Skip to content

chore(deps-dev): bump knip from 6.10.0 to 6.14.2#265

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/knip-6.14.2
Open

chore(deps-dev): bump knip from 6.10.0 to 6.14.2#265
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/knip-6.14.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 29, 2026

Copy link
Copy Markdown
Contributor

Bumps knip from 6.10.0 to 6.14.2.

Release notes

Sourced from knip's releases.

Release 6.14.2

  • Fix vscode-knip build: pin native oxc bindings to bundled JS version (1b45a4103312c9c059560ae2e1eac25d86b4e2ac)
  • Release vscode-knip@2.1.5 (328892eb04e65b4702e1ef2303db3156b8f2e1a3)
  • Fix Astro plugin to support both possible middleware entry points (#1749) (33e0cc1a530a8cf5b6b05c8b3a3ca55f8fce8a75) - thanks @​schmalz-dmi!
  • Fix LICENSE link (#1760) (829620f9077ddea086a610c279c7c1250dd66e11) - thanks @​vortispy!
  • Fix GraphQL Codegen script config dependencies (#1756) (e841c6355e7eff240e74010bfd2be8bbb22ff2b6) - thanks @​jakeleventhal!
  • Set pnpm config via env vars, disable verify-deps in ecosystem tests (53c12248cc3e79fd79f3efde691d463fc795c40f)
  • Update slonik ecosystem snapshot (f18410b34c8554364a9f003660bebae5e826de57)
  • Fix Serverless TypeScript plugin dependencies (#1757) (ebde7f8f3e3004db7f51fb5d60a0bdc2452116ef) - thanks @​jakeleventhal!
  • Fix extended tsconfig type dependency attribution (#1758) (f600b09e562317a37844ed8cdf1b9b46e06c9405) - thanks @​jakeleventhal!
  • Fix Bun binary dependency tracking (#1759) (1b289239f35ff2912195b7e39a96c667c54c1fc5) - thanks @​jakeleventhal!
  • Detect Babel plugins/presets in Vite plugin options (resolve #1761) (2753d6910743a12a207fca81cb8325c00803963a)

Release 6.14.1

  • Detect dynamic imports in Svelte compiler (#1747) (e1c1b1705f96ed7d6ac537a7969cbd07d238246a) - thanks @​jinhyuk9714!
  • Detect dynamic import attributes; share import matcher with Astro-MDX (9dae64166bbc45be1abeb8d741127d109d48d351)
  • Work the docs (close #1746) (919cba2f11d1979b854c7abaaca8992ee8b08e23)

Release 6.14.0

  • Resolve imports satisfied via transitive peerDeps (d654ec74d)
  • Don't flag undeclared sibling workspace imports as unlisted (#1742) (e7122a1ae)
  • Update github-actions reporter snapshots (2308b5a42)
  • Cache syncGlob() results like defaultGlob() does (6c34287a5)
  • Trim redundant statSync calls in FileEntryCache (eee3b899b)
  • Cache parsed .gitignore patterns across --cache runs (7ffdc2ff3)
  • Tighten cache module callsites (64e507265)
  • Extract shared disk-cache helper used by glob and gitignore caches (0987421d9)
  • Simplify CacheConsultant: replace trampoline with default arrow methods (bebe750d3)
  • Pin pnpm minimumReleaseAge and trustPolicy (77efb32e5)
  • Eliminate rescanFrontier polling in walkAndAnalyze (38d91b6e3)
  • Reduce findWorkspaceByFilePath per-call overhead (91494378f)
  • Memoize DependencyDeputy.getDependencies (a661a2142)
  • Tighten module-graph map helpers (drop double-lookup + optional chains) (c11d62fb0)
  • Add --duration flag for zero-overhead duration measurement (d4b59d89b)
  • Cover analysis pipeline with --performance timerify (694dbf44d)
  • Align --help text (6f12997b1)
  • Add cli arg shorthands: -p, -s, -w, -D, -f, -F, -u (f21a58710)
  • Format (8db5346e4)
  • This one's okay (662ceaf46)

Release 6.13.1

  • Add jest.config.{cts,mts} (#1743) (44738d678c9992799f5fe4909a01cc5ddd702aa2) - thanks @​joshkel!
  • Update ecosystem tests (74420a614dfa15b81906266279c31ae0bf4e21bd)
  • Fix export * as re-exported namespace case (5923af48fc33aa56c2f42f882aa185e66626453d)
  • Add .mts and .cts config files to some plugins (69d1e83123e56c2c441f320c81bae099ba1eb014)
  • Docusaurus: ignore @generated/*, handle local plugin paths (ce5f7672fced084bfb017410650b78d36133e1b0)
  • Nx: expand {projectRoot} / {workspaceRoot} token variables (871531228b0cb67ff07fdb9d77316c4340ccaf33)

Release 6.13.0

  • Add mercurial (hg) to command constants (#1737) (abb08b0958e08a12684deacf0ab62dc7ada38074) - thanks @​unrevised6419!

... (truncated)

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps [knip](https://github.com/webpro-nl/knip/tree/HEAD/packages/knip) from 6.10.0 to 6.14.2.
- [Release notes](https://github.com/webpro-nl/knip/releases)
- [Commits](https://github.com/webpro-nl/knip/commits/knip@6.14.2/packages/knip)

---
updated-dependencies:
- dependency-name: knip
  dependency-version: 6.14.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 29, 2026
@socket-security

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Addedknip@​6.14.2991009596100

View full report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants