Skip to content

chore(deps): pin dependencies #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
renovate-sh-app wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): pin dependencies #3

renovate-sh-app wants to merge 1 commit into from

Conversation

@renovate-sh-app
Copy link

@renovate-sh-app renovate-sh-app bot commented Oct 23, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change
@babel/core (source) devDependencies pin ^7.26.0 -> 7.26.0
@grafana/eslint-config devDependencies pin ^8.0.0 -> 8.0.0
@grafana/plugin-e2e (source) devDependencies pin ^1.14.1 -> 1.14.1
@grafana/tsconfig (source) devDependencies pin ^2.0.0 -> 2.0.0
@playwright/test (source) devDependencies pin ^1.49.1 -> 1.49.1
@swc/core (source) devDependencies pin ^1.10.1 -> 1.10.1
@swc/helpers (source) devDependencies pin ^0.5.15 -> 0.5.15
@swc/jest (source) devDependencies pin ^0.2.37 -> 0.2.37
@testing-library/jest-dom devDependencies pin ^6.6.3 -> 6.6.3
@testing-library/react devDependencies pin ^16.1.0 -> 16.1.0
@types/express (source) devDependencies pin ^4.17.21 -> 4.17.21
@types/jest (source) devDependencies pin ^29.5.14 -> 29.5.14
@types/lodash (source) devDependencies pin ^4.17.13 -> 4.17.13
@types/node (source) devDependencies pin ^22.10.2 -> 22.10.2
@​volkovlabs/eslint-config devDependencies pin ^1.3.0 -> 1.3.0
actions/checkout action pinDigest -> 34e1148
actions/checkout action pinDigest -> f43a0e5
actions/setup-node action pinDigest -> 49933ea
actions/upload-artifact action pinDigest -> ea165f8
codecov/codecov-action action pinDigest -> b9fd7d1
copy-webpack-plugin devDependencies pin ^12.0.2 -> 12.0.2
css-loader devDependencies pin ^7.1.2 -> 7.1.2
eslint-plugin-deprecation devDependencies pin ^3.0.0 -> 3.0.0
eslint-plugin-react devDependencies pin ^7.37.2 -> 7.37.2
eslint-webpack-plugin devDependencies pin ^4.2.0 -> 4.2.0
fork-ts-checker-webpack-plugin devDependencies pin ^9.0.2 -> 9.0.2
ghcr.io/volkovlabs/app pinDigest -> 7255f71
github/codeql-action action pinDigest -> b8d3b6e
grafana/grafana pinDigest -> 047c1c5
grafana/grafana pinDigest -> 23e0c51
jest (source) devDependencies pin ^29.7.0 -> 29.7.0
jest-environment-jsdom (source) devDependencies pin ^29.7.0 -> 29.7.0
mcr.microsoft.com/playwright final pinDigest -> 2286c68
node final pinDigest -> 7478f37
prettier (source) devDependencies pin ^3.4.2 -> 3.4.2
replace-in-file-webpack-plugin devDependencies pin ^1.0.6 -> 1.0.6
sass devDependencies pin ^1.83.0 -> 1.83.0
sass-loader devDependencies pin ^16.0.4 -> 16.0.4
softprops/action-gh-release action pinDigest -> de2c0eb
style-loader devDependencies pin ^4.0.0 -> 4.0.0
swc-loader devDependencies pin ^0.2.6 -> 0.2.6
ts-node (source) devDependencies pin ^10.9.2 -> 10.9.2
tsconfig-paths devDependencies pin ^4.2.0 -> 4.2.0
webpack devDependencies pin ^5.97.1 -> 5.97.1
webpack-cli (source) devDependencies pin ^6.0.1 -> 6.0.1
webpack-livereload-plugin devDependencies pin ^3.0.2 -> 3.0.2

Add the preset :preserveSemverRanges to your config if you don't want to pin your dependencies.

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

Need help?

You can ask for more help in the following Slack channel: #proj-renovate-self-hosted. In that channel you can also find ADR and FAQ docs in the Resources section.

@renovate-sh-app
Copy link
Author

renovate-sh-app bot commented Oct 23, 2025
edited
Loading

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json
npm warn Unknown env config "store". This will stop working in the next major version of npm.
npm error code ERESOLVE
npm error ERESOLVE could not resolve
npm error
npm error While resolving: [email protected]
npm error Found: @types/[email protected]
npm error node_modules/@types/react
npm error   @types/react@"*" from @types/[email protected]
npm error   node_modules/@types/hoist-non-react-statics
npm error     @types/hoist-non-react-statics@"^3.3.1" from [email protected]
npm error     node_modules/react-redux
npm error       react-redux@"^8.1.3" from @hello-pangea/[email protected]
npm error       node_modules/@hello-pangea/dnd
npm error         @hello-pangea/dnd@"16.6.0" from @grafana/[email protected]
npm error         node_modules/@grafana/ui
npm error   @types/react@"*" from @types/[email protected]
npm error   node_modules/@types/react-table
npm error     @types/react-table@"7.7.20" from @grafana/[email protected]
npm error     node_modules/@grafana/ui
npm error       @grafana/ui@"^11.4.0" from the root project
npm error       1 more (@grafana/runtime)
npm error   3 more (@types/react-transition-group, react-calendar, react-redux)
npm error
npm error Could not resolve dependency:
npm error dev @testing-library/react@"16.1.0" from the root project
npm error
npm error Conflicting peer dependency: @types/[email protected]
npm error node_modules/@types/react
npm error   peer @types/react@"^19.2.0" from @types/[email protected]
npm error   node_modules/@types/react-dom
npm error     peerOptional @types/react-dom@"^18.0.0 || ^19.0.0" from @testing-library/[email protected]
npm error     node_modules/@testing-library/react
npm error       dev @testing-library/react@"16.1.0" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /tmp/renovate/cache/others/npm/_logs/2025-12-08T18_27_16_735Z-eresolve-report.txt
npm error A complete log of this run can be found in: /tmp/renovate/cache/others/npm/_logs/2025-12-08T18_27_16_735Z-debug-0.log

@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 698a321 to d244ce5 Compare October 23, 2025 18:39
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from d244ce5 to d6c5e5f Compare October 23, 2025 21:37
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from d6c5e5f to 7e17345 Compare October 24, 2025 00:33
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 7e17345 to 4ecd737 Compare October 24, 2025 03:32
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 4ecd737 to f801ac2 Compare October 24, 2025 06:37
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from f801ac2 to 16191a5 Compare October 24, 2025 09:44
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 16191a5 to 78516af Compare October 24, 2025 12:45
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 78516af to 2fe0810 Compare October 24, 2025 15:45
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 2fe0810 to eed34c4 Compare October 24, 2025 18:41
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from eed34c4 to 30e70ed Compare October 27, 2025 06:44
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 30e70ed to 0ea29f4 Compare October 27, 2025 12:34
@github-actions

This comment has been minimized.

Sign in to view
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 0ea29f4 to d6108fb Compare October 28, 2025 09:42
@github-actions

This comment has been minimized.

Sign in to view
@github-actions
Copy link

github-actions bot commented Dec 5, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 4f51975 to 25a3543 Compare December 5, 2025 09:18
@github-actions
Copy link

github-actions bot commented Dec 5, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 25a3543 to 81a6299 Compare December 5, 2025 12:30
@github-actions
Copy link

github-actions bot commented Dec 5, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 81a6299 to d10970c Compare December 5, 2025 15:28
@github-actions
Copy link

github-actions bot commented Dec 5, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from d10970c to c9c9896 Compare December 5, 2025 18:29
@github-actions
Copy link

github-actions bot commented Dec 5, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from c9c9896 to 77d3a20 Compare December 5, 2025 21:28
@github-actions
Copy link

github-actions bot commented Dec 5, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 77d3a20 to 9c22132 Compare December 6, 2025 03:20
@github-actions
Copy link

github-actions bot commented Dec 6, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 9c22132 to 9ab8189 Compare December 6, 2025 09:26
@github-actions
Copy link

github-actions bot commented Dec 6, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 9ab8189 to dfbe6bc Compare December 6, 2025 12:28
@github-actions
Copy link

github-actions bot commented Dec 6, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from dfbe6bc to 90730c2 Compare December 6, 2025 15:26
@github-actions
Copy link

github-actions bot commented Dec 6, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 90730c2 to 305cda9 Compare December 8, 2025 03:24
@github-actions
Copy link

github-actions bot commented Dec 8, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 305cda9 to 98bc83a Compare December 8, 2025 09:24
@github-actions
Copy link

github-actions bot commented Dec 8, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 98bc83a to 2f04a1b Compare December 8, 2025 12:40
@github-actions
Copy link

github-actions bot commented Dec 8, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 2f04a1b to 40267d6 Compare December 8, 2025 15:29
@github-actions
Copy link

github-actions bot commented Dec 8, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

@renovate-sh-app
chore(deps): pin dependencies
d6aa849 
| datasource | package                        | from    | to      |
| ---------- | ------------------------------ | ------- | ------- |
| npm        | @babel/core                    | 7.26.0  | 7.26.0  |
| npm        | @grafana/eslint-config         | 8.0.0   | 8.0.0   |
| npm        | @grafana/plugin-e2e            | 1.14.1  | 1.14.1  |
| npm        | @grafana/tsconfig              | 2.0.0   | 2.0.0   |
| npm        | @playwright/test               | 1.49.1  | 1.49.1  |
| npm        | @swc/core                      | 1.10.1  | 1.10.1  |
| npm        | @swc/helpers                   | 0.5.15  | 0.5.15  |
| npm        | @swc/jest                      | 0.2.37  | 0.2.37  |
| npm        | @testing-library/jest-dom      | 6.6.3   | 6.6.3   |
| npm        | @testing-library/react         | 16.1.0  | 16.1.0  |
| npm        | @types/express                 | 4.17.21 | 4.17.21 |
| npm        | @types/jest                    | 29.5.14 | 29.5.14 |
| npm        | @types/lodash                  | 4.17.13 | 4.17.13 |
| npm        | @types/node                    | 22.10.2 | 22.10.2 |
| npm        | @volkovlabs/eslint-config      | 1.3.0   | 1.3.0   |
| npm        | copy-webpack-plugin            | 12.0.2  | 12.0.2  |
| npm        | css-loader                     | 7.1.2   | 7.1.2   |
| npm        | eslint-plugin-deprecation      | 3.0.0   | 3.0.0   |
| npm        | eslint-plugin-react            | 7.37.2  | 7.37.2  |
| npm        | eslint-webpack-plugin          | 4.2.0   | 4.2.0   |
| npm        | fork-ts-checker-webpack-plugin | 9.0.2   | 9.0.2   |
| npm        | jest                           | 29.7.0  | 29.7.0  |
| npm        | jest-environment-jsdom         | 29.7.0  | 29.7.0  |
| npm        | prettier                       | 3.4.2   | 3.4.2   |
| npm        | replace-in-file-webpack-plugin | 1.0.6   | 1.0.6   |
| npm        | sass                           | 1.83.0  | 1.83.0  |
| npm        | sass-loader                    | 16.0.4  | 16.0.4  |
| npm        | style-loader                   | 4.0.0   | 4.0.0   |
| npm        | swc-loader                     | 0.2.6   | 0.2.6   |
| npm        | ts-node                        | 10.9.2  | 10.9.2  |
| npm        | tsconfig-paths                 | 4.2.0   | 4.2.0   |
| npm        | webpack                        | 5.97.1  | 5.97.1  |
| npm        | webpack-cli                    | 6.0.1   | 6.0.1   |
| npm        | webpack-livereload-plugin      | 3.0.2   | 3.0.2   |


Signed-off-by: renovate-sh-app[bot] <219655108+renovate-sh-app[bot]@users.noreply.github.com>
@renovate-sh-app renovate-sh-app bot force-pushed the renovate/pin-dependencies branch from 40267d6 to d6aa849 Compare December 8, 2025 18:27
@github-actions
Copy link

github-actions bot commented Dec 8, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/release.yml:17:9
   |
 3 | / on:
 4 | |   push:
 5 | |     tags:
 6 | |       - 'v*.*.*' # Run workflow on version tags, e.g. v1.0.0.
   | |_____________________________________________________________- generally used when publishing artifacts generated at runtime
...
17 | /         with:
18 | |           node-version: '20'
19 | |           cache: 'npm'
   | |______________________^ opt-in for caching here
   |
   = note: audit confidence → Low

51 findings (26 ignored, 24 suppressed): 0 informational, 0 low, 0 medium, 1 high

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

docker github-actions

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants