Skip to content

fix(deps-dev): bump semantic-release from 25.0.5 to 25.0.7#203

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/semantic-release-25.0.7
Closed

fix(deps-dev): bump semantic-release from 25.0.5 to 25.0.7#203
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/semantic-release-25.0.7

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps semantic-release from 25.0.5 to 25.0.7.

Release notes

Sourced from semantic-release's releases.

v25.0.7

25.0.7 (2026-07-13)

Bug Fixes

  • argument Injection via repositoryUrl in package.json (#4245) (c46dbda)

v25.0.6

25.0.6 (2026-07-10)

Bug Fixes

  • ensure encoded secrets get masked (8e28dd3)
Commits
  • c46dbda fix: argument Injection via repositoryUrl in package.json (#4245)
  • 7abb562 chore(deps): update npm to v12 (#4244)
  • 8b15865 chore(deps): update dependency @​types/node to v24.13.3 (#4243)
  • 8e28dd3 fix: ensure encoded secrets get masked
  • f293647 Merge commit from fork
  • a973d20 ci(action): update github/codeql-action action to v4.37.0 (#4241)
  • c62136f chore(deps): update dependency mockserver-client to v7.4.0 (#4240)
  • 9be3e6c chore(deps): lock file maintenance (#4239)
  • 3259ebb chore(deps): update dependency got to v15.1.0 (#4238)
  • 1c17eb5 chore(deps): update dependency mockserver-client to v7.3.0 (#4237)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [semantic-release](https://github.com/semantic-release/semantic-release) from 25.0.5 to 25.0.7.
- [Release notes](https://github.com/semantic-release/semantic-release/releases)
- [Commits](semantic-release/semantic-release@v25.0.5...v25.0.7)

---
updated-dependencies:
- dependency-name: semantic-release
  dependency-version: 25.0.7
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies javascript Pull requests that update Javascript code labels Jul 13, 2026
@github-actions github-actions Bot enabled auto-merge July 13, 2026 12:53

@github-actions github-actions Bot left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm approving this pull request because it includes a patch or minor update

@dependabot @github

dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #205.

@dependabot dependabot Bot closed this Jul 13, 2026
auto-merge was automatically disabled July 13, 2026 14:19

Pull request was closed

@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/semantic-release-25.0.7 branch July 13, 2026 14:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants