Skip to content

CCM-11961: Dependabot Upgrades #1001

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
ScottFullerton-NHSE merged 26 commits into from
Sep 22, 2025
Merged

CCM-11961: Dependabot Upgrades #1001

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
26 commits
Select commit Hold shift + click to select a range
f7164a8
Bump sphinx-markdown-builder from 0.6.7 to 0.6.8
dependabot[bot] Jan 20, 2025
349aa78
Bump pytest-asyncio from 0.20.3 to 0.24.0
dependabot[bot] Jan 20, 2025
a2e28d5
Bump notifications-python-client from 9.1.0 to 10.0.1
dependabot[bot] Jan 20, 2025
5a8be76
Bump semver from 3.0.2 to 3.0.4
dependabot[bot] Jan 27, 2025
e6976ac
Bump pytest from 8.3.4 to 8.3.5
dependabot[bot] Mar 3, 2025
f799136
Bump the npm_and_yarn group with 4 updates
dependabot[bot] Aug 7, 2025
f24e237
Bump nodemon from 3.1.9 to 3.1.10 in /sandbox
dependabot[bot] Aug 11, 2025
c6a6c43
Bump express from 5.0.1 to 5.1.0 in /sandbox
dependabot[bot] Aug 11, 2025
cd11f5d
Bump eslint-plugin-unicorn from 45.0.2 to 56.0.1
dependabot[bot] Aug 11, 2025
b42ba26
Bump eslint-plugin-workspaces from 0.7.0 to 0.11.0
dependabot[bot] Aug 11, 2025
6bdbdcb
Bump mocha from 10.7.3 to 11.7.2 in /sandbox
dependabot[bot] Sep 8, 2025
e34ac96
Bump eslint-plugin-sonarjs from 0.16.0 to 3.0.5
dependabot[bot] Sep 8, 2025
e1b523a
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/npm_and_…
ScottFullerton-NHSE Sep 16, 2025
495bed5
CCM-11961: Audit fixed various vulnerabilities
ScottFullerton-NHSE Sep 16, 2025
63716f3
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/sandbox/…
ScottFullerton-NHSE Sep 16, 2025
42a50e4
CCM-11961: Updated supertest in /sandbox and other vulnerabilities
ScottFullerton-NHSE Sep 16, 2025
f1161e2
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/eslint-p…
ScottFullerton-NHSE Sep 16, 2025
483e7ca
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/sandbox/…
ScottFullerton-NHSE Sep 16, 2025
962bab7
CCM-11961: express bump from 5.0.1 to 5.1.0
ScottFullerton-NHSE Sep 16, 2025
ba16789
CCM-11961: Bump pytest from 8.3.4 to 8.3.5
ScottFullerton-NHSE Sep 16, 2025
7d54a3a
CCM-11961: Bump semver from 3.0.2 to 3.0.4
ScottFullerton-NHSE Sep 16, 2025
16ad1e8
CCM-11961: Bump sphinx-markdown-builder from 0.6.7 to 0.6.8
ScottFullerton-NHSE Sep 16, 2025
8d71931
CCM-11961: Bump notifications-python-client from 9.1.0 to 10.0.1
ScottFullerton-NHSE Sep 16, 2025
92f73cf
CCM-11961: Bump pytest-asyncio from 0.20.3 to 0.24.0
ScottFullerton-NHSE Sep 16, 2025
46e0185
CCM-11961: Bump eslint-plugin-unicorn from 45.0.2 to 56.0.1
ScottFullerton-NHSE Sep 16, 2025
a7f4f92
CCM-11961: Bump eslint-plugin-workspaces from 0.7.0 to 0.11.0
ScottFullerton-NHSE Sep 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1,061 changes: 694 additions & 367 deletions package-lock.json
View file
Open in desktop
Copy link
Contributor

@gareth-allan gareth-allan Sep 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do we have a package-lock.json and a pnpm-lock.yaml in this repo? I thought if we were using PNPM we'd get the PNPM lock file instead of package-lock.json?

Obviously you've not changed this, so it's not something that needs to block this PR, but it seems odd.

Large diffs are not rendered by default.

10 changes: 5 additions & 5 deletions package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@
"devDependencies": {
"@babel/core": "^7.25.2",
"@babel/eslint-parser": "^7.25.1",
"@redocly/cli": "^1.34.3",
"@redocly/cli": "^1.34.5",
"eslint": "^8.57.1",
"eslint-config-airbnb-base": "^15.0.0",
"eslint-config-prettier": "^8.5.0",
Expand All @@ -36,14 +36,14 @@
"eslint-plugin-import": "^2.26.0",
"eslint-plugin-jsx-a11y": "^6.6.1",
"eslint-plugin-security": "^1.5.0",
"eslint-plugin-sonarjs": "^0.16.0",
"eslint-plugin-unicorn": "^45.0.1",
"eslint-plugin-workspaces": "^0.7.0",
"eslint-plugin-sonarjs": "^3.0.5",
"eslint-plugin-unicorn": "^56.0.1",
"eslint-plugin-workspaces": "^0.11.0",
"eslint-plugin-yml": "^1.2.0",
"hbs-cli": "^1.4.1",
"license-checker": "^25.0.1",
"minimist": "^1.2.2",
"newman": "^6.1.2",
"newman": "^6.2.0",
"sinon": "^17.0.1",
"typescript": "^5.5.4"
},
Expand Down
410 changes: 244 additions & 166 deletions pnpm-lock.yaml
View file
Open in desktop

Large diffs are not rendered by default.

22 changes: 11 additions & 11 deletions poetry.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

8 changes: 4 additions & 4 deletions pyproject.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ pre-commit = "^3.5.0"
pytest-rerunfailures = "^14.0"
sphinx = "7.1.2"
sphinx-markdown-builder = "^0.6.7"
notifications-python-client = "^9.0.0"
notifications-python-client = "^10.0.1"
polling = "^0.3.2"
playwright = "^1.48.0"
install_playwright = "^0.1.0"
Expand All @@ -36,10 +36,10 @@ jinja2 = "^3.1.6"
pyyaml = "^6.0"
docopt = "^0.6.2"
jsonpath-rw = "^1.4.0"
semver = "^3.0.2"
semver = "^3.0.4"
gitpython = "^3.1.43"
pytest = "^8.3.4"
pytest = "^8.3.5"
coverage = "^7.4.4"
pytest-asyncio = "^0.20.3"
pytest-asyncio = "^0.24.0"

[tool.poetry.scripts]
Loading