From b143c6c66f82aa7aed2c1aec3c27b2eaeddad6b8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 21 Jun 2026 13:53:09 +0000 Subject: [PATCH 1/2] chore(deps): bump js-yaml from 4.1.1 to 4.2.0 Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.1 to 4.2.0. - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/compare/4.1.1...4.2.0) --- updated-dependencies: - dependency-name: js-yaml dependency-version: 4.2.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package.json | 2 +- pnpm-lock.yaml | 18 +++++++++--------- 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/package.json b/package.json index 7577f352..7913784a 100644 --- a/package.json +++ b/package.json @@ -170,7 +170,7 @@ "cac": "^7.0.0", "colorette": "^2.0.20", "express": "4.22.1", - "js-yaml": "4.1.1", + "js-yaml": "4.2.0", "knex": "2.4.2", "ora": "^9.3.0", "pg": "8.9.0", diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 5fae5644..6180c834 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -33,8 +33,8 @@ importers: specifier: 4.22.1 version: 4.22.1 js-yaml: - specifier: 4.1.1 - version: 4.1.1 + specifier: 4.2.0 + version: 4.2.0 knex: specifier: 2.4.2 version: 2.4.2(pg@8.9.0) @@ -1930,8 +1930,8 @@ packages: resolution: {integrity: sha512-PMSmkqxr106Xa156c2M265Z+FTrPl+oxd/rgOQy2tijQeK5TxQ43psO1ZCwhVOSdnn+RzkzlRz/eY4BgJBYVpg==} hasBin: true - js-yaml@4.1.1: - resolution: {integrity: sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==} + js-yaml@4.2.0: + resolution: {integrity: sha512-ePWsvanv0DWuDRsW8dnt+R4jQ31SCRCQ7hhNcPXZPsoBZiemuZNYGf7adZdqX2D86j6rvKp3RpCxVTSb8WQlOw==} hasBin: true jsesc@3.1.0: @@ -3695,7 +3695,7 @@ snapshots: '@changesets/parse@0.4.3': dependencies: '@changesets/types': 6.1.0 - js-yaml: 4.1.1 + js-yaml: 4.2.0 '@changesets/pre@2.0.2': dependencies: @@ -4743,7 +4743,7 @@ snapshots: cosmiconfig@8.3.6(typescript@5.7.3): dependencies: import-fresh: 3.3.1 - js-yaml: 4.1.1 + js-yaml: 4.2.0 parse-json: 5.2.0 path-type: 4.0.0 optionalDependencies: @@ -5407,7 +5407,7 @@ snapshots: argparse: 1.0.10 esprima: 4.0.1 - js-yaml@4.1.1: + js-yaml@4.2.0: dependencies: argparse: 2.0.1 @@ -5473,7 +5473,7 @@ snapshots: fast-glob: 3.3.2 globby: 13.2.2 jiti: 1.21.0 - js-yaml: 4.1.1 + js-yaml: 4.2.0 micromatch: 4.0.8 minimist: 1.2.8 pretty-ms: 8.0.0 @@ -5695,7 +5695,7 @@ snapshots: glob: 10.5.0 he: 1.2.0 is-path-inside: 3.0.3 - js-yaml: 4.1.1 + js-yaml: 4.2.0 log-symbols: 4.1.0 minimatch: 9.0.9 ms: 2.1.3 From 90ce8cb8b79a7da462c243bf8e8ecb7caad9ebee Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 21 Jun 2026 13:53:20 +0000 Subject: [PATCH 2/2] chore: add changeset for dependabot PR #646 --- .changeset/dependabot-pr-646.md | 5 +++++ 1 file changed, 5 insertions(+) create mode 100644 .changeset/dependabot-pr-646.md diff --git a/.changeset/dependabot-pr-646.md b/.changeset/dependabot-pr-646.md new file mode 100644 index 00000000..e870c5f5 --- /dev/null +++ b/.changeset/dependabot-pr-646.md @@ -0,0 +1,5 @@ +--- +"nostream": patch +--- + +chore(deps): bump js-yaml from 4.1.1 to 4.2.0