Skip to content

fix(deps): Update dependency snyk-nodejs-lockfile-parser to v2.10.0#2766

Open
renovate-sh-app[bot] wants to merge 1 commit into
mainfrom
renovate/snyk-nodejs-lockfile-parser-2.x
Open

fix(deps): Update dependency snyk-nodejs-lockfile-parser to v2.10.0#2766
renovate-sh-app[bot] wants to merge 1 commit into
mainfrom
renovate/snyk-nodejs-lockfile-parser-2.x

Conversation

@renovate-sh-app

@renovate-sh-app renovate-sh-app Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
snyk-nodejs-lockfile-parser dependencies minor 2.4.42.10.0

Warning

Some dependencies could not be looked up. Check the warning logs for more information.


Release Notes

snyk/nodejs-lockfile-parser (snyk-nodejs-lockfile-parser)

v2.10.0

Compare Source

Features
  • emit component-metadata labels for yarn v1 lockfiles [CMPA-611] (a1062a9)

v2.9.1

Compare Source

Bug Fixes
  • [CMPA-552] set bugs url and remove bin dir from files (b20023d)

v2.9.0

Compare Source

Bug Fixes
  • harden component-metadata distribution:url labels [CMPA-603] (cd13deb)
Features
  • emit component-metadata labels for npm lockfile v1 (legacy depTree) (cad891c)
  • report npm package hashes and distribution URLs as node labels (2571064)

v2.8.1

Compare Source

Bug Fixes
  • yarn-berry: key workspace prune by resolved name for npm aliases (8d05f54)
  • yarn-berry: prune workspace devDependencies from prod graph (08a9545)

v2.8.0

Compare Source

Bug Fixes
  • node 20 tests (fa8e2d3)
  • release context (cedbc96)
  • surface underlying npm lockfile JSON parse errors [OSM-3753] (663f2e5)
  • switch to OIDC auth publishing (a07b91c)
Features

v2.7.1

Compare Source

Bug Fixes
  • use actual package name from lockfile for aliased packages (9d8607d)

v2.7.0

Compare Source

Bug Fixes
  • [OSM-3591] handle patches applied as resolutions (cd4a5bc)
  • [OSM-3624] Support pnpm v6 lockfile for workspaces (b61e8dd)
  • bump tar to resolve vulns (6b4a56a)
Features
  • [OSM-3591] added support for versioned scoped resolutions (2c7574e)

v2.6.1

Compare Source

Bug Fixes
  • patch protocol URL decoding and npm alias package creation (3b99e1e)

v2.6.0

Compare Source

Features

v2.5.1

Compare Source

Bug Fixes
  • [OSM-3532] yarn scoped alias fix (025898c)

v2.5.0

Compare Source

Features
  • add npm scope [CSENG-94] (15bf216)

v2.4.5

Compare Source

Bug Fixes
  • yarn protocol in versions stripped (29a78db)

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

Need help?

You can ask for more help in the following Slack channel: #proj-renovate-self-hosted. In that channel you can also find ADR and FAQ docs in the Resources section.

@renovate-sh-app renovate-sh-app Bot added dependencies Update one or more dependencies version javascript Pull requests that update Javascript code labels Jul 9, 2026
@renovate-sh-app
renovate-sh-app Bot requested review from a team as code owners July 9, 2026 14:51
@renovate-sh-app
renovate-sh-app Bot removed the request for review from a team July 9, 2026 14:51
@renovate-sh-app
renovate-sh-app Bot requested review from ashharrison90 and jackw July 9, 2026 14:51
@renovate-sh-app
renovate-sh-app Bot requested review from academo, leventebalogh and oshirohugo and removed request for a team July 9, 2026 14:51
@grafana-catalog-project-bot grafana-catalog-project-bot Bot moved this from 📬 Triage to 🔬 In review in Grafana Catalog Team Jul 9, 2026
@renovate-sh-app
renovate-sh-app Bot force-pushed the renovate/snyk-nodejs-lockfile-parser-2.x branch from d24ec95 to 9770ae9 Compare July 12, 2026 20:15
@renovate-sh-app renovate-sh-app Bot changed the title fix(deps): Update dependency snyk-nodejs-lockfile-parser to v2.9.1 fix(deps): Update dependency snyk-nodejs-lockfile-parser to v2.10.0 Jul 12, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Update one or more dependencies version javascript Pull requests that update Javascript code

Projects

Status: 🔬 In review

Development

Successfully merging this pull request may close these issues.

0 participants