Skip to content

chore(deps-dev): bump npm-package-json-lint from 7.1.0 to 9.0.0 #146

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

chore(deps-dev): bump npm-package-json-lint from 7.1.0 to 9.0.0 #146

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 27, 2025

Bumps npm-package-json-lint from 7.1.0 to 9.0.0.

Release notes

Sourced from npm-package-json-lint's releases.

v9.0.0

What's Changed

💥 Breaking changes

🧹 Chores

... (truncated)

Commits
  • 13f3c84 Drop node18 (#1546)
  • bce0c15 build(deps): Bump semver from 6.3.0 to 6.3.1 in /website (#1545)
  • db67053 build(deps): Bump cross-spawn from 7.0.3 to 7.0.6 in /website (#1485)
  • 893b808 build(deps): Bump express from 4.19.2 to 4.21.2 in /website (#1544)
  • f9cfb6e build(deps): Bump braces from 3.0.2 to 3.0.3 in /website (#1345)
  • 1f10c59 build(deps): Bump webpack from 5.89.0 to 5.94.0 in /website (#1421)
  • 3a7f71e build(deps-dev): Bump eslint-plugin-import from 2.29.1 to 2.31.0 (#1451)
  • 7255e36 build(deps): Bump prismjs from 1.29.0 to 1.30.0 in /website (#1521)
  • a86a3f4 build(deps): Bump @​babel/runtime-corejs3 in /website (#1523)
  • 20e0f43 build(deps): Bump estree-util-value-to-estree in /website (#1530)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps-dev): bump npm-package-json-lint from 7.1.0 to 9.0.0
d7f437b 
Bumps [npm-package-json-lint](https://github.com/tclindner/npm-package-json-lint) from 7.1.0 to 9.0.0.
- [Release notes](https://github.com/tclindner/npm-package-json-lint/releases)
- [Changelog](https://github.com/tclindner/npm-package-json-lint/blob/master/CHANGELOG.md)
- [Commits](tclindner/npm-package-json-lint@v7.1.0...v9.0.0)

---
updated-dependencies:
- dependency-name: npm-package-json-lint
  dependency-version: 9.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 27, 2025
@dependabot dependabot bot requested a review from ashleyshaw as a code owner November 27, 2025 09:53
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 27, 2025
@coderabbitai
Copy link
Contributor

coderabbitai bot commented Nov 27, 2025

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Note

.coderabbit.yml has unrecognized properties

CodeRabbit is using all valid settings from your configuration. Unrecognized properties (listed below) have been ignored and may indicate typos or deprecated fields that can be removed.

⚠️ Parsing warnings (1) 
Validation error: Unrecognized key(s) in object: 'auto_labels', 'auto_assign', 'auto_review'
⚙️ Configuration instructions
  • Please see the configuration documentation for more information.
  • You can also validate your configuration using the online YAML validator.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Comment @coderabbitai help to get the list of available commands and usage tips.

@github-actions
Copy link
Contributor

github-actions bot commented Nov 27, 2025

✅ Agent Validation Passed

All agent frontmatter specifications have been validated successfully against the canonical schema.

Validation Details:

  • Schema: schemas/frontmatter.schema.json
  • Script: scripts/validation/validate-agent-frontmatter.js
  • Result: All agents are compliant

@github-actions
Copy link
Contributor

github-actions bot commented Nov 27, 2025

✅ Workflow Validation Passed

All workflows comply with our guardrails:

Guardrails Validated:

  • 🔒 Security (permissions, secrets, pinned versions)
  • ⚡ Performance (concurrency, caching, fetch-depth)
  • ✨ Quality (naming, error handling, versions)
  • 🔄 Consistency (OS versions, triggers)

Script: scripts/validation/validate-workflows.js
Tests: scripts/validation/__tests__/validate-workflows.test.js

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 5, 2026

Superseded by #210.

@dependabot dependabot bot closed this Jan 5, 2026
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/npm-package-json-lint-9.0.0 branch January 5, 2026 01:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ashleyshaw ashleyshaw Awaiting requested review from ashleyshaw ashleyshaw is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant