipstick:5a44afcBe more clear that unpublish removes the extension039a33aMerge pull request #1145 from microsoft/benibenj/cultural-elephant1e78223Allow packaging .env and secrets using command line flags468122dMerge pull request #1144 from microsoft/benibenj/fragile-horsed897fe5:lipstick:0ab8a83Scan for secrets and do not allow .env files- Additional commits viewable in compare view
Maintainer changes
This version was pushed to npm by microsoft1es, a new releaser for @vscode/vsce since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Pull Request Statistics
Commits:
1
1
Files Changed:
2
2
Additions:
+899
+899
Deletions:
-64
-64
Package Dependencies
Technical Details
| ID: | 1072253 |
| UUID: | 2528745099 |
| Node ID: | PR_kwDOIrkFa86WuZaL |
| Host: | GitHub |
| Repository: | coder/vscode-coder |
| Merge State: | Unknown |