Skip to content

chore(deps): bump yaml from 1.10.2 to 1.10.3 in /client#2108

Open
dependabot[bot] wants to merge 1 commit intodevelopmentfrom
dependabot/npm_and_yarn/client/yaml-1.10.3
Open

chore(deps): bump yaml from 1.10.2 to 1.10.3 in /client#2108
dependabot[bot] wants to merge 1 commit intodevelopmentfrom
dependabot/npm_and_yarn/client/yaml-1.10.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 25, 2026
edited
Loading

Bumps yaml from 1.10.2 to 1.10.3.

Commits
  • cfe8f04 1.10.3
  • 7abcf45 fix: Catch stack overflow during CST composition
  • a0252f8 chore: Add rules avoiding processing of tests/json-test-suite
  • a5e83b0 style: Apply updates Prettier rules
  • b8ddca0 chore: Refresh lockfile
  • 395f892 ci: Use a different (working) submodule checkout
  • 6fd2720 test-events: Add {} and [] indicators to flow maps & sequences
  • See full diff in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 25, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/client/yaml-1.10.3 branch from 817704d to 0d0387b Compare March 31, 2026 01:34
trillium
trillium approved these changes Apr 28, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@trillium trillium left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Dependency patch/minor bump — safe to merge per security review.

@trillium
Copy link
Copy Markdown
Member

trillium commented Apr 28, 2026

@dependabot rebase

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/client/yaml-1.10.3 branch from 0d0387b to f3c1aaf Compare April 28, 2026 08:33
@trillium
Copy link
Copy Markdown
Member

trillium commented Apr 28, 2026

@dependabot rebase

@dependabot
chore(deps): bump yaml from 1.10.2 to 1.10.3 in /client
f1640c4 
Bumps [yaml](https://github.com/eemeli/yaml) from 1.10.2 to 1.10.3.
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v1.10.2...v1.10.3)

---
updated-dependencies:
- dependency-name: yaml
  dependency-version: 1.10.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/client/yaml-1.10.3 branch from f3c1aaf to f1640c4 Compare April 28, 2026 08:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@trillium trillium trillium approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@trillium