Upgrade: Bump the dependencies group in /annotation-check with 4 updates

[dependabot]

Bumps the dependencies group in /annotation-check with 4 updates: @actions/core, @actions/github, @stylistic/eslint-plugin and @typescript-eslint/parser.

Updates @actions/core from 2.0.2 to 3.0.0

Changelog

Sourced from @​actions/core's changelog.

3.0.0

• Breaking change: Package is now ESM-only
  • CommonJS consumers must use dynamic import() instead of require()

2.0.3

• Bump @actions/http-client to 3.0.2

2.0.1

• Bump @​actions/exec from 1.1.1 to 2.0.0 #2199

2.0.0

• Add support for Node 24 #2110
• Bump @​actions/http-client from 2.0.1 to 3.0.0

1.11.1

• Fix uses of crypto.randomUUID on Node 18 and earlier #1842

1.11.0

• Add platform info utilities #1551
• Remove dependency on uuid package #1824

1.10.1

• Fix error message reference in oidc utils #1511

1.10.0

• saveState and setOutput now use environment files if available #1178
• getMultilineInput now correctly trims whitespace by default #1185

1.9.1

• Randomize delimiter when calling core.exportVariable

1.9.0

• Added toPosixPath, toWin32Path and toPlatformPath utilities #1102

1.8.2

• Update to v2.0.1 of @actions/http-client #1087

1.8.1

... (truncated)

Commits

• See full diff in compare view

Updates @actions/github from 7.0.0 to 9.0.0

Changelog

Sourced from @​actions/github's changelog.

9.0.0

• Breaking change: Package is now ESM-only
  • CommonJS consumers must use dynamic import() instead of require()
  • Example: const { getOctokit, context } = await import('@actions/github')
• Fix TypeScript compilation by migrating to ESM, enabling proper imports from @octokit/core/types

8.0.1

• Update undici to 6.23.0
• Update @actions/http-client to 3.0.2

8.0.0

• Update @​octokit dependencies
  • @octokit/core ^7.0.6
  • @octokit/plugin-paginate-rest ^14.0.0
  • @octokit/plugin-rest-endpoint-methods ^17.0.0
  • @octokit/request ^10.0.7
  • @octokit/request-error ^7.1.0
• Breaking change: Minimum Node.js version is now 20 (previously 18)

Commits

• See full diff in compare view

Updates @stylistic/eslint-plugin from 5.7.0 to 5.7.1

Release notes

Sourced from @​stylistic/eslint-plugin's releases.

v5.7.1

5.7.1 (2026-01-23)

Bug Fixes

• add meta to plugin (#1102) (f9d8a21)
• deps: revert eslint-visitor-keys and espree to compatible versions (#1111) (572f1ab)
• disable-legacy: disable multiline-comment-style (#1103) (03fc476)
• no-whitespace-before-property: detect whitespace in TSIndexedAccessType with parens (#1099) (60aafcb)
• upgrade deps (#1112) (29a1d0a)

Documentation

• indent: update deprecation tips (#1109) (6a6d30b)

Chores

• extract safeReplaceTextBetween to reuse common fix logic (#1104) (a49451f)
• jsx-rules: cleanup meta, use defaultOptions (#1108) (55bbd1d)
• line-comment-position: simplify options initialization (#1106) (4d6b10a)
• use defaultOptions in rules (#1105) (666e8ee)

Changelog

Sourced from @​stylistic/eslint-plugin's changelog.

5.7.1 (2026-01-23)

Bug Fixes

• add meta to plugin (#1102) (f9d8a21)
• deps: revert eslint-visitor-keys and espree to compatible versions (#1111) (572f1ab)
• disable-legacy: disable multiline-comment-style (#1103) (03fc476)
• no-whitespace-before-property: detect whitespace in TSIndexedAccessType with parens (#1099) (60aafcb)
• upgrade deps (#1112) (29a1d0a)

Documentation

• indent: update deprecation tips (#1109) (6a6d30b)

Chores

• extract safeReplaceTextBetween to reuse common fix logic (#1104) (a49451f)
• jsx-rules: cleanup meta, use defaultOptions (#1108) (55bbd1d)
• line-comment-position: simplify options initialization (#1106) (4d6b10a)
• use defaultOptions in rules (#1105) (666e8ee)

Commits

• 5c4b512 chore: release v5.7.1 (main) (#1101)
• 29a1d0a fix: upgrade deps (#1112)
• 6a6d30b docs(indent): update deprecation tips (#1109)
• 62b7247 chore(lint): enable eslint-plugin/no-meta-schema-default internally (#1110)
• 666e8ee refactor: use defaultOptions in rules (#1105)
• 55bbd1d refactor(jsx-rules): cleanup meta, use defaultOptions (#1108)
• 4d6b10a refactor(line-comment-position): simplify options initialization (#1106)
• a49451f refactor: extract safeReplaceTextBetween to reuse common fix logic (#1104)
• b250f84 chore: setup eslint-plugin-eslint-plugin, sort meta & createRule (#1107)
• f9d8a21 fix: add meta to plugin (#1102)
• Additional commits viewable in compare view

Updates @typescript-eslint/parser from 8.53.1 to 8.54.0

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.54.0

8.54.0 (2026-01-26)

🚀 Features

• eslint-plugin-internal: add prefer-tsutils-methods rule (#11974, #11625)
• scope-manager: support ScopeManager#addGlobals (#11914)
• typescript-estree: add shortcut methods to ParserServicesWithTypeInformation (#11965, #11955)

🩹 Fixes

• eslint-plugin: [no-unused-private-class-members] private destructured class member is defined but used (#11785)
• eslint-plugin: [no-unnecessary-type-assertion] check both base constraint and actual type for non-null assertions (#11967, #11559)
• scope-manager: fix catch clause scopes def.name (#11982)
• scope-manager: prevent misidentification of "use strict" directives (#11995)
• utils: handle missing FlatESLint and LegacyESLint (#11958)

❤️ Thank You

• Brad Zacher @​bradzacher
• fnx @​DMartens
• Francesco Trotta
• Josh Goldberg
• MinJae @​Ju-MINJAE
• Minyeong Kim @​minyeong981
• overlookmotel
• Yuya Yoshioka @​YuyaYoshioka
• 김현수 @​Kimsoo0119

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.54.0 (2026-01-26)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• d423e57 chore(release): publish 8.54.0
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions