chore(deps): bump the minor-production-deps group with 6 updates by dependabot[bot] · Pull Request #1120 · readmeio/api

dependabot · 2026-03-01T05:14:32Z

Bumps the minor-production-deps group with 6 updates:

Package	From	To
oas-normalize	`15.7.0`	`15.7.1`
ora	`9.1.0`	`9.3.0`
semver	`7.7.3`	`7.7.4`
ssri	`13.0.0`	`13.0.1`
@readme/oas-to-har	`28.0.6`	`28.0.8`
nock	`14.0.10`	`14.0.11`

Updates oas-normalize from 15.7.0 to 15.7.1

Commits

71d79f3 chore(release): publish
e1edce1 chore(deps-dev): upgrading out of date deps (#1049)
See full diff in compare view

Updates ora from 9.1.0 to 9.3.0

Release notes

Sourced from ora's releases.

v9.3.0

Reduce flicker in rendering 2ab4f76

sindresorhus/ora@v9.2.0...v9.3.0

v9.2.0

Update stdin-discarder dependency (#251) 020eaba

sindresorhus/ora@v9.1.0...v9.2.0

Commits

4496362 9.3.0
2ab4f76 Reduce flicker in rendering
8d17b13 Add FAQ item
4cf47fc Add more tests for discardStdin
9763e60 Document Ctrl+C behavior for discardStdin
5408a1e 9.2.0
020eaba Update stdin-discarder dependency (#251)
See full diff in compare view

Updates semver from 7.7.3 to 7.7.4

Release notes

Sourced from semver's releases.

v7.7.4

7.7.4 (2026-01-16)

Bug Fixes

a29faa5 #835 cli: pass options to semver.valid() for loose version validation (#835) (@mldangelo)

Documentation

1d28d5e #836 fix typos and update -n CLI option documentation (#836) (@mldangelo)

Dependencies

120968b #840 @npmcli/template-oss@4.29.0 (#840)

Chores

44d7130 #824 bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#824) (@dependabot[bot])

7073576 #820 reorder parameters in invalid-versions.js test (#820) (@reggi)

5816d4c #829 bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#829) (@dependabot[bot], @npm-cli-bot)

Changelog

Sourced from semver's changelog.

7.7.4 (2026-01-16)

Bug Fixes

a29faa5 #835 cli: pass options to semver.valid() for loose version validation (#835) (@mldangelo)

Documentation

1d28d5e #836 fix typos and update -n CLI option documentation (#836) (@mldangelo)

Dependencies

120968b #840 @npmcli/template-oss@4.29.0 (#840)

Chores

44d7130 #824 bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#824) (@dependabot[bot])

7073576 #820 reorder parameters in invalid-versions.js test (#820) (@reggi)

5816d4c #829 bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#829) (@dependabot[bot], @npm-cli-bot)

Commits

5993c2e chore: release 7.7.4 (#839)
120968b deps: @npmcli/template-oss@4.29.0 (#840)
a29faa5 fix(cli): pass options to semver.valid() for loose version validation (#835)
1d28d5e docs: fix typos and update -n CLI option documentation (#836)
5816d4c chore: bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#829)
ab9e28a chore: bump @npmcli/template-oss from 4.27.1 to 4.28.0 (#827)
44d7130 chore: bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#824)
7073576 chore: reorder parameters in invalid-versions.js test (#820)
16a35f5 chore: bump @npmcli/template-oss from 4.26.0 to 4.27.1 (#823)
3a3459d chore: bump @npmcli/template-oss from 4.25.1 to 4.26.0 (#818)
See full diff in compare view

Updates ssri from 13.0.0 to 13.0.1

Release notes

Sourced from ssri's releases.

v13.0.1

13.0.1 (2025-12-16)

Bug Fixes

eb83316 #160 hash: filter on known hashes (@wraithgar)

5b98568 #160 code cleanup (@wraithgar)

Chores

940288e #163 remove tap (@owlstronaut)

26e09b8 #163 move to node:test (@owlstronaut)

5ca3f4a #161 add benchmarks (#161) (@H4ad)

cf69694 #156 bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#156) (@dependabot[bot])

05ce2c5 #158 bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#158) (@dependabot[bot], @npm-cli-bot)

Changelog

Sourced from ssri's changelog.

13.0.1 (2025-12-16)

Bug Fixes

eb83316 #160 hash: filter on known hashes (@wraithgar)

5b98568 #160 code cleanup (@wraithgar)

Chores

940288e #163 remove tap (@owlstronaut)

26e09b8 #163 move to node:test (@owlstronaut)

5ca3f4a #161 add benchmarks (#161) (@H4ad)

cf69694 #156 bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#156) (@dependabot[bot])

05ce2c5 #158 bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#158) (@dependabot[bot], @npm-cli-bot)

Commits

73adc15 chore: release 13.0.1 (#162)
940288e chore: remove tap
26e09b8 chore: move to node:test
eb83316 fix(hash): filter on known hashes
5b98568 fix: code cleanup
5ca3f4a chore: add benchmarks (#161)
05ce2c5 chore: bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#158)
60ecae6 chore: bump @npmcli/template-oss from 4.27.1 to 4.28.0 (#157)
cf69694 chore: bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#156)
See full diff in compare view

Updates @readme/oas-to-har from 28.0.6 to 28.0.8

Commits

636f0e2 chore(release): publish
71d79f3 chore(release): publish
See full diff in compare view

Updates nock from 14.0.10 to 14.0.11

Release notes

Sourced from nock's releases.

v14.0.11

14.0.11 (2026-02-09)

Bug Fixes

migrate to npm OIDC (#2940) (113dcac)

restore github actions write permissions (#2941) (a4cb6b8)

update @mswjs/interceptors to fix a memory leak (#2938) (025db76)

upgrade semantic-release (#2943) (db0b280)

Commits

db0b280 fix: upgrade semantic-release (#2943)
bc78af4 Add write permission for contents in CI workflow (#2942)
a4cb6b8 fix: restore github actions write permissions (#2941)
113dcac fix: migrate to npm OIDC (#2940)
025db76 fix: update @mswjs/interceptors to fix a memory leak (#2938)
e7418da chore(deps): bump actions/setup-node from 4 to 6 (#2924)
2d4a5cc chore(deps-dev): bump js-yaml from 3.14.1 to 3.14.2
4f7e385 chore: upgrade interceptors
5177a33 chore(deps): bump serialize-javascript and mocha (#2848)
93611a2 chore(deps-dev): bump prettier from 3.2.5 to 3.6.2 (#2883)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for nock since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minor-production-deps group with 6 updates: | Package | From | To | | --- | --- | --- | | [oas-normalize](https://github.com/readmeio/oas/tree/HEAD/packages/oas-normalize) | `15.7.0` | `15.7.1` | | [ora](https://github.com/sindresorhus/ora) | `9.1.0` | `9.3.0` | | [semver](https://github.com/npm/node-semver) | `7.7.3` | `7.7.4` | | [ssri](https://github.com/npm/ssri) | `13.0.0` | `13.0.1` | | [@readme/oas-to-har](https://github.com/readmeio/oas/tree/HEAD/packages/oas-to-har) | `28.0.6` | `28.0.8` | | [nock](https://github.com/nock/nock) | `14.0.10` | `14.0.11` | Updates `oas-normalize` from 15.7.0 to 15.7.1 - [Release notes](https://github.com/readmeio/oas/releases) - [Commits](https://github.com/readmeio/oas/commits/oas-normalize@15.7.1/packages/oas-normalize) Updates `ora` from 9.1.0 to 9.3.0 - [Release notes](https://github.com/sindresorhus/ora/releases) - [Commits](sindresorhus/ora@v9.1.0...v9.3.0) Updates `semver` from 7.7.3 to 7.7.4 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v7.7.3...v7.7.4) Updates `ssri` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/npm/ssri/releases) - [Changelog](https://github.com/npm/ssri/blob/main/CHANGELOG.md) - [Commits](npm/ssri@v13.0.0...v13.0.1) Updates `@readme/oas-to-har` from 28.0.6 to 28.0.8 - [Release notes](https://github.com/readmeio/oas/releases) - [Commits](https://github.com/readmeio/oas/commits/@readme/oas-to-har@28.0.8/packages/oas-to-har) Updates `nock` from 14.0.10 to 14.0.11 - [Release notes](https://github.com/nock/nock/releases) - [Changelog](https://github.com/nock/nock/blob/main/CHANGELOG.md) - [Commits](nock/nock@v14.0.10...v14.0.11) --- updated-dependencies: - dependency-name: oas-normalize dependency-version: 15.7.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-production-deps - dependency-name: ora dependency-version: 9.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-production-deps - dependency-name: semver dependency-version: 7.7.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-production-deps - dependency-name: ssri dependency-version: 13.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-production-deps - dependency-name: "@readme/oas-to-har" dependency-version: 28.0.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-production-deps - dependency-name: nock dependency-version: 14.0.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-production-deps ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-03-02T23:09:10Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 1, 2026

dependabot bot requested a review from erunion as a code owner March 1, 2026 05:14

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 1, 2026

fix: lockfile

cbdd8b1

erunion closed this Mar 2, 2026

dependabot bot deleted the dependabot/npm_and_yarn/minor-production-deps-43bdd44703 branch March 2, 2026 23:09

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the minor-production-deps group with 6 updates#1120

chore(deps): bump the minor-production-deps group with 6 updates#1120
dependabot[bot] wants to merge 2 commits intomainfrom
dependabot/npm_and_yarn/minor-production-deps-43bdd44703

dependabot bot commented on behalf of github Mar 1, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 2, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Mar 1, 2026

v9.3.0

v9.2.0

v7.7.4

7.7.4 (2026-01-16)

Bug Fixes

Documentation

Dependencies

Chores

7.7.4 (2026-01-16)

Bug Fixes

Documentation

Dependencies

Chores

v13.0.1

13.0.1 (2025-12-16)

Bug Fixes

Chores

13.0.1 (2025-12-16)

Bug Fixes

Chores

v14.0.11

14.0.11 (2026-02-09)

Bug Fixes

Uh oh!

dependabot bot commented on behalf of github Mar 2, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant