Skip to content

chore(deps): bump the minor-and-patch group with 5 updates#2553

Merged
ElliotFriend merged 2 commits into
mainfrom
dependabot/npm_and_yarn/minor-and-patch-69d18217ae
Jul 6, 2026
Merged

chore(deps): bump the minor-and-patch group with 5 updates#2553
ElliotFriend merged 2 commits into
mainfrom
dependabot/npm_and_yarn/minor-and-patch-69d18217ae

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown
Contributor

Bumps the minor-and-patch group with 5 updates:

Package From To
docusaurus-plugin-openapi-docs 5.0.2 5.1.0
docusaurus-theme-openapi-docs 5.0.2 5.1.0
fs-extra 11.3.5 11.3.6
eslint 10.5.0 10.6.0
prettier 3.8.4 3.9.4

Updates docusaurus-plugin-openapi-docs from 5.0.2 to 5.1.0

Release notes

Sourced from docusaurus-plugin-openapi-docs's releases.

v5.1.0

5.1.0 (2026-06-24)

Minor release adding configurable schema expansion depth, numerous schema rendering fixes, improved i18n support, Docusaurus v4 readiness work, and a batch of dependency updates. Also fixes the version script to ensure create-docusaurus-openapi-docs is always bumped in lockstep with the plugin and theme.

🚀 New Feature

  • feat(theme): configurable schema expansion level (#1222) (#1449)

🐛 Bug Fix

  • fix(theme): vendor theme-common/internal usages ahead of Docusaurus v4 (#1140) (#1502)
  • fix(theme): make i18n strings extractable by write-translations (#1499)
  • fix(plugin): render OpenAPI 3.1 type unions in schema names (#950) (#1475)
  • fix(theme): prefill Send API Request from example fields (#544, #1079) (#1476)
  • fix(plugin): restore menu__list-item--deprecated class on sidebar items (#1474)
  • fix(theme): align CodeSnippets outer tab with Docusaurus storage slot (#1464)
  • fix: render nested arrays as Type[][] in Schema tab (#1114) (#1465)
  • fix: render allOf schemas with additionalProperties:false on every member (#1119) (#1463)
  • fix(theme): support multiple x-codeSamples per language (#1204) (#1459)
  • fix(theme): preserve large integer precision in response panel (#1208) (#1458)
  • fix: dedupe properties when allOf override redefines nested array items (#1218) (#1457)
  • fix(theme): pre-populate parameter defaults in API explorer form (#1226) (#1448)
  • fix: skip vendor extensions at the path level (#891) (#1440)
  • fix(demo): use bracketed admonition title syntax for Docusaurus 3.10 (#1445)

📝 Documentation

  • docs: document themeConfig.api.schemaExpansion option
  • docs: correct categoryLinkSource supported values (#1447)
  • docs: harmonize top-level README with plugin README (#1446)

🤖 Dependencies

  • chore(deps): bump ws from 7.5.10 to 7.5.11 (#1514)
  • chore(deps): bump @​redocly/openapi-core from 2.32.2 to 2.33.0 (#1515)
  • chore(deps): bump react-hook-form from 7.75.0 to 7.79.0 (#1517)
  • chore(deps): bump the react group across 1 directory with 2 updates (#1503)
  • chore(deps): bump sass from 1.99.0 to 1.101.0 (#1504)
  • chore(deps): bump @​redocly/openapi-core from 2.31.5 to 2.32.2 (#1505)
  • chore(deps): bump http-proxy-middleware from 2.0.9 to 2.0.10 (#1511)
  • chore(deps): bump webpack-dev-server from 5.2.4 to 5.2.5 (#1512)
  • chore(deps): bump github/codeql-action from 4.36.1 to 4.36.2 (#1506)
  • chore(deps): bump launch-editor from 2.12.0 to 2.14.1 (#1510)
  • chore(deps): bump @​redocly/openapi-core from 2.30.6 to 2.31.5 (#1497)
  • chore(deps): bump github/codeql-action from 4.35.5 to 4.36.1 (#1501)
  • chore(deps): bump @​reduxjs/toolkit from 2.11.2 to 2.12.0 (#1498)
  • chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#1500)
  • chore(deps): bump tmp from 0.2.5 to 0.2.7 (#1490)
  • chore(deps): bump github/codeql-action from 4.35.4 to 4.35.5 (#1489)

... (truncated)

Changelog

Sourced from docusaurus-plugin-openapi-docs's changelog.

5.1.0 (2026-06-24)

Minor release adding configurable schema expansion depth, numerous schema rendering fixes, improved i18n support, Docusaurus v4 readiness work, and a batch of dependency updates. Also fixes the version script to ensure create-docusaurus-openapi-docs is always bumped in lockstep with the plugin and theme.

🚀 New Feature

  • feat(theme): configurable schema expansion level (#1222) (#1449)

🐛 Bug Fix

  • fix(theme): vendor theme-common/internal usages ahead of Docusaurus v4 (#1140) (#1502)
  • fix(theme): make i18n strings extractable by write-translations (#1499)
  • fix(plugin): render OpenAPI 3.1 type unions in schema names (#950) (#1475)
  • fix(theme): prefill Send API Request from example fields (#544, #1079) (#1476)
  • fix(plugin): restore menu__list-item--deprecated class on sidebar items (#1474)
  • fix(theme): align CodeSnippets outer tab with Docusaurus storage slot (#1464)
  • fix: render nested arrays as Type[][] in Schema tab (#1114) (#1465)
  • fix: render allOf schemas with additionalProperties:false on every member (#1119) (#1463)
  • fix(theme): support multiple x-codeSamples per language (#1204) (#1459)
  • fix(theme): preserve large integer precision in response panel (#1208) (#1458)
  • fix: dedupe properties when allOf override redefines nested array items (#1218) (#1457)
  • fix(theme): pre-populate parameter defaults in API explorer form (#1226) (#1448)
  • fix: skip vendor extensions at the path level (#891) (#1440)
  • fix(demo): use bracketed admonition title syntax for Docusaurus 3.10 (#1445)

📝 Documentation

  • docs: document themeConfig.api.schemaExpansion option
  • docs: correct categoryLinkSource supported values (#1447)
  • docs: harmonize top-level README with plugin README (#1446)

🤖 Dependencies

  • chore(deps): bump ws from 7.5.10 to 7.5.11 (#1514)
  • chore(deps): bump @​redocly/openapi-core from 2.32.2 to 2.33.0 (#1515)
  • chore(deps): bump react-hook-form from 7.75.0 to 7.79.0 (#1517)
  • chore(deps): bump the react group across 1 directory with 2 updates (#1503)
  • chore(deps): bump sass from 1.99.0 to 1.101.0 (#1504)
  • chore(deps): bump @​redocly/openapi-core from 2.31.5 to 2.32.2 (#1505)
  • chore(deps): bump http-proxy-middleware from 2.0.9 to 2.0.10 (#1511)
  • chore(deps): bump webpack-dev-server from 5.2.4 to 5.2.5 (#1512)
  • chore(deps): bump github/codeql-action from 4.36.1 to 4.36.2 (#1506)
  • chore(deps): bump launch-editor from 2.12.0 to 2.14.1 (#1510)
  • chore(deps): bump @​redocly/openapi-core from 2.30.6 to 2.31.5 (#1497)
  • chore(deps): bump github/codeql-action from 4.35.5 to 4.36.1 (#1501)
  • chore(deps): bump @​reduxjs/toolkit from 2.11.2 to 2.12.0 (#1498)
  • chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#1500)
  • chore(deps): bump tmp from 0.2.5 to 0.2.7 (#1490)
  • chore(deps): bump github/codeql-action from 4.35.4 to 4.35.5 (#1489)
  • chore(deps): bump sass-loader from 16.0.7 to 16.0.8 (#1486)

... (truncated)

Commits
  • 977ec41 Prepare release v5.1.0 (#1522)
  • e2f01f7 fix(plugin): prioritize static paths over parametric in Postman binding (#1520)
  • 5ff1940 fix(plugin): render OpenAPI 3.1 type unions in schema names (#950) (#1475)
  • 72f1187 fix(plugin): restore menu__list-item--deprecated class on sidebar items (#1474)
  • ff7275b fix: render nested arrays as Type[][] in Schema tab (#1114) (#1465)
  • a0be52b fix: render allOf schemas with additionalProperties:false on every member (#1...
  • c33fb91 fix: dedupe properties when allOf override redefines nested array items (#121...
  • 5d386e3 docs: document themeConfig.api.schemaExpansion option
  • 4f556c9 docs: correct categoryLinkSource supported values (#1447)
  • 16f7c9c fix: skip vendor extensions at the path level(#891) (#1440)
  • Additional commits viewable in compare view

Updates docusaurus-theme-openapi-docs from 5.0.2 to 5.1.0

Release notes

Sourced from docusaurus-theme-openapi-docs's releases.

v5.1.0

5.1.0 (2026-06-24)

Minor release adding configurable schema expansion depth, numerous schema rendering fixes, improved i18n support, Docusaurus v4 readiness work, and a batch of dependency updates. Also fixes the version script to ensure create-docusaurus-openapi-docs is always bumped in lockstep with the plugin and theme.

🚀 New Feature

  • feat(theme): configurable schema expansion level (#1222) (#1449)

🐛 Bug Fix

  • fix(theme): vendor theme-common/internal usages ahead of Docusaurus v4 (#1140) (#1502)
  • fix(theme): make i18n strings extractable by write-translations (#1499)
  • fix(plugin): render OpenAPI 3.1 type unions in schema names (#950) (#1475)
  • fix(theme): prefill Send API Request from example fields (#544, #1079) (#1476)
  • fix(plugin): restore menu__list-item--deprecated class on sidebar items (#1474)
  • fix(theme): align CodeSnippets outer tab with Docusaurus storage slot (#1464)
  • fix: render nested arrays as Type[][] in Schema tab (#1114) (#1465)
  • fix: render allOf schemas with additionalProperties:false on every member (#1119) (#1463)
  • fix(theme): support multiple x-codeSamples per language (#1204) (#1459)
  • fix(theme): preserve large integer precision in response panel (#1208) (#1458)
  • fix: dedupe properties when allOf override redefines nested array items (#1218) (#1457)
  • fix(theme): pre-populate parameter defaults in API explorer form (#1226) (#1448)
  • fix: skip vendor extensions at the path level (#891) (#1440)
  • fix(demo): use bracketed admonition title syntax for Docusaurus 3.10 (#1445)

📝 Documentation

  • docs: document themeConfig.api.schemaExpansion option
  • docs: correct categoryLinkSource supported values (#1447)
  • docs: harmonize top-level README with plugin README (#1446)

🤖 Dependencies

  • chore(deps): bump ws from 7.5.10 to 7.5.11 (#1514)
  • chore(deps): bump @​redocly/openapi-core from 2.32.2 to 2.33.0 (#1515)
  • chore(deps): bump react-hook-form from 7.75.0 to 7.79.0 (#1517)
  • chore(deps): bump the react group across 1 directory with 2 updates (#1503)
  • chore(deps): bump sass from 1.99.0 to 1.101.0 (#1504)
  • chore(deps): bump @​redocly/openapi-core from 2.31.5 to 2.32.2 (#1505)
  • chore(deps): bump http-proxy-middleware from 2.0.9 to 2.0.10 (#1511)
  • chore(deps): bump webpack-dev-server from 5.2.4 to 5.2.5 (#1512)
  • chore(deps): bump github/codeql-action from 4.36.1 to 4.36.2 (#1506)
  • chore(deps): bump launch-editor from 2.12.0 to 2.14.1 (#1510)
  • chore(deps): bump @​redocly/openapi-core from 2.30.6 to 2.31.5 (#1497)
  • chore(deps): bump github/codeql-action from 4.35.5 to 4.36.1 (#1501)
  • chore(deps): bump @​reduxjs/toolkit from 2.11.2 to 2.12.0 (#1498)
  • chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#1500)
  • chore(deps): bump tmp from 0.2.5 to 0.2.7 (#1490)
  • chore(deps): bump github/codeql-action from 4.35.4 to 4.35.5 (#1489)

... (truncated)

Changelog

Sourced from docusaurus-theme-openapi-docs's changelog.

5.1.0 (2026-06-24)

Minor release adding configurable schema expansion depth, numerous schema rendering fixes, improved i18n support, Docusaurus v4 readiness work, and a batch of dependency updates. Also fixes the version script to ensure create-docusaurus-openapi-docs is always bumped in lockstep with the plugin and theme.

🚀 New Feature

  • feat(theme): configurable schema expansion level (#1222) (#1449)

🐛 Bug Fix

  • fix(theme): vendor theme-common/internal usages ahead of Docusaurus v4 (#1140) (#1502)
  • fix(theme): make i18n strings extractable by write-translations (#1499)
  • fix(plugin): render OpenAPI 3.1 type unions in schema names (#950) (#1475)
  • fix(theme): prefill Send API Request from example fields (#544, #1079) (#1476)
  • fix(plugin): restore menu__list-item--deprecated class on sidebar items (#1474)
  • fix(theme): align CodeSnippets outer tab with Docusaurus storage slot (#1464)
  • fix: render nested arrays as Type[][] in Schema tab (#1114) (#1465)
  • fix: render allOf schemas with additionalProperties:false on every member (#1119) (#1463)
  • fix(theme): support multiple x-codeSamples per language (#1204) (#1459)
  • fix(theme): preserve large integer precision in response panel (#1208) (#1458)
  • fix: dedupe properties when allOf override redefines nested array items (#1218) (#1457)
  • fix(theme): pre-populate parameter defaults in API explorer form (#1226) (#1448)
  • fix: skip vendor extensions at the path level (#891) (#1440)
  • fix(demo): use bracketed admonition title syntax for Docusaurus 3.10 (#1445)

📝 Documentation

  • docs: document themeConfig.api.schemaExpansion option
  • docs: correct categoryLinkSource supported values (#1447)
  • docs: harmonize top-level README with plugin README (#1446)

🤖 Dependencies

  • chore(deps): bump ws from 7.5.10 to 7.5.11 (#1514)
  • chore(deps): bump @​redocly/openapi-core from 2.32.2 to 2.33.0 (#1515)
  • chore(deps): bump react-hook-form from 7.75.0 to 7.79.0 (#1517)
  • chore(deps): bump the react group across 1 directory with 2 updates (#1503)
  • chore(deps): bump sass from 1.99.0 to 1.101.0 (#1504)
  • chore(deps): bump @​redocly/openapi-core from 2.31.5 to 2.32.2 (#1505)
  • chore(deps): bump http-proxy-middleware from 2.0.9 to 2.0.10 (#1511)
  • chore(deps): bump webpack-dev-server from 5.2.4 to 5.2.5 (#1512)
  • chore(deps): bump github/codeql-action from 4.36.1 to 4.36.2 (#1506)
  • chore(deps): bump launch-editor from 2.12.0 to 2.14.1 (#1510)
  • chore(deps): bump @​redocly/openapi-core from 2.30.6 to 2.31.5 (#1497)
  • chore(deps): bump github/codeql-action from 4.35.5 to 4.36.1 (#1501)
  • chore(deps): bump @​reduxjs/toolkit from 2.11.2 to 2.12.0 (#1498)
  • chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#1500)
  • chore(deps): bump tmp from 0.2.5 to 0.2.7 (#1490)
  • chore(deps): bump github/codeql-action from 4.35.4 to 4.35.5 (#1489)
  • chore(deps): bump sass-loader from 16.0.7 to 16.0.8 (#1486)

... (truncated)

Commits
  • 977ec41 Prepare release v5.1.0 (#1522)
  • 21de028 fix(theme): vendor theme-common/internal usages ahead of Docusaurus v4 (#1140...
  • b33113d chore(deps-dev): bump concurrently from 9.2.1 to 10.0.3 (#1508)
  • 1f75440 fix(theme): make i18n strings extractable by write-translations (#1499)
  • 5ff1940 fix(plugin): render OpenAPI 3.1 type unions in schema names (#950) (#1475)
  • e590674 fix(theme): prefill Send API Request from example fields (#544, #1079) (#1476)
  • 963f846 fix(theme): align CodeSnippets outer tab with Docusaurus storage slot (#1464)
  • ff7275b fix: render nested arrays as Type[][] in Schema tab (#1114) (#1465)
  • a0be52b fix: render allOf schemas with additionalProperties:false on every member (#1...
  • d315daa fix(theme): support multiple x-codeSamples per language (#1204) (#1459)
  • Additional commits viewable in compare view

Updates fs-extra from 11.3.5 to 11.3.6

Changelog

Sourced from fs-extra's changelog.

11.3.6 / 2026-06-29

  • Fix handling of symlinked destination ancestors in copy/move methods (#1071, #1073)
  • Docs typo fixed (#1074)
Commits

Updates eslint from 10.5.0 to 10.6.0

Release notes

Sourced from eslint's releases.

v10.6.0

Features

  • b1f9106 feat: detect Symbol() and BigInt() in no-constant-binary-expression (#20981) (Taejin Kim)
  • f291007 feat: add checkRelationalComparisons to no-constant-binary-expression (#20948) (sethamus)

Bug Fixes

  • 6b05784 fix: prefer-exponentiation-operator invalid autofix at statement start (#20997) (Milos Djermanovic)
  • bb9eb2a fix: account for shadowed Boolean in no-extra-boolean-cast (#21013) (den$)
  • 8fd8741 fix: don't report shadowed undefined in radix rule (#21011) (Pixel)
  • 5784980 fix: don't report shadowed undefined in no-throw-literal (#21010) (Pixel)
  • 9cd1e6d fix: suppress invalid class suggestion in no-promise-executor-return (#21008) (Pixel)
  • d4eb2dc fix: don't report shadowed undefined in prefer-promise-reject-errors (#21006) (Pixel)
  • 2360464 fix: prefer-promise-reject-errors false positives for shadowed Promise (#21003) (den$)
  • 63d52d2 fix: restore max-classes-per-file report range (#21002) (Pixel)
  • 7feaff0 fix: callback detection logic for IIFEs in max-nested-callbacks (#20979) (fnx)
  • 399a2ec fix: don't report inner non-callbacks in max-nested-callbacks (#20995) (Milos Djermanovic)

Documentation

  • a83683d docs: Update README (GitHub Actions Bot)
  • f5449f9 docs: document userland patterns for global assertionOptions in RuleT… (#20986) (playgirl)
  • bea49f7 docs: Update README (GitHub Actions Bot)
  • e5f70f9 docs: update code-path diagrams (#20984) (Tanuj Kanti)
  • 8890c2d docs: add TypeScript config guidance for MCP server (#20796) (Pierluigi Lenoci)
  • 3eb3d9b docs: Update README (GitHub Actions Bot)
  • c5bb59c docs: Update README (GitHub Actions Bot)
  • eb3c97c docs: fix grammar in prefer-const rule description (#20983) (lumir)

Chores

  • 6a42034 ci: run ecosystem tests on main branch (#20891) (sethamus)
  • 3dbacdb ci: bump actions/checkout from 6 to 7 (#21014) (dependabot[bot])
  • c3abfca chore: correct JSDoc param types in html formatter (#21018) (Minseon Kim)
  • a832320 ci: split ecosystem tests into separate jobs (#21001) (xbinaryx)
  • 27166e7 chore: update ecosystem plugins (#21005) (ESLint Bot)
  • 865d76e ci: bump pnpm/action-setup from 6.0.8 to 6.0.9 (#20989) (dependabot[bot])
  • 27a88c9 chore: update dependency markdown-it to v14 in root (#20994) (Milos Djermanovic)
  • 970cea6 chore: update dependency markdown-it to v14 (#20993) (Milos Djermanovic)
  • b482120 chore: update dependency prettier to v3.8.4 (#20990) (renovate[bot])
  • 6993fb3 chore: update ecosystem plugins (#20985) (ESLint Bot)
Commits
  • 5d12a04 10.6.0
  • f7ca54b Build: changelog update for 10.6.0
  • 6a42034 ci: run ecosystem tests on main branch (#20891)
  • b1f9106 feat: detect Symbol() and BigInt() in no-constant-binary-expression (#20981)
  • 3dbacdb ci: bump actions/checkout from 6 to 7 (#21014)
  • c3abfca chore: correct JSDoc param types in html formatter (#21018)
  • a83683d docs: Update README
  • a832320 ci: split ecosystem tests into separate jobs (#21001)
  • 6b05784 fix: prefer-exponentiation-operator invalid autofix at statement start (#20997)
  • bb9eb2a fix: account for shadowed Boolean in no-extra-boolean-cast (#21013)
  • Additional commits viewable in compare view

Updates prettier from 3.8.4 to 3.9.4

Release notes

Sourced from prettier's releases.

3.9.4

  • Angular: Format @content(name) -> @content (name) to align with other block syntax (#19499 by @​fisker)

🔗 Changelog

3.9.3

🔗 Changelog

3.9.1

🔗 Changelog

3.9.0

diff

🔗 Prettier 3.9: Major parser upgrades and Formatting improvements

3.8.5

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.9.4

diff

Angular: Format @content(name) -> @content (name) to align with other block syntax (#19499 by @​fisker)

<!-- Input -->
<FancyButton [label]="title">
  @content (icon) {
    <span>Icon!</span>
  }
  @content (description) {
    <span>Description text</span>
  }
  <span>Other children</span>
</FancyButton>
<!-- Prettier 3.9.3 -->
<FancyButton [label]="title">
@​content(icon) {
<span>Icon!</span>
}
@​content(description) {
<span>Description text</span>
}
<span>Other children</span>
</FancyButton>
<!-- Prettier 3.9.4 -->
<FancyButton [label]="title">
@​content (icon) {
<span>Icon!</span>
}
@​content (description) {
<span>Description text</span>
}
<span>Other children</span>
</FancyButton>

3.9.3

diff

Markdown: Fix unexpected removal of characters in liquid syntax (#19489 by @​seiyab)

</tr></table> 

... (truncated)

Commits
  • b693cb2 Release 3.9.4
  • 2e92ac0 Angular: Format @content(name) -> @content (name) to align with other blo...
  • abed2c2 Bump Prettier dependency to 3.9.3
  • 6cfbc00 Clean changelog_unreleased
  • 3732e1d Release 3.9.3
  • a74a7b0 Allow decorators to be used with declare on class fields (#19492)
  • bd9e11a Correct text identification in liquid syntax (#19489)
  • 269eee3 Bump Prettier dependency to 3.9.1
  • ec7ccd1 Clean changelog_unreleased
  • c47654c Release 3.9.1
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minor-and-patch group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [docusaurus-plugin-openapi-docs](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/tree/HEAD/packages/docusaurus-plugin-openapi-docs) | `5.0.2` | `5.1.0` |
| [docusaurus-theme-openapi-docs](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/tree/HEAD/packages/docusaurus-theme-openapi-docs) | `5.0.2` | `5.1.0` |
| [fs-extra](https://github.com/jprichardson/node-fs-extra) | `11.3.5` | `11.3.6` |
| [eslint](https://github.com/eslint/eslint) | `10.5.0` | `10.6.0` |
| [prettier](https://github.com/prettier/prettier) | `3.8.4` | `3.9.4` |


Updates `docusaurus-plugin-openapi-docs` from 5.0.2 to 5.1.0
- [Release notes](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/releases)
- [Changelog](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/commits/v5.1.0/packages/docusaurus-plugin-openapi-docs)

Updates `docusaurus-theme-openapi-docs` from 5.0.2 to 5.1.0
- [Release notes](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/releases)
- [Changelog](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/commits/v5.1.0/packages/docusaurus-theme-openapi-docs)

Updates `fs-extra` from 11.3.5 to 11.3.6
- [Changelog](https://github.com/jprichardson/node-fs-extra/blob/master/CHANGELOG.md)
- [Commits](jprichardson/node-fs-extra@11.3.5...11.3.6)

Updates `eslint` from 10.5.0 to 10.6.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](eslint/eslint@v10.5.0...v10.6.0)

Updates `prettier` from 3.8.4 to 3.9.4
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.8.4...3.9.4)

---
updated-dependencies:
- dependency-name: docusaurus-plugin-openapi-docs
  dependency-version: 5.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: docusaurus-theme-openapi-docs
  dependency-version: 5.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: fs-extra
  dependency-version: 11.3.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: eslint
  dependency-version: 10.6.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: prettier
  dependency-version: 3.9.4
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 5, 2026
Copilot AI review requested due to automatic review settings July 5, 2026 02:09
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jul 5, 2026

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot can't review bot-authored pull requests automatically. A user with Copilot access can request a review manually.

@socket-security

socket-security Bot commented Jul 5, 2026

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Addeddocusaurus-theme-openapi-docs@​5.1.0981007696100
Addedfs-extra@​11.3.610010010088100
Addeddocusaurus-plugin-openapi-docs@​5.1.08810010096100
Addedeslint@​10.6.09810010095100
Addedprettier@​3.9.4991009799100

View full report

@socket-security

socket-security Bot commented Jul 5, 2026

Copy link
Copy Markdown

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn High
Obfuscated code: npm docusaurus-plugin-openapi-docs is 90.0% likely obfuscated

Confidence: 0.90

Location: Package overview

From: package.jsonnpm/docusaurus-plugin-openapi-docs@5.1.0

ℹ Read more on: This package | This alert | What is obfuscated code?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/docusaurus-plugin-openapi-docs@5.1.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Warn High
Obfuscated code: npm react-aria is 90.0% likely obfuscated

Confidence: 0.90

Location: Package overview

From: pnpm-lock.yamlnpm/@stellar/open-rpc-docs-react@0.2.1npm/react-aria@3.50.0

ℹ Read more on: This package | This alert | What is obfuscated code?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/react-aria@3.50.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Warn High
Obfuscated code: npm react-stately is 90.0% likely obfuscated

Confidence: 0.90

Location: Package overview

From: pnpm-lock.yamlnpm/@stellar/open-rpc-docs-react@0.2.1npm/react-stately@3.48.0

ℹ Read more on: This package | This alert | What is obfuscated code?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/react-stately@3.48.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Warn High
Obfuscated code: npm yargs is 90.0% likely obfuscated

Confidence: 0.90

Location: Package overview

From: pnpm-lock.yamlnpm/docusaurus-plugin-openapi-docs@5.1.0npm/yargs@17.7.3

ℹ Read more on: This package | This alert | What is obfuscated code?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/yargs@17.7.3. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

@ElliotFriend ElliotFriend merged commit 1b39958 into main Jul 6, 2026
8 checks passed
@ElliotFriend ElliotFriend deleted the dependabot/npm_and_yarn/minor-and-patch-69d18217ae branch July 6, 2026 21:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants