Skip to content

chore(deps): bump qs#4595

Merged
mergify[bot] merged 2 commits into
box:masterfrom
jpan-box:chore-bump-deps
May 28, 2026
Merged

chore(deps): bump qs#4595
mergify[bot] merged 2 commits into
box:masterfrom
jpan-box:chore-bump-deps

Conversation

@jpan-box

@jpan-box jpan-box commented May 28, 2026

Copy link
Copy Markdown
Contributor

Bump qs resolution from ^6.14.1 to ^6.15.2.

Steps taken

  1. Bumped qs resolution in package.json
  2. Ran yarn install - updated qs in yarn.lock (6.15.0 → 6.15.2)
  3. Manually updated yarn.lock entries for path-to-regexp (0.1.12 → 0.1.13, 1.8.0 → 1.9.0) - hashes from npm view <pkg>@<ver> dist --json
  4. Ran yarn install - "Already up-to-date", lockfile stable
  5. Ran npx yarn-deduplicate yarn.lock - no duplicates found
  6. yarn audit - targeted packages no longer flagged
  7. Full test suite passes (959 suites, 10,992 tests)
  8. Rebased onto latest master (resolved tmp conflict - master already has 0.2.7 via chore(deps): bump tmp from 0.2.5 to 0.2.7 #4593)

Summary by CodeRabbit

  • Chores
    • Updated a query string parsing dependency to a newer version for improved stability and bug fixes.

Review Change Stack

@jpan-box
jpan-box requested a review from a team as a code owner May 28, 2026 15:24
@coderabbitai

coderabbitai Bot commented May 28, 2026

Copy link
Copy Markdown
Contributor

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: d8bfaf45-f354-4f27-9e56-210daab409db

📥 Commits

Reviewing files that changed from the base of the PR and between 98b2552 and 6724cc6.

⛔ Files ignored due to path filters (1)
  • yarn.lock is excluded by !**/yarn.lock, !**/*.lock
📒 Files selected for processing (1)
  • package.json
🚧 Files skipped from review as they are similar to previous changes (1)
  • package.json

Walkthrough

The PR updates the qs package resolution override in package.json from ^6.14.1 to ^6.15.2, changing which transitive qs version the package manager will select.

Changes

qs Dependency Resolution

Layer / File(s) Summary
qs resolution version update
package.json
The resolutions override for qs is bumped from ^6.14.1 to ^6.15.2, updating the pinned transitive dependency version.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

Suggested reviewers

  • tjiang-box
  • jfox-box
  • tjuanitas

Poem

🐰 A tiny bump, one-line cheer,
qs hops forward, version clear.
Transitive paths now softly sway,
I twitch my whiskers, nibble away,
Release-time carrots on their way.

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Title check ✅ Passed The pull request title clearly summarizes the main change: bumping the qs package dependency.
Description check ✅ Passed The pull request description provides detailed steps taken and verification measures, exceeding the template requirements which are comment-only guidance.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@coderabbitai

coderabbitai Bot commented May 28, 2026

Copy link
Copy Markdown
Contributor

Actionable comments posted: 0

@coderabbitai

coderabbitai Bot commented May 28, 2026

Copy link
Copy Markdown
Contributor

Actionable comments posted: 0

reneshen0328
reneshen0328 previously approved these changes May 28, 2026
Co-authored-by: Cursor <cursoragent@cursor.com>
@coderabbitai

coderabbitai Bot commented May 28, 2026

Copy link
Copy Markdown
Contributor

Actionable comments posted: 0

@mergify

mergify Bot commented May 28, 2026

Copy link
Copy Markdown
Contributor

Merge Queue Status

  • Entered queue2026-05-28 17:26 UTC · Rule: Automatic strict merge
  • Checks passed · in-place
  • Merged2026-05-28 17:48 UTC · at 6724cc6eae221c1a3b53ab8adef64d1ad3052fdf · squash

This pull request spent 22 minutes 22 seconds in the queue, including 12 minutes 39 seconds running CI.

Required conditions to merge
  • #approved-reviews-by >= 1 [🛡 GitHub branch protection]
  • #review-threads-unresolved = 0 [🛡 GitHub branch protection]
  • github-review-decision = APPROVED [🛡 GitHub branch protection]
  • any of [🛡 GitHub branch protection]:
    • check-success = Summary
    • check-neutral = Summary
    • check-skipped = Summary
  • any of [🛡 GitHub branch protection]:
    • check-success = lint_test_build
    • check-neutral = lint_test_build
    • check-skipped = lint_test_build
  • any of [🛡 GitHub branch protection]:
    • check-success = license/cla
    • check-neutral = license/cla
    • check-skipped = license/cla
  • any of [🛡 GitHub branch protection]:
    • check-success = lint_pull_request
    • check-neutral = lint_pull_request
    • check-skipped = lint_pull_request

@coderabbitai

coderabbitai Bot commented May 28, 2026

Copy link
Copy Markdown
Contributor

Actionable comments posted: 0

@mergify
mergify Bot merged commit 7572ea3 into box:master May 28, 2026
10 of 11 checks passed
@mergify mergify Bot removed the queued label May 28, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants