Skip to content

Combined Dependabot PRs#19

Merged
aidenvaines-cgi merged 30 commits intomainfrom
dependabotCombined
Mar 16, 2026
Merged

Combined Dependabot PRs#19
aidenvaines-cgi merged 30 commits intomainfrom
dependabotCombined

Conversation

@github-actions
Copy link
Contributor

@github-actions github-actions bot commented Mar 16, 2026

Combined Dependabot PRs

✅ The following pull requests have been successfully combined on this PR:

⚠️ The following PRs were left out due to merge conflicts:

This PR was created by the github/combine-prs action

dependabot bot and others added 30 commits March 13, 2026 14:54
@dependabot
Bump asdf-vm/actions from 4.0.0 to 4.0.1
706e2e2 
Bumps [asdf-vm/actions](https://github.com/asdf-vm/actions) from 4.0.0 to 4.0.1.
- [Release notes](https://github.com/asdf-vm/actions/releases)
- [Changelog](https://github.com/asdf-vm/actions/blob/master/CHANGELOG.md)
- [Commits](asdf-vm/actions@1902764...b7bcd02)

---
updated-dependencies:
- dependency-name: asdf-vm/actions
  dependency-version: 4.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump actions/download-artifact from 4 to 8
d3ecc0e 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4 to 8.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v4...v8)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump eslint-plugin-unicorn from 59.0.1 to 63.0.0
b543086 
Bumps [eslint-plugin-unicorn](https://github.com/sindresorhus/eslint-plugin-unicorn) from 59.0.1 to 63.0.0.
- [Release notes](https://github.com/sindresorhus/eslint-plugin-unicorn/releases)
- [Commits](sindresorhus/eslint-plugin-unicorn@v59.0.1...v63.0.0)

---
updated-dependencies:
- dependency-name: eslint-plugin-unicorn
  dependency-version: 63.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump peter-evans/create-pull-request from 7.0.8 to 8.1.0
6472d2a 
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 7.0.8 to 8.1.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@v7.0.8...v8.1.0)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-version: 8.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump ossf/scorecard-action from 2.4.1 to 2.4.3
6abd00c 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.4.1 to 2.4.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](ossf/scorecard-action@f49aabe...4eaacf0)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-version: 2.4.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump jest-environment-jsdom from 29.7.0 to 30.3.0
0784646 
Bumps [jest-environment-jsdom](https://github.com/jestjs/jest/tree/HEAD/packages/jest-environment-jsdom) from 29.7.0 to 30.3.0.
- [Release notes](https://github.com/jestjs/jest/releases)
- [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md)
- [Commits](https://github.com/jestjs/jest/commits/v30.3.0/packages/jest-environment-jsdom)

---
updated-dependencies:
- dependency-name: jest-environment-jsdom
  dependency-version: 30.3.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump eslint from 9.39.4 to 10.0.3
c4dbaac 
Bumps [eslint](https://github.com/eslint/eslint) from 9.39.4 to 10.0.3.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](eslint/eslint@v9.39.4...v10.0.3)

---
updated-dependencies:
- dependency-name: eslint
  dependency-version: 10.0.3
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump eslint-plugin-security from 3.0.1 to 4.0.0
f717ddb 
Bumps [eslint-plugin-security](https://github.com/eslint-community/eslint-plugin-security) from 3.0.1 to 4.0.0.
- [Release notes](https://github.com/eslint-community/eslint-plugin-security/releases)
- [Changelog](https://github.com/eslint-community/eslint-plugin-security/blob/main/CHANGELOG.md)
- [Commits](eslint-community/eslint-plugin-security@v3.0.1...eslint-plugin-security-v4.0.0)

---
updated-dependencies:
- dependency-name: eslint-plugin-security
  dependency-version: 4.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump flask in /scripts/docker/examples/python/assets/hello_world
6b6d912 
Bumps [flask](https://github.com/pallets/flask) from 2.3.3 to 3.1.3.
- [Release notes](https://github.com/pallets/flask/releases)
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst)
- [Commits](pallets/flask@2.3.3...3.1.3)

---
updated-dependencies:
- dependency-name: flask
  dependency-version: 3.1.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump nokogiri from 1.18.10 to 1.19.1 in /docs
e604021 
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.18.10 to 1.19.1.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md)
- [Commits](sparklemotion/nokogiri@v1.18.10...v1.19.1)

---
updated-dependencies:
- dependency-name: nokogiri
  dependency-version: 1.19.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump werkzeug in /scripts/docker/examples/python/assets/hello_world
bd2f10c 
Bumps [werkzeug](https://github.com/pallets/werkzeug) from 3.0.6 to 3.1.6.
- [Release notes](https://github.com/pallets/werkzeug/releases)
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)
- [Commits](pallets/werkzeug@3.0.6...3.1.6)

---
updated-dependencies:
- dependency-name: werkzeug
  dependency-version: 3.1.6
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump jinja2 in /scripts/docker/examples/python/assets/hello_world
f557059 
Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.5 to 3.1.6.
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst)
- [Commits](pallets/jinja@3.1.5...3.1.6)

---
updated-dependencies:
- dependency-name: jinja2
  dependency-version: 3.1.6
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump pip in /scripts/docker/examples/python/assets/hello_world
f466c8f 
Bumps [pip](https://github.com/pypa/pip) from 23.3 to 26.0.
- [Changelog](https://github.com/pypa/pip/blob/main/NEWS.rst)
- [Commits](pypa/pip@23.3...26.0)

---
updated-dependencies:
- dependency-name: pip
  dependency-version: '26.0'
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump @tootallnate/once and jest-environment-jsdom
5d54727 
Removes [@tootallnate/once](https://github.com/TooTallNate/once). It's no longer used after updating ancestor dependency [jest-environment-jsdom](https://github.com/jestjs/jest/tree/HEAD/packages/jest-environment-jsdom). These dependencies need to be updated together.


Removes `@tootallnate/once`

Updates `jest-environment-jsdom` from 29.7.0 to 30.3.0
- [Release notes](https://github.com/jestjs/jest/releases)
- [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md)
- [Commits](https://github.com/jestjs/jest/commits/v30.3.0/packages/jest-environment-jsdom)

---
updated-dependencies:
- dependency-name: "@tootallnate/once"
  dependency-version: 
  dependency-type: indirect
- dependency-name: jest-environment-jsdom
  dependency-version: 30.3.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump pyjwt in /docs/adr/assets/ADR-003/examples/python
f0d4cd8 
Bumps [pyjwt](https://github.com/jpadilla/pyjwt) from 2.8.0 to 2.12.0.
- [Release notes](https://github.com/jpadilla/pyjwt/releases)
- [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst)
- [Commits](jpadilla/pyjwt@2.8.0...2.12.0)

---
updated-dependencies:
- dependency-name: pyjwt
  dependency-version: 2.12.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@github-actions
Merge dependabot/pip/docs/adr/assets/ADR-003/examples/python/pyjwt-2.…
896c7d0 
…12.0 into dependabotCombined
@github-actions
Merge dependabot/npm_and_yarn/multi-daf4b53396 into dependabotCombined
dacd3b4
@github-actions
Merge dependabot/pip/scripts/docker/examples/python/assets/hello_worl…
bcddbff 
…d/pip-26.0 into dependabotCombined
@github-actions
Merge dependabot/pip/scripts/docker/examples/python/assets/hello_worl…
a15be48 
…d/jinja2-3.1.6 into dependabotCombined
@github-actions
Merge dependabot/bundler/docs/nokogiri-1.19.1 into dependabotCombined
81fccb0
@github-actions
Merge dependabot/pip/scripts/docker/examples/python/assets/hello_worl…
ae64f40 
…d/werkzeug-3.1.6 into dependabotCombined
@github-actions
Merge dependabot/pip/scripts/docker/examples/python/assets/hello_worl…
dcba5c6 
…d/flask-3.1.3 into dependabotCombined
@github-actions
Merge dependabot/npm_and_yarn/eslint-plugin-security-4.0.0 into depen…
76fcf69 
…dabotCombined
@github-actions
Merge dependabot/npm_and_yarn/eslint-10.0.3 into dependabotCombined
c360945
@github-actions
Merge dependabot/npm_and_yarn/jest-environment-jsdom-30.3.0 into depe…
4b0b6be 
…ndabotCombined
@github-actions
Merge dependabot/github_actions/ossf/scorecard-action-2.4.3 into depe…
36af08f 
…ndabotCombined
@github-actions
Merge dependabot/github_actions/peter-evans/create-pull-request-8.1.0…
108c99c 
… into dependabotCombined
@github-actions
Merge dependabot/github_actions/actions/download-artifact-8 into depe…
6d8411c 
…ndabotCombined
@github-actions
Merge dependabot/npm_and_yarn/eslint-plugin-unicorn-63.0.0 into depen…
4defa40 
…dabotCombined
@github-actions
Merge dependabot/github_actions/asdf-vm/actions-4.0.1 into dependabot…
9570257 
…Combined
@github-actions github-actions bot added the dependencies Pull requests that update a dependency file label Mar 16, 2026
@github-actions github-actions bot requested review from a team as code owners March 16, 2026 11:59
@aidenvaines-cgi aidenvaines-cgi merged commit 6145aab into main Mar 16, 2026
@aidenvaines-cgi aidenvaines-cgi deleted the dependabotCombined branch March 16, 2026 12:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aidenvaines-cgi aidenvaines-cgi aidenvaines-cgi approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@aidenvaines-cgi