Skip to content

Update linters (major) #1001

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update linters (major) #1001

wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Apr 3, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
@typescript-eslint/eslint-plugin (source) ^7.0.0 -> ^8.0.0 age adoption passing confidence
@typescript-eslint/parser (source) ^7.0.0 -> ^8.0.0 age adoption passing confidence
eslint (source) ^8.0.0 -> ^9.0.0 age adoption passing confidence
eslint-config-prettier ^9.0.0 -> ^10.0.0 age adoption passing confidence
eslint-plugin-unicorn ^51.0.0 -> ^62.0.0 age adoption passing confidence

Release Notes

typescript-eslint/typescript-eslint (@​typescript-eslint/eslint-plugin)

v8.46.2

Compare Source

🩹 Fixes
  • eslint-plugin: [prefer-optional-chain] skip optional chaining when it could change the result (#​11702)
❤️ Thank You
  • mdm317

You can read about our versioning strategy and releases on our website.

v8.46.1

Compare Source

🩹 Fixes
  • eslint-plugin: [no-misused-promises] special-case .finally not to report when a promise returning function is provided as an argument (#​11667)
  • eslint-plugin: [prefer-optional-chain] include mixed "nullish comparison style" chains in checks (#​11533)
❤️ Thank You
  • mdm317
  • Ronen Amiel

You can read about our versioning strategy and releases on our website.

v8.46.0

Compare Source

🚀 Features
  • eslint-plugin: [no-unsafe-member-access] add allowOptionalChaining option (#​11659)
  • rule-schema-to-typescript-types: clean up and make public (#​11633)
🩹 Fixes
  • eslint-plugin: [prefer-readonly-parameter-types] ignore tagged primitives (#​11660)
  • typescript-estree: forbid abstract method and accessor to have implementation (#​11657)
  • eslint-plugin: removed error type previously deprecated (#​11674)
  • eslint-plugin: [no-deprecated] ignore deprecated export imports (#​11603)
  • eslint-plugin: [unbound-method] improve wording around this: void and binding (#​11634)
  • rule-tester: deprecate TestCaseError#type and LintMessage#nodeType (#​11628)
  • eslint-plugin: [no-floating-promises] remove excess parentheses in suggestions (#​11487)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.45.0

Compare Source

🚀 Features
  • eslint-plugin: expose rule name via RuleModule interface (#​11616)
🩹 Fixes
  • eslint-plugin: [prefer-nullish-coalescing] ignoreBooleanCoercion should not apply to top-level ternary expressions (#​11614)
  • eslint-plugin: [no-base-to-string] check if superclass is ignored (#​11617)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.44.1

Compare Source

🩹 Fixes
  • eslint-plugin: [await-thenable] should not report passing values to promise aggregators which may be a promise in an array literal (#​11611)
  • eslint-plugin: [no-unsafe-enum-comparison] support unions of literals (#​11599)
  • eslint-plugin: [no-base-to-string] make ignoredTypeNames match type names without generics (#​11597)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.44.0

Compare Source

🚀 Features
  • eslint-plugin: [await-thenable] report invalid (non-promise) values passed to promise aggregator methods (#​11267)
🩹 Fixes
  • eslint-plugin: [no-unnecessary-type-conversion] ignore enum members (#​11490)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.43.0

Compare Source

🚀 Features
  • typescript-estree: disallow empty type parameter/argument lists (#​11563)
🩹 Fixes
  • eslint-plugin: [prefer-return-this-type] don't report an error when returning a union type that includes a classType (#​11432)
  • eslint-plugin: [no-deprecated] should report deprecated exports and reexports (#​11359)
  • eslint-plugin: [no-floating-promises] allowForKnownSafeCalls now supports function names (#​11423, #​11430)
  • eslint-plugin: [consistent-type-exports] fix declaration shadowing (#​11457)
  • eslint-plugin: [no-unnecessary-type-conversion] only report ~~ on integer literal types (#​11517)
  • scope-manager: exclude Program from DefinitionBase node types (#​11469)
  • eslint-plugin: [no-non-null-assertion] do not suggest optional chain on LHS of assignment (#​11489)
  • type-utils: add union type support to TypeOrValueSpecifier (#​11526)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.42.0

Compare Source

🩹 Fixes
  • deps: update eslint monorepo to v9.33.0 (#​11482)

You can read about our versioning strategy and releases on our website.

v8.41.0

Compare Source

🩹 Fixes
  • deps: update dependency prettier to v3.6.2 (#​11496)

You can read about our versioning strategy and releases on our website.

v8.40.0

Compare Source

🚀 Features
  • typescript-estree: forbid invalid keys in EnumMember (#​11232)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.39.1

Compare Source

This was a version bump only for eslint-plugin to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

v8.39.0

Compare Source

🚀 Features
  • eslint-plugin: [only-throw-error] support yield/await expressions (#​11417)
  • eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#​11427)
  • update to TypeScript 5.9.2 (#​11445)
  • eslint-plugin: [naming-convention] add enumMember PascalCase default option (#​11127)
🩹 Fixes
  • eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#​11403)
  • eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#​11272)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.38.0

Compare Source

🩹 Fixes
  • disallow extra properties in rule options (#​11397)
  • eslint-plugin: [consistent-generic-constructors] resolve conflict with isolatedDeclarations if enabled in constructor option (#​11351)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.37.0

Compare Source

🩹 Fixes
  • eslint-plugin: [unified-signatures] fix false positives for ignoreOverloadsWithDifferentJSDoc option (#​11381)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.36.0

Compare Source

This was a version bump only for eslint-plugin to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

v8.35.1

Compare Source

🩹 Fixes
  • remove prettier from eslint-plugin (#​11339)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.35.0

Compare Source

🚀 Features
  • eslint-plugin: [no-base-to-string] add checkUnknown Option (#​11128)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.34.1

Compare Source

This was a version bump only for eslint-plugin to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

v8.34.0

Compare Source

🩹 Fixes
  • typescript-estree: add validation to interface extends (#​11271)
❤️ Thank You
  • Tao

You can read about our versioning strategy and releases on our website.

v8.33.1

Compare Source

🩹 Fixes
  • exclude docs/ directory from eslint-plugin package (#​11251)
❤️ Thank You
  • roottool

You can read about our versioning strategy and releases on our website.

v8.33.0

Compare Source

This was a version bump only for eslint-plugin to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

v8.32.1

Compare Source

🩹 Fixes
  • eslint-plugin: [consistent-indexed-object-style] check for indirect circular types in aliased mapped types (#​11177)
  • eslint-plugin: [consistent-indexed-object-style] adjust auto-fixer to generate valid syntax for TSMappedType with no type annotation (#​11180)
  • eslint-plugin: [no-deprecated] support computed member access (#​10867)
  • eslint-plugin: [no-unnecessary-type-conversion] shouldn't have fixable property (#​11194)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.32.0

Compare Source

🚀 Features
  • eslint-plugin: [only-throw-error] add option allowRethrowing (#​11075)
  • eslint-plugin: [no-unnecessary-type-conversion] add rule (#​10182)
🩹 Fixes
  • eslint-plugin: [prefer-nullish-coalescing] fix parenthesization bug in suggestion (#​11098)
  • eslint-plugin: [unified-signatures] exempt this from optional parameter overload check (#​11005)
  • eslint-plugin: [no-unnecessary-type-parameters] should parenthesize type in suggestion fixer if necessary (#​10907)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.31.1

Compare Source

🩹 Fixes
  • eslint-plugin: [no-unnecessary-condition] downgrade fix to suggestion (#​11081)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.31.0

Compare Source

🚀 Features
  • eslint-plugin: [no-unnecessary-type-assertion] add option to ignore string const assertions (#​10979)
❤️ Thank You
  • Nicolas Le Cam

You can read about our versioning strategy and releases on our website.

v8.30.1

Compare Source

🩹 Fixes
  • eslint-plugin: fix mistake with eslintrc config generation (#​11072)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.30.0

Compare Source

🚀 Features
  • eslint-plugin: [no-explicit-any] suggest to replace keyof any with PropertyKey (#​11032)
🩹 Fixes
  • eslint-plugin: [promise-function-async] use a different error message for functions with promise and non-promise types (#​10950)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.29.1

Compare Source

🩹 Fixes
  • eslint-plugin: [no-deprecated] report on deprecated imported variable used as property (#​10998)
❤️ Thank You
  • Ronen Amiel

You can read about our versioning strategy and releases on our website.

v8.29.0

Compare Source

🚀 Features
  • eslint-plugin: [prefer-nullish-coalescing] create ignoreIfStatements option (#​11000)
🩹 Fixes
  • eslint-plugin: [no-array-constructor] remove optional chaining exemption (#​10963)
  • eslint-plugin: support arbitrary extensions in definition files (#​10957)
  • eslint-plugin: [prefer-for-of] fix false positive when using erasable type syntax within update expressions (#​10981)
  • eslint-plugin: [use-unknown-in-catch-callback-variable] remove fixable property (#​10993)
  • eslint-plugin: [no-unnecessary-condition] don't report on unnecessary optional array index access when noUncheckedIndexedAccess is enabled (#​10961)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.28.0

Compare Source

🚀 Features
  • eslint-plugin: [prefer-nullish-coalescing] support if statement assignment (??=) and fix several minor bugs (#​10861)
🩹 Fixes
  • eslint-plugin: [no-unsafe-function-type] remove fixable property (#​10986)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.27.0

Compare Source

🚀 Features
  • utils: support DeprecatedInfo for rule.meta.deprecated (#​10932)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.26.1

Compare Source

🩹 Fixes
  • eslint-plugin: [no-unsafe-return] handle recursive type (#​10883)
  • eslint-plugin: [prefer-nullish-coalescing] treat any/unknown as eligible for nullish coalescing (#​10865)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.26.0

Compare Source

🚀 Features
  • eslint-plugin: [unified-signatures] support ignoring overload signatures with different JSDoc comments (#​10781)
  • eslint-plugin: [explicit-module-boundary-types] add an option to ignore overload implementations (#​10889)
  • eslint-plugin: [no-unused-var] handle implicit exports in declaration files (#​10714)
  • support TypeScript 5.8 (#​10903)
  • eslint-plugin: [no-unnecessary-type-parameters] special case tuples and parameter location arrays as single-use (#​9536)
🩹 Fixes
  • eslint-plugin: [no-unnecessary-type-assertion] handle unknown (#​10875)
  • eslint-plugin: [no-invalid-void-type] report accessor properties with an invalid void type (#​10864)
  • eslint-plugin: [unified-signatures] does not differentiate truly private methods (#​10806)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.25.0

Compare Source

🚀 Features
  • eslint-plugin: [no-misused-spread] add suggestions (#​10719)
🩹 Fixes
  • eslint-plugin: [prefer-nullish-coalescing] report on chain expressions in a ternary (#​10708)
  • eslint-plugin: [no-deprecated] report usage of deprecated private identifiers (#​10844)
  • eslint-plugin: [unified-signatures] handle getter-setter (#​10818)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.24.1

Compare Source

🩹 Fixes
  • eslint-plugin: [class-methods-use-this] check accessor methods with a function initializer (#​10796)
  • eslint-plugin: [no-misused-promises] don't report on static accessor properties (#​10814)
  • eslint-plugin: [no-deprecated] don't report on deprecated accessor property declaration (#​10813)
  • eslint-plugin: [explicit-member-accessibility] check accessor class properties for missing accessibility modifier (#​10805)
  • eslint-plugin: [explicit-module-boundary-types] check accessor class properties with a function initializer (#​10804)
  • eslint-plugin: [prefer-return-this-type] check accessor properties with a function initializer (#​10794)
  • eslint-plugin: [consistent-generic-constructors] check accessor class properties (#​10789)
  • eslint-plugin: [no-unsafe-assignment] report on an any value assigned as an initializer of an accessor property (#​10785)
  • eslint-plugin: [no-unnecessary-template-expression] ignore enum and enum members (#​10782)
  • eslint-plugin: [no-inferrable-types] handle accessor (#​10780)
❤️ Thank You
  • Ronen Amiel
  • YeonJuan

You can read about our versioning strategy and releases on our website.

v8.24.0

Compare Source

🚀 Features
  • eslint-plugin: [no-unnecessary-condition] make allowConstantLoopConditions more granular (#​10639)
🩹 Fixes
  • eslint-plugin: [no-misused-spread] correct and elaborate string spread report message (#​10751)
  • eslint-plugin: [restrict-plus-operands] report adding bigints to strings when allowNumberAndString is false (#​10737)
❤️ Thank You
  • Josh Goldberg ✨
  • noah
  • Ronen Amiel

You can read about our versioning strategy and releases on our website.

v8.23.0

Compare Source

🚀 Features
  • eslint-plugin: [no-unnecessary-boolean-literal-compare] enforce strictNullChecks (#​10712)
🩹 Fixes
  • eslint-plugin: [no-shadow] ignore declare variables in definition files shadowing global variables (#​10710)
  • eslint-plugin: [no-restricted-imports] support regex option (#​10699)
  • eslint-plugin: [dot-notation] handle noPropertyAccessFromIndexSignature true (#​10644)
  • eslint-plugin: [prefer-nullish-coalescing] fix missing return (#​10732)
  • bump ts-api-utils to ^2.0.1 (#​10761)
  • eslint-plugin: [no-unnecessary-template-expression] allow interpolating type parameter in type context (#​10739)
  • eslint-plugin: [switch-exhaustiveness-check] suggest with qualified name (#​10697)
  • eslint-plugin: [no-unnecessary-type-assertion] should report readonly class properties with a literal initializer (#​10618)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.22.0

Compare Source

🩹 Fixes
  • eslint-plugin: [no-unnecessary-template-expression] handle template literal type (#​10612)
  • eslint-plugin: [prefer-readonly] autofixer doesn't add type to property that is mutated in the constructor (#​10552)
  • eslint-plugin: [no-extraneous-class] handle accessor keyword (#​10678)
  • eslint-plugin: [no-shadow] don't report unnecessarily on valid ways of using module augmentation (#​10616)
  • eslint-plugin: [no-duplicate-type-constituents] handle nested types (#​10638)
  • eslint-plugin: [prefer-nullish-coalescing] doesn't report on ternary but on equivalent || (#​10517)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.21.0

Compare Source

🩹 Fixes
  • eslint-plugin: [no-duplicate-enum-values] handle template literal (#​10675)
  • eslint-plugin: [no-base-to-string] don't crash for recursive array or tuple types (#​10633)
  • eslint-plugin: [no-for-in-array] report on any type which may be an array or array-like (#​10535)
  • eslint-plugin: check JSX spread elements for misused spread usage (#​10653)
  • eslint-plugin: [no-unnecessary-type-arguments] handle type args on jsx (#​10630)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.20.0

Compare Source

🚀 Features
  • eslint-plugin: [consistent-type-assertions] add arrayLiteralTypeAssertions options (#​10565)
  • eslint-plugin: [no-deprecated] add allow options (#​10585)
  • eslint-plugin: [no-misused-spread] add new rule (#​10551)
🩹 Fixes
  • eslint-plugin: [no-unnecessary-condition] don't flag optional chaining for union types with an unconstrained type parameters (#​10602)
  • eslint-plugin: [no-shadow] ignore ordering of type declarations (#​10593)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.19.1

Compare Source

🩹 Fixes
  • eslint-plugin: [no-unnecessary-type-assertion] handle literal types (#​10523)
  • eslint-plugin: [no-deprecated] doesn't report on shorthand property in an object expression (#​10550)
  • eslint-plugin: [strict-boolean-expressions] remove remaining (unsafe) autofixes (#​10548)
  • eslint-plugin: [no-shadow] report correctly on parameters of functions declared with the declare keyword (#​10543)
  • eslint-plugin: [no-base-to-string] check array generic type (#​10437)
❤️ Thank You
  • Kirk Waiblinger
  • mdm317
  • Ronen Amiel
  • Yukihiro Hasegawa @​y-hsgw

You can read about our versioning strategy and releases on our website.

v8.19.0

Compare Source

🚀 Features
  • eslint-plugin: [strict-boolean-expressions] check array predicate functions' return statements (#​10106)
🩹 Fixes
  • eslint-plugin: [member-ordering] ignore method overloading (#​10536)
  • eslint-plugin: [consistent-indexed-object-style] don't report on indirect circular references (#​10537)
  • eslint-plugin: [array-type] autofix with conditional types needs parentheses (#​10522)
  • eslint-plugin: add getConstraintInfo to handle generic constraints better (#​10496)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.18.2

Compare Source

🩹 Fixes
  • eslint-plugin: [no-unnecessary-condition] handle noUncheckedIndexedAccess true (#​10514)
  • eslint-plugin: [consistent-type-assertions] allow default assertionStyle option (#​10512)
  • eslint-plugin: [no-unnecessary-type-arguments] handle type/value context (#​10503)
  • eslint-plugin: [no-unsafe-type-assertion] fix for unsafe assertion to a constrained type parameter (#​10461)
  • eslint-plugin: [consistent-indexed-object-style] use a suggestion over an auto-fix if can't reliably determine that produced index signature is valid (#​10490)
  • eslint-plugin: [no-unnecessary-condition] don't flag values of an unconstrained or valid type parameter (#​10473)
  • eslint-plugin: [prefer-reduce-type-parameter] don't report cases in which the fix results in a type error (#​10494)
  • eslint-plugin: [no-deprecated] not reporting usages of deprecated declared constants as object value (#​10498)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.18.1

Compare Source

🩹 Fixes
  • scope-manager: visit params decorator before nest scope (#​10475)
  • eslint-plugin: [no-unnecessary-condition] better message when comparing between literal types ([#​10454](https://redirect.github

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@socket-security
Copy link

socket-security bot commented Apr 3, 2024
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updated@​typescript-eslint/​parser@​7.18.0 ⏵ 8.46.210010071 +197100
Updated@​typescript-eslint/​eslint-plugin@​7.18.0 ⏵ 8.46.29910080 +197100
Updatedeslint-config-prettier@​9.1.0 ⏵ 10.1.8100 +1100100 +2987100
Updatedeslint-plugin-unicorn@​51.0.1 ⏵ 62.0.099100100 +189 +1100
Updatedeslint@​8.57.0 ⏵ 9.38.097 +110010094 +1100

View full report

@renovate renovate bot force-pushed the renovate/major-linters branch from 543944b to 59d8b10 Compare April 5, 2024 21:25
@renovate renovate bot changed the title Update dependency eslint-plugin-unicorn to v52 Update linters (major) Apr 5, 2024
@renovate renovate bot force-pushed the renovate/major-linters branch from 59d8b10 to 907947f Compare April 11, 2024 20:16
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from 8e0ba93 to c1fcb49 Compare May 14, 2024 14:12
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from 128fc40 to 57adc35 Compare June 19, 2024 19:40
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from 7c50070 to ba39fc2 Compare July 31, 2024 18:37
@renovate renovate bot force-pushed the renovate/major-linters branch from ba39fc2 to dd91187 Compare August 23, 2024 18:06
@renovate renovate bot force-pushed the renovate/major-linters branch from dd91187 to 5ff0bbf Compare October 3, 2024 21:45
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from d6ac3d5 to 43b07d9 Compare January 17, 2025 14:25
@renovate renovate bot force-pushed the renovate/major-linters branch from 43b07d9 to f9739aa Compare February 17, 2025 19:33
@renovate renovate bot force-pushed the renovate/major-linters branch from f9739aa to 4cb6f14 Compare March 24, 2025 10:31
@renovate renovate bot force-pushed the renovate/major-linters branch from 4cb6f14 to c5adf76 Compare April 14, 2025 14:42
@renovate renovate bot force-pushed the renovate/major-linters branch from c5adf76 to 6e29aa7 Compare April 27, 2025 14:00
@renovate renovate bot force-pushed the renovate/major-linters branch from 6e29aa7 to d7c0815 Compare May 12, 2025 21:12
@renovate renovate bot force-pushed the renovate/major-linters branch 3 times, most recently from f9bfdef to 71612f9 Compare July 25, 2025 17:12
@renovate renovate bot force-pushed the renovate/major-linters branch 4 times, most recently from d7ec87c to 3a070da Compare August 11, 2025 18:33
@renovate renovate bot force-pushed the renovate/major-linters branch 4 times, most recently from 3707fe9 to 5a330af Compare August 22, 2025 23:41
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from a302b0f to 5e9c772 Compare August 31, 2025 12:49
@renovate renovate bot force-pushed the renovate/major-linters branch 3 times, most recently from 6a2636b to 6aedb28 Compare September 8, 2025 22:08
@renovate renovate bot force-pushed the renovate/major-linters branch 3 times, most recently from cd3dcbb to 6eda76b Compare September 22, 2025 18:32
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from 7cd4193 to a9d98fd Compare September 29, 2025 18:35
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from 964b57c to 7971ccb Compare October 6, 2025 18:35
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from 1cb4b40 to e8305a3 Compare October 17, 2025 18:58
@renovate renovate bot force-pushed the renovate/major-linters branch 2 times, most recently from 728ef4e to 4f8205c Compare October 21, 2025 14:47
@socket-security
Copy link

socket-security bot commented Oct 21, 2025
edited
Loading

Caution

Review the following alerts detected in dependencies.

According to your organization's Security Policy, you must resolve all "Block" alerts before proceeding. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Block Low
[email protected] is a AI-detected potential code anomaly.

Notes: The code fragment represents a conventional, well-structured path-ignore utility with caching and recursive parent-directory evaluation. Windows path normalization is present for compatibility but does not indicate malicious intent. No indicators of data leakage, external communication, or covert backdoors were found. Security impact primarily revolves around correct ignore semantics rather than intrinsic vulnerabilities. The component remains appropriate for use in a broader security-conscious pipeline if used with careful awareness of what is being ignored.

Confidence: 1.00

Severity: 0.60

From: ?npm/[email protected]npm/[email protected]npm/@changesets/[email protected]npm/[email protected]npm/@typescript-eslint/[email protected]npm/[email protected]

ℹ Read more on: This package | This alert | What is an AI-detected potential code anomaly?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at [email protected].

Suggestion: An AI system found a low-risk anomaly in this package. It may still be fine to use, but you should check that it is safe before proceeding.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/[email protected]. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

@renovate renovate bot force-pushed the renovate/major-linters branch from 4f8205c to b4fda1d Compare October 26, 2025 09:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant