Skip to content

build(deps): bump the npm-security group across 4 directories with 2 updates#699

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/tools/mkrootfs/npm-security-4d0addc45a
Open

build(deps): bump the npm-security group across 4 directories with 2 updates#699
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/tools/mkrootfs/npm-security-4d0addc45a

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps): bump the npm-security group across 4 directories with 2 …
698f31d 
…updates

Bumps the npm-security group with 2 updates in the /sdk directory: [esbuild](https://github.com/evanw/esbuild) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest).
Bumps the npm-security group with 1 update in the /packages/registry/wordpress/demo directory: [esbuild](https://github.com/evanw/esbuild).
Bumps the npm-security group with 1 update in the /packages/registry/openssl directory: [esbuild](https://github.com/evanw/esbuild).
Bumps the npm-security group with 1 update in the /host directory: [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest).


Removes `esbuild`

Updates `vitest` from 3.2.4 to 4.1.9
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/HEAD/packages/vitest)

Updates `vitest` from 3.2.4 to 4.1.9
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/HEAD/packages/vitest)

Updates `esbuild` from 0.27.4 to 0.28.1
- [Release notes](https://github.com/evanw/esbuild/releases)
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md)
- [Commits](https://github.com/evanw/esbuild/commits)

Removes `esbuild`

Updates `vitest` from 3.2.4 to 4.1.9
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/HEAD/packages/vitest)

Updates `vitest` from 3.2.4 to 4.1.9
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/HEAD/packages/vitest)

---
updated-dependencies:
- dependency-name: esbuild
  dependency-version:
  dependency-type: indirect
  dependency-group: npm-security
- dependency-name: vitest
  dependency-version: 4.1.9
  dependency-type: direct:development
  dependency-group: npm-security
- dependency-name: vitest
  dependency-version: 4.1.9
  dependency-type: direct:development
  dependency-group: npm-security
- dependency-name: esbuild
  dependency-version: 0.28.1
  dependency-type: indirect
  dependency-group: npm-security
- dependency-name: esbuild
  dependency-version:
  dependency-type: indirect
  dependency-group: npm-security
- dependency-name: vitest
  dependency-version: 4.1.9
  dependency-type: direct:development
  dependency-group: npm-security
- dependency-name: vitest
  dependency-version: 4.1.9
  dependency-type: direct:development
  dependency-group: npm-security
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 15, 2026
This was referenced Jun 15, 2026
Closed
Closed
@github-actions

github-actions Bot commented Jun 15, 2026

Copy link
Copy Markdown

Phase B-1 matrix build status — pr-699-staging

ABI v15. 66 built, 0 failed, 66 total.

Package Arch Status Sha
libcurl wasm32 built 92bb0d0d
libcxx wasm32 built 3fd5f19e
libcxx wasm64 built b8b5be5f
libpng wasm32 built 7b1731a5
libxml2 wasm32 built 0d2aee8a
libxml2 wasm64 built e834179c
openssl wasm32 built 35f7465c
openssl wasm64 built 8bd6ca57
sqlite wasm32 built dab3bb60
sqlite wasm64 built 3d3085ab
zlib wasm32 built 8a7b7ccc
zlib wasm64 built 8738d9d5
bc wasm32 built 902c96ab
bzip2 wasm32 built d4958087
coreutils wasm32 built f3c762f0
curl wasm32 built 6c50b786
dash wasm32 built fb523760
diffutils wasm32 built 8d9ee015
dinit wasm32 built 788b5cd3
fbdoom wasm32 built 22858d0a
file wasm32 built a671428e
findutils wasm32 built 9eb80b11
gawk wasm32 built 7b5fc072
git wasm32 built 01585f25
grep wasm32 built aea1b01a
gzip wasm32 built 7e4605f2
kandelo-sdk wasm32 built b0c283c5
kernel wasm32 built c5bba71d
less wasm32 built 91af58fb
lsof wasm32 built 5a09c70d
m4 wasm32 built 3347ab09
make wasm32 built 705d3bb5
mariadb wasm32 built de7929f8
mariadb wasm64 built c8a79172
msmtpd wasm32 built 19db2c9b
nano wasm32 built fdccd990
ncurses wasm32 built 29d0a684
netcat wasm32 built e2779948
nginx wasm32 built dd96fcc0
php wasm32 built c56525dd
posix-utils-lite wasm32 built 4167d032
sed wasm32 built 9220eb1a
spidermonkey wasm32 built 191d0151
tar wasm32 built 2555daae
tcl wasm32 built b052e609
unzip wasm32 built 18ceb8dd
userspace wasm32 built 1dcf87c9
vim wasm32 built 84da8455
wget wasm32 built b9491b6b
xz wasm32 built ae310f94
zip wasm32 built 7c2d209b
zstd wasm32 built 06dba57d
bash wasm32 built b2cf0ba9
mariadb-test wasm32 built 2791b2c4
mariadb-vfs wasm32 built ec1404a8
mariadb-vfs wasm64 built 881acc7c
nethack wasm32 built 41db2960
node wasm32 built 94a4b0bc
spidermonkey-node wasm32 built cdca90e9
vim-browser-bundle wasm32 built cd89d0ac
nethack-browser-bundle wasm32 built 20e01fdf
rootfs wasm32 built ea8de828
shell wasm32 built 80e258fb
lamp wasm32 built fd23002e
node-vfs wasm32 built e06bdd0c
wordpress wasm32 built 74d2b127

Auto-generated; replaced on each push. Raw data in the publish-status workflow artifact.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants