chore(deps-dev): bump the npm-development group across 1 directory with 4 updates by dependabot[bot] · Pull Request #6 · sergeyshmakov/data-path

dependabot · 2026-05-15T07:19:54Z

Bumps the npm-development group with 4 updates in the / directory: @biomejs/biome, @commitlint/cli, @commitlint/config-conventional and vitest.

Updates @biomejs/biome from 2.4.6 to 2.4.15

Release notes

Sourced from @biomejs/biome's releases.

Biome CLI v2.4.15

2.4.15

Patch Changes
#9394 ba3480e Thanks @dyc3! - Added the nursery rule useTestHooksInOrder in the test domain. The rule enforces that Jest/Vitest lifecycle hooks (beforeAll, beforeEach, afterEach, afterAll) are declared in the order they execute, making test setup and teardown easier to reason about.
#10254 e0a54cc Thanks @dyc3! - Added a new nursery rule useVueNextTickPromise, which enforces Promise syntax when using Vue nextTick.

For example, the following snippet triggers the rule:
import { nextTick } from "vue";
nextTick(() => {
updateDom();
});
#10219 64aee45 Thanks @dyc3! - Added a new nursery rule noVueVOnNumberValues, that disallows deprecated number modifiers on Vue v-on directives.

For example, the following snippet triggers the rule:
<input @keyup.13="submit" />
#10195 7b8d4e1 Thanks @dyc3! - Added the new nursery rule useVueValidVFor, which validates Vue v-for directives and reports invalid aliases, missing component keys, and keys that do not use iteration variables.

#10238 1110256 Thanks @dyc3! - Added the recommended nursery rule noVueImportCompilerMacros, which disallows importing Vue compiler macros such as defineProps from vue because they are automatically available.

#10201 1a08f89 Thanks @realknove! - Fixed #10193: style/useReadonlyClassProperties no longer reports class properties as readonly-able when they are assigned inside arrow callbacks nested in class property initializers.

#9574 3bd2b6a Thanks @Conaclos! - Fixed #9530. The diagnostics of organizeImports are now more detailed and more precise. They are also better at localizing where the issue is.
#10205 a704a6c Thanks @Conaclos! - Fixed #10185. `organizeImports now errors when it encounters an unknown predefined group.

The following configuration is now reported as invalid because :INEXISTENT: is an unknown predefined group.
{
  "assist": {
    "actions": {
      "source": {
        "organizeImports": { "options": { "groups": [":INEXISTENT:"] } }
      }
    }
  }
}

... (truncated)

Changelog

Sourced from @biomejs/biome's changelog.

2.4.15

Patch Changes
#9394 ba3480e Thanks @dyc3! - Added the nursery rule useTestHooksInOrder in the test domain. The rule enforces that Jest/Vitest lifecycle hooks (beforeAll, beforeEach, afterEach, afterAll) are declared in the order they execute, making test setup and teardown easier to reason about.
#10254 e0a54cc Thanks @dyc3! - Added a new nursery rule useVueNextTickPromise, which enforces Promise syntax when using Vue nextTick.

For example, the following snippet triggers the rule:
import { nextTick } from "vue";
nextTick(() => {
updateDom();
});
#10219 64aee45 Thanks @dyc3! - Added a new nursery rule noVueVOnNumberValues, that disallows deprecated number modifiers on Vue v-on directives.

For example, the following snippet triggers the rule:
<input @keyup.13="submit" />
#10195 7b8d4e1 Thanks @dyc3! - Added the new nursery rule useVueValidVFor, which validates Vue v-for directives and reports invalid aliases, missing component keys, and keys that do not use iteration variables.

#10238 1110256 Thanks @dyc3! - Added the recommended nursery rule noVueImportCompilerMacros, which disallows importing Vue compiler macros such as defineProps from vue because they are automatically available.

#10201 1a08f89 Thanks @realknove! - Fixed #10193: style/useReadonlyClassProperties no longer reports class properties as readonly-able when they are assigned inside arrow callbacks nested in class property initializers.

#9574 3bd2b6a Thanks @Conaclos! - Fixed #9530. The diagnostics of organizeImports are now more detailed and more precise. They are also better at localizing where the issue is.
#10205 a704a6c Thanks @Conaclos! - Fixed #10185. `organizeImports now errors when it encounters an unknown predefined group.

The following configuration is now reported as invalid because :INEXISTENT: is an unknown predefined group.
{
  "assist": {
    "actions": {
      "source": {
        "organizeImports": { "options": { "groups": [":INEXISTENT:"] } }
      }
    }
  }
}

... (truncated)

Commits

9dd3271 ci: release (#10210)
7b8d4e1 feat(lint/html/vue): add useVueValidVFor (#10195)
ba3480e feat(lint/js): add useTestHooksInOrder (#9394)
e0a54cc feat(lint/js/vue): add useVueNextTickPromise (#10254)
1110256 feat(lint/vue): add noVueImportCompilerMacros (#10238)
7f7419c fix: grammar in extends docstring (#10263)
0ae5840 feat(lint/js): add useThisForClassMethods (#9807)
83f7385 feat(lint/js): add noBaseToString (#9838)
64aee45 feat(lint/html/vue): add noVueVOnNumberValues (#10219)
46393e0 ci: release (#10100)
Additional commits viewable in compare view

Updates @commitlint/cli from 20.4.3 to 21.0.1

Release notes

Sourced from @commitlint/cli's releases.

v21.0.1

21.0.1 (2026-05-12)

Bug Fixes

fix(load): only resolve relative formatter paths by @escapedcat in conventional-changelog/commitlint#4761

fix(types): add presetConfig to ParserPreset interface by @SAY-5 in conventional-changelog/commitlint#4749

CI

ci: stop spawning schedule jobs on contributors' forks by @knocte in conventional-changelog/commitlint#4753

ci: add weekly non-blocking pnpm audit by @escapedcat in conventional-changelog/commitlint#4766

New Contributors

@SAY-5 made their first contribution in conventional-changelog/commitlint#4749

Full Changelog: conventional-changelog/commitlint@v21.0.0...v21.0.1

v21.0.0

Heads-up: --legacy-output is a transitional escape hatch. It will be removed in a future major release. Plan to migrate your parsers / snapshots to the new format during the v21 lifecycle.

21.0.0 (2026-05-08)

Breaking

chore!: minimum node version v22 by @escapedcat in #4679

feat!: show input from a new line by @knocte in #4727 (adds --legacy-output flag)

Fixes

fix: widen cz-commitlint inquirer peer dep to support v9–v12 by @escapedcat in #4682 — closes #4554

Internals (Node 22 cleanup)

chore: replace dependencies with Node 22 built-ins by @escapedcat in #4681 — drops glob, fast-glob, import-meta-resolve, minimist, fs-extra

refactor: replace read-pkg with native fs.readFile + JSON.parse by @escapedcat in #4742

chore: update dependency yargs to v18 by @escapedcat in #4686

chore: remove cross-env, move env vars to vitest config by @escapedcat in #4684

Dependency updates

chore: update dependency @types/node to v22.19.17 by @renovate[bot] in #4739

chore: update dependency @swc/core to v1.15.33 by @renovate[bot] in #4743

... (truncated)

Changelog

Sourced from @commitlint/cli's changelog.

21.0.1 (2026-05-12)

Note: Version bump only for package @commitlint/cli

21.0.0 (2026-05-08)

chore!: minimum node version v22 (#4679) (ac2b3f4), closes #4679

BREAKING CHANGES

drop node v18 and v20 support

Bump engines to >=v22 in all 39 package.json files

Update @types/node to ^22.0.0

Update CI matrix to [22, 24]

Update Ubuntu baseline job to ubuntu:26.04

Update Dockerfile.ci, .mise.toml, .codesandbox/ci.json

Update pre-commit hook to use --ignore-engines

Update README and docs

Co-authored-by: Claude Opus 4.6 (1M context) noreply@anthropic.com

20.5.3 (2026-04-30)

Note: Version bump only for package @commitlint/cli

20.5.2 (2026-04-25)

Note: Version bump only for package @commitlint/cli

20.5.0 (2026-03-15)

... (truncated)

Commits

db8d7d6 v21.0.1
1329a25 chore: migrate to pnpm (#4762)
db39968 chore: pre pnpm cleanup (#4759)
6099ae5 chore: replace eslint with oxlint (#4756)
f081a8e v21.0.0
40d7e36 feat!: show input from a new line (#4727)
44c3174 chore: update dependency yargs to v18 #4432 (#4686)
ac01464 chore: replace dependencies with Node 22 built-ins (#4681)
ac2b3f4 chore!: minimum node version v22 (#4679)
31e959a v20.5.3
Additional commits viewable in compare view

Updates @commitlint/config-conventional from 20.4.3 to 21.0.1

Release notes

Sourced from @commitlint/config-conventional's releases.

v21.0.1

21.0.1 (2026-05-12)

Bug Fixes

fix(load): only resolve relative formatter paths by @escapedcat in conventional-changelog/commitlint#4761

fix(types): add presetConfig to ParserPreset interface by @SAY-5 in conventional-changelog/commitlint#4749

CI

ci: stop spawning schedule jobs on contributors' forks by @knocte in conventional-changelog/commitlint#4753

ci: add weekly non-blocking pnpm audit by @escapedcat in conventional-changelog/commitlint#4766

New Contributors

@SAY-5 made their first contribution in conventional-changelog/commitlint#4749

Full Changelog: conventional-changelog/commitlint@v21.0.0...v21.0.1

v21.0.0

Heads-up: --legacy-output is a transitional escape hatch. It will be removed in a future major release. Plan to migrate your parsers / snapshots to the new format during the v21 lifecycle.

21.0.0 (2026-05-08)

Breaking

chore!: minimum node version v22 by @escapedcat in #4679

feat!: show input from a new line by @knocte in #4727 (adds --legacy-output flag)

Fixes

fix: widen cz-commitlint inquirer peer dep to support v9–v12 by @escapedcat in #4682 — closes #4554

Internals (Node 22 cleanup)

chore: replace dependencies with Node 22 built-ins by @escapedcat in #4681 — drops glob, fast-glob, import-meta-resolve, minimist, fs-extra

refactor: replace read-pkg with native fs.readFile + JSON.parse by @escapedcat in #4742

chore: update dependency yargs to v18 by @escapedcat in #4686

chore: remove cross-env, move env vars to vitest config by @escapedcat in #4684

Dependency updates

chore: update dependency @types/node to v22.19.17 by @renovate[bot] in #4739

chore: update dependency @swc/core to v1.15.33 by @renovate[bot] in #4743

... (truncated)

Changelog

Sourced from @commitlint/config-conventional's changelog.

21.0.1 (2026-05-12)

Note: Version bump only for package @commitlint/config-conventional

21.0.0 (2026-05-08)

chore!: minimum node version v22 (#4679) (ac2b3f4), closes #4679

BREAKING CHANGES

drop node v18 and v20 support

Bump engines to >=v22 in all 39 package.json files

Update @types/node to ^22.0.0

Update CI matrix to [22, 24]

Update Ubuntu baseline job to ubuntu:26.04

Update Dockerfile.ci, .mise.toml, .codesandbox/ci.json

Update pre-commit hook to use --ignore-engines

Update README and docs

Co-authored-by: Claude Opus 4.6 (1M context) noreply@anthropic.com

20.5.3 (2026-04-30)

Note: Version bump only for package @commitlint/config-conventional

20.5.0 (2026-03-15)

Note: Version bump only for package @commitlint/config-conventional

20.4.4 (2026-03-12)

... (truncated)

Commits

db8d7d6 v21.0.1
1329a25 chore: migrate to pnpm (#4762)
6099ae5 chore: replace eslint with oxlint (#4756)
f081a8e v21.0.0
44c3174 chore: update dependency yargs to v18 #4432 (#4686)
ac2b3f4 chore!: minimum node version v22 (#4679)
31e959a v20.5.3
a7918e9 v20.5.0
02d7245 v20.4.4
See full diff in compare view

Updates vitest from 4.0.18 to 4.1.6

Release notes

Sourced from vitest's releases.

v4.1.6

   🐞 Bug Fixes

browser: Provide project reference in ToMatchScreenshotResolvePath - by @macarie and @sheremet-va in vitest-dev/vitest#10138 (31882)

Global sequence.concurrent: true with top-level test(..., { concurrent: false }) + depreacte sequential test API and options - by @hi-ogawa, Codex and @sheremet-va in vitest-dev/vitest#10196 (2847d)

browser: Simplify orchestrator otel carrier - by @hi-ogawa in vitest-dev/vitest#10285 (18af9)

   🏎 Performance

Stringify diff objects only once - by @sheremet-va in vitest-dev/vitest#10276 (9f7b1)

    View changes on GitHub

v4.1.5

   🚀 Experimental Features

coverage: Istanbul to support instrumenter option - by @BartWaardenburg and @AriPerkkio in vitest-dev/vitest#10119 (0e0ff)

   🐞 Bug Fixes

--project negation excludes browser instances - by @felamaslen in vitest-dev/vitest#10131 (9423d)

Project color label on html reporter - by @hi-ogawa in vitest-dev/vitest#10142 (596f7)

Fix vi.defineHelper called as object method - by @hi-ogawa in vitest-dev/vitest#10163 (122c2)

Alias agent reporter to minimal - by @sheremet-va in vitest-dev/vitest#10157 (663b9)

Respect diff config options in soft assertions - by @Copilot, sheremet-va and @sheremet-va in vitest-dev/vitest#8696 (9787d)

Respect diff config options in soft assertions " - by @sheremet-va in vitest-dev/vitest#8696 (7dc6d)

ast-collect: Recognize _vi_import prefix in static test discovery - by @Yejneshwar in vitest-dev/vitest#10129 (32546)

coverage: Descriptive error message when reports directory is removed during test run - by @DaveT1991 and @AriPerkkio in vitest-dev/vitest#10117 (14133)

snapshot: Increase default snapshot max output length - by @hi-ogawa and Codex in vitest-dev/vitest#10150 (21e66)

ui: Fix jsx/tsx syntax highlight - by @hi-ogawa in vitest-dev/vitest#10152 (f1b1f)

web-worker: Support MessagePort objects referenced inside postMessage data - by @whitphx and Claude Opus 4.6 (1M context) in vitest-dev/vitest#9927 and vitest-dev/vitest#10124 (7ad7d)

api: Make test-specification options writable - by @sheremet-va in vitest-dev/vitest#10154 (6abd5)

    View changes on GitHub

v4.1.4

   🚀 Experimental Features

coverage:

Default to text reporter skipFull if agent detected - by @hi-ogawa in vitest-dev/vitest#10018 (53757)

experimental:

Expose assertion as a public field - by @sheremet-va in vitest-dev/vitest#10095 (a120e)

Support aria snapshot - by @hi-ogawa, Claude Opus 4.6 (1M context), @AriPerkkio, Codex and @sheremet-va in vitest-dev/vitest#9668 (d4fbb)

reporter:

Add filterMeta option to json reporter - by @nami8824 and @sheremet-va in vitest-dev/vitest#10078 (b77de)

   🐞 Bug Fixes

Use "black" foreground for labeled terminal message to ensure contrast - by @hi-ogawa in vitest-dev/vitest#10076 (203f0)

Make expect(..., message) consistent as error message prefix - by @hi-ogawa and Codex in vitest-dev/vitest#10068 (a1b5f)

... (truncated)

Commits

a8fd24c chore: release v4.1.6
18af98c fix(browser): simplify orchestrator otel carrier (#10285)
3188260 feat(browser): provide project reference in ToMatchScreenshotResolvePath (#...
e399846 chore: release v4.1.5
7dc6d54 Revert "fix: respect diff config options in soft assertions (#8696)"
9787ded fix: respect diff config options in soft assertions (#8696)
325463a fix(ast-collect): recognize _vi_import prefix in static test discovery (#10...
0e0ff41 feat(coverage): istanbul to support instrumenter option (#10119)
663b99f fix: alias agent reporter to minimal (#10157)
122c25b fix: fix vi.defineHelper called as object method (#10163)
Additional commits viewable in compare view

dependabot · 2026-05-15T07:19:55Z

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

cubic-dev-ai

1 issue found across 2 files

Prompt for AI agents (unresolved issues)


Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name="package.json">

<violation number="1" location="package.json:91">
P2: Upgrading commitlint to v21 introduces a Node 22+ requirement, but this repo still advertises/supports Node >=20. On Node 20 CI/dev environments, commitlint commands can fail after install.</violation>
</file>

_{Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.}

cubic-dev-ai · 2026-05-15T07:22:23Z

-		"@commitlint/cli": "^20.4.3",
-		"@commitlint/config-conventional": "^20.4.3",
+		"@biomejs/biome": "2.4.15",
+		"@commitlint/cli": "^21.0.1",


P2: Upgrading commitlint to v21 introduces a Node 22+ requirement, but this repo still advertises/supports Node >=20. On Node 20 CI/dev environments, commitlint commands can fail after install.

Prompt for AI agents

Check if this issue is valid — if so, understand the root cause and fix it. At package.json, line 91: <comment>Upgrading commitlint to v21 introduces a Node 22+ requirement, but this repo still advertises/supports Node >=20. On Node 20 CI/dev environments, commitlint commands can fail after install.</comment> <file context> @@ -87,17 +87,17 @@ - "@commitlint/cli": "^20.4.3", - "@commitlint/config-conventional": "^20.4.3", + "@biomejs/biome": "2.4.15", + "@commitlint/cli": "^21.0.1", + "@commitlint/config-conventional": "^21.0.1", "@semantic-release/changelog": "^6.0.3", </file context>

…th 4 updates Bumps the npm-development group with 4 updates in the / directory: [@biomejs/biome](https://github.com/biomejs/biome/tree/HEAD/packages/@biomejs/biome), [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli), [@commitlint/config-conventional](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/config-conventional) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest). Updates `@biomejs/biome` from 2.4.6 to 2.4.15 - [Release notes](https://github.com/biomejs/biome/releases) - [Changelog](https://github.com/biomejs/biome/blob/main/packages/@biomejs/biome/CHANGELOG.md) - [Commits](https://github.com/biomejs/biome/commits/@biomejs/biome@2.4.15/packages/@biomejs/biome) Updates `@commitlint/cli` from 20.4.3 to 21.0.1 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v21.0.1/@commitlint/cli) Updates `@commitlint/config-conventional` from 20.4.3 to 21.0.1 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/config-conventional/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v21.0.1/@commitlint/config-conventional) Updates `vitest` from 4.0.18 to 4.1.6 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.6/packages/vitest) --- updated-dependencies: - dependency-name: "@biomejs/biome" dependency-version: 2.4.15 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-development - dependency-name: "@commitlint/cli" dependency-version: 21.0.1 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-development - dependency-name: "@commitlint/config-conventional" dependency-version: 21.0.1 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-development - dependency-name: vitest dependency-version: 4.1.6 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-development ... Signed-off-by: dependabot[bot] <support@github.com>

cubic-dev-ai Bot reviewed May 15, 2026

View reviewed changes

dependabot Bot changed the title ~~chore(deps-dev): bump the npm-development group with 4 updates~~ chore(deps-dev): bump the npm-development group across 1 directory with 4 updates May 15, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-development-cbe310c0cf branch from c412d43 to d655290 Compare May 15, 2026 08:43

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps-dev): bump the npm-development group across 1 directory with 4 updates#6

chore(deps-dev): bump the npm-development group across 1 directory with 4 updates#6
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-development-cbe310c0cf

dependabot Bot commented on behalf of github May 15, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github May 15, 2026

Uh oh!

cubic-dev-ai Bot left a comment

Uh oh!

cubic-dev-ai Bot May 15, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github May 15, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Biome CLI v2.4.15

2.4.15

Patch Changes

2.4.15

Patch Changes

v21.0.1

21.0.1 (2026-05-12)

Bug Fixes

CI

New Contributors

v21.0.0

21.0.0 (2026-05-08)

Breaking

Fixes

Internals (Node 22 cleanup)

Dependency updates

21.0.1 (2026-05-12)

21.0.0 (2026-05-08)

BREAKING CHANGES

20.5.3 (2026-04-30)

20.5.2 (2026-04-25)

20.5.0 (2026-03-15)

v21.0.1

21.0.1 (2026-05-12)

Bug Fixes

CI

New Contributors

v21.0.0

21.0.0 (2026-05-08)

Breaking

Fixes

Internals (Node 22 cleanup)

Dependency updates

21.0.1 (2026-05-12)

21.0.0 (2026-05-08)

BREAKING CHANGES

20.5.3 (2026-04-30)

20.5.0 (2026-03-15)

20.4.4 (2026-03-12)

v4.1.6

🐞 Bug Fixes

🏎 Performance

View changes on GitHub

v4.1.5

🚀 Experimental Features

🐞 Bug Fixes

View changes on GitHub

v4.1.4

🚀 Experimental Features

🐞 Bug Fixes

Uh oh!

dependabot Bot commented on behalf of github May 15, 2026

Labels

Uh oh!

cubic-dev-ai Bot left a comment

Choose a reason for hiding this comment

Uh oh!

cubic-dev-ai Bot May 15, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github May 15, 2026 •

edited

Loading