Skip to content

chore: bump the release-tooling group with 2 updates#58

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/release-tooling-e50aab6c58
Jul 13, 2026
Merged

chore: bump the release-tooling group with 2 updates#58
github-actions[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/release-tooling-e50aab6c58

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the release-tooling group with 2 updates: @j178/prek and semantic-release.

Updates @j178/prek from 0.4.8 to 0.4.9

Release notes

Sourced from @​j178/prek's releases.

0.4.9

Release Notes

Released on 2026-07-11.

Note: This release changes the repository identity schema stored in cached hook environments. Existing hook environments will be invalidated, and prek will reinstall them automatically when needed.

Enhancements

  • Preserve additional dependency order (#2311)
  • Remove parallel Ruby gem installation (#2307)
  • Warn for missing update repositories (#2316)

Bug fixes

  • Fix mixed workspace selectors (#2306)
  • Fix try-repo local path resolution (#2310)
  • Use resolved gem executable (#2308)
  • Validate complete XML documents in check-xml (#2312)

Contributors

Install prek 0.4.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/j178/prek/releases/download/v0.4.9/prek-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/j178/prek/releases/download/v0.4.9/prek-installer.ps1 | iex"

Install prebuilt binaries via Homebrew

brew install prek

Download prek 0.4.9

File Platform Checksum
prek-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum

... (truncated)

Changelog

Sourced from @​j178/prek's changelog.

0.4.9

Released on 2026-07-11.

Note: This release changes the repository identity schema stored in cached hook environments. Existing hook environments will be invalidated, and prek will reinstall them automatically when needed.

Enhancements

  • Preserve additional dependency order (#2311)
  • Remove parallel Ruby gem installation (#2307)
  • Warn for missing update repositories (#2316)

Bug fixes

  • Fix mixed workspace selectors (#2306)
  • Fix try-repo local path resolution (#2310)
  • Use resolved gem executable (#2308)
  • Validate complete XML documents in check-xml (#2312)

Contributors

Commits

Updates semantic-release from 25.0.5 to 25.0.7

Release notes

Sourced from semantic-release's releases.

v25.0.7

25.0.7 (2026-07-13)

Bug Fixes

  • argument Injection via repositoryUrl in package.json (#4245) (c46dbda)

v25.0.6

25.0.6 (2026-07-10)

Bug Fixes

  • ensure encoded secrets get masked (8e28dd3)
Commits
  • c46dbda fix: argument Injection via repositoryUrl in package.json (#4245)
  • 7abb562 chore(deps): update npm to v12 (#4244)
  • 8b15865 chore(deps): update dependency @​types/node to v24.13.3 (#4243)
  • 8e28dd3 fix: ensure encoded secrets get masked
  • f293647 Merge commit from fork
  • a973d20 ci(action): update github/codeql-action action to v4.37.0 (#4241)
  • c62136f chore(deps): update dependency mockserver-client to v7.4.0 (#4240)
  • 9be3e6c chore(deps): lock file maintenance (#4239)
  • 3259ebb chore(deps): update dependency got to v15.1.0 (#4238)
  • 1c17eb5 chore(deps): update dependency mockserver-client to v7.3.0 (#4237)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the release-tooling group with 2 updates: [@j178/prek](https://github.com/j178/prek) and [semantic-release](https://github.com/semantic-release/semantic-release).


Updates `@j178/prek` from 0.4.8 to 0.4.9
- [Release notes](https://github.com/j178/prek/releases)
- [Changelog](https://github.com/j178/prek/blob/master/CHANGELOG.md)
- [Commits](j178/prek@v0.4.8...v0.4.9)

Updates `semantic-release` from 25.0.5 to 25.0.7
- [Release notes](https://github.com/semantic-release/semantic-release/releases)
- [Commits](semantic-release/semantic-release@v25.0.5...v25.0.7)

---
updated-dependencies:
- dependency-name: "@j178/prek"
  dependency-version: 0.4.9
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: release-tooling
- dependency-name: semantic-release
  dependency-version: 25.0.7
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: release-tooling
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file npm Pull requests that update npm dependencies labels Jul 13, 2026
@dependabot dependabot Bot requested a review from netopsengineer as a code owner July 13, 2026 14:26
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file npm Pull requests that update npm dependencies labels Jul 13, 2026
@github-actions github-actions Bot enabled auto-merge (squash) July 13, 2026 14:26
@github-actions github-actions Bot merged commit 7158028 into main Jul 13, 2026
10 checks passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/release-tooling-e50aab6c58 branch July 13, 2026 14:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file npm Pull requests that update npm dependencies

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants