This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.<br>[View this repository on the Mend.io Web Portal](https://developer.mend.io/github/nullvariant/nullvariant-vscode-extensions). ## Awaiting Schedule The following updates are awaiting their schedule. To get an update now, click on a checkbox below. - [ ] <!-- unschedule-branch=renovate/github-codeql-action-digest -->chore(deps): update github/codeql-action digest to 95e58e9 - [ ] <!-- unschedule-branch=renovate/prettier-3.x-lockfile -->chore(deps): update dependency prettier to v3.8.3 - [ ] <!-- unschedule-branch=renovate/typescript-6.x-lockfile -->chore(deps): update dependency typescript to v6.0.3 - [ ] <!-- unschedule-branch=renovate/yauzl-3.x-lockfile -->chore(deps): update dependency yauzl to v3.3.0 - [ ] <!-- unschedule-branch=renovate/step-security-harden-runner-2.x -->chore(deps): update step-security/harden-runner action to v2.18.0 - [ ] <!-- create-all-awaiting-schedule-prs -->🔐 **Create all awaiting schedule PRs at once** 🔐 ## Detected Dependencies <details><summary>github-actions (20)</summary> <blockquote> <details><summary>.github/workflows/auto-tag.yml (2)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` </details> <details><summary>.github/workflows/blaze-bot.yml (6)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `peter-evans/create-pull-request v8.1.1@5f6978faf089d4d20b00c7766989d076bb2fc7f1` </details> <details><summary>.github/workflows/bot-monitoring.yml (4)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3` - `actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3` </details> <details><summary>.github/workflows/ci.yml (14)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `codecov/codecov-action v6.0.0@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/dependency-review-action v4.9.0@2031cfc080254a8a887f58cffee85186f0e49e48` - `node 24` - `node 24` </details> <details><summary>.github/workflows/ciel-bot.yml (6)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `peter-evans/create-pull-request v8.1.1@5f6978faf089d4d20b00c7766989d076bb2fc7f1` </details> <details><summary>.github/workflows/dco.yml (4)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-python v6.2.0@a309ff8b426b58ec0e2a45f0f869d46889d02405` - `python 3.14` </details> <details><summary>.github/workflows/deploy-docs.yml (2)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` </details> <details><summary>.github/workflows/generate-readme.yml (4)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `node 24` </details> <details><summary>.github/workflows/hash-check.yml (4)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `node 24` </details> <details><summary>.github/workflows/justice-bot.yml (8)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `peter-evans/create-pull-request v8.1.1@5f6978faf089d4d20b00c7766989d076bb2fc7f1` </details> <details><summary>.github/workflows/luna-bot.yml (6)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `peter-evans/create-pull-request v8.1.1@5f6978faf089d4d20b00c7766989d076bb2fc7f1` </details> <details><summary>.github/workflows/mimi-bot.yml (6)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `peter-evans/create-pull-request v8.1.1@5f6978faf089d4d20b00c7766989d076bb2fc7f1` </details> <details><summary>.github/workflows/publish.yml (10)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003` - `anchore/sbom-action v0.24.0@e22c389904149dbc22b58101806040fa8d37a610` - `actions/attest-sbom v4.1.0@c604332985a26aa8cf1bdc465b92731239ec6b9e` - `actions/attest-build-provenance v4.1.0@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32` - `actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a` - `softprops/action-gh-release v3.0.0@b4309332981a82ec1c5618f44dd2e27cc8bfbfda` - `node 24` </details> <details><summary>.github/workflows/reproducible-builds.yml (4)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `node 24` </details> <details><summary>.github/workflows/restyled.yml (4)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `restyled-io/actions v4.4.21@da77999fc52ee0d74212e9f0391b1b23150a4547` - `restyled-io/actions v4.4.21@da77999fc52ee0d74212e9f0391b1b23150a4547` </details> <details><summary>.github/workflows/security.yml (28)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `github/codeql-action v4@c10b8064de6f491fea524254123dbe5e09572f13` → [Updates: `v4`] - `github/codeql-action v4@c10b8064de6f491fea524254123dbe5e09572f13` → [Updates: `v4`] - `github/codeql-action v4@c10b8064de6f491fea524254123dbe5e09572f13` → [Updates: `v4`] - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `semgrep/semgrep-action v1@713efdd345f3035192eaa63f56867b88e63e4e5d` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `SocketDev/action v1.3.2@ba6de6cc0565af1f42295590380973573297e31f` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205a` - `github/codeql-action v4@c10b8064de6f491fea524254123dbe5e09572f13` → [Updates: `v4`] - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `node 24` - `node 24` - `node 24` </details> <details><summary>.github/workflows/slow-bot.yml (6)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `tibdex/github-app-token v2@3beb63f4bd073e61482598c45c71c1019b59b73a` - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `peter-evans/create-pull-request v8.1.1@5f6978faf089d4d20b00c7766989d076bb2fc7f1` </details> <details><summary>.github/workflows/sonarcloud.yml (5)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `SonarSource/sonarqube-scan-action v7.1.0@299e4b793aaa83bf2aba7c9c14bedbb485688ec4` - `node 24` </details> <details><summary>.github/workflows/unpublish.yml (4)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `node 24` </details> <details><summary>.github/workflows/vex-update.yml (5)</summary> - `step-security/harden-runner v2.17.0@f808768d1510423e83855289c910610ca9b43176` → [Updates: `v2.18.0`] - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd` - `actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f` - `aquasecurity/trivy-action 0.35.0@57a97c7e7821a5776cebc9bb87c984fa69cba8f1` - `node 24` </details> </blockquote> </details> <details><summary>npm (3)</summary> <blockquote> <details><summary>extensions/git-id-switcher/package.json (15)</summary> - `@eslint/js ^10.0.1` - `@types/mocha ^10.0.10` - `@types/node ^25.6.0` - `@vscode/test-cli ^0.0.12` - `@vscode/test-electron ^2.5.2` - `@vscode/vsce ^3.0.0` - `eslint ^10.2.0` - `eslint-plugin-sonarjs ^4.0.1` - `eslint-plugin-unicorn ^64.0.0` - `fast-check ^4.6.0` - `glob ^13.0.6` - `mocha ^11.7.5` - `typescript ^6.0.0` → [Updates: `^6.0.0`] - `typescript-eslint ^8.58.1` - `vscode ^1.85.0` </details> <details><summary>package.json (5)</summary> - `husky ^9.1.7` - `lint-staged ^16.3.2` - `prettier ^3.8.2` → [Updates: `^3.8.2`] - `serialize-javascript ^7.0.5` - `yauzl ^3.2.1` → [Updates: `^3.2.1`] </details> <details><summary>packages/git-id-switcher-npm/package.json</summary> </details> </blockquote> </details> <details><summary>nvm (1)</summary> <blockquote> <details><summary>.nvmrc (1)</summary> - `node 24` </details> </blockquote> </details> --- - [ ] <!-- manual job -->Check this box to trigger a request for Renovate to run again on this repository
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.
Awaiting Schedule
The following updates are awaiting their schedule. To get an update now, click on a checkbox below.
Detected Dependencies
github-actions (20)
npm (3)
nvm (1)