Skip to content

fix(deps)(deps-dev): bump @semantic-release/npm from 12.0.2 to 13.1.5#276

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/semantic-release/npm-13.1.5
Open

fix(deps)(deps-dev): bump @semantic-release/npm from 12.0.2 to 13.1.5#276
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/semantic-release/npm-13.1.5

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 22, 2026
edited
Loading

Bumps @semantic-release/npm from 12.0.2 to 13.1.5.

Release notes

Sourced from @​semantic-release/npm's releases.

v13.1.5

13.1.5 (2026-03-01)

Bug Fixes

  • deps: update dependency normalize-url to v9 (#1095) (daec492)

v13.1.4

13.1.4 (2026-02-06)

Bug Fixes

  • deps: update dependency @​actions/core to v3 (#1085) (17abfe1)

v13.1.3

13.1.3 (2025-12-12)

Bug Fixes

  • deps: update dependency @​actions/core to v2 (#1055) (fa4a3ab)

v13.1.2

13.1.2 (2025-11-14)

Bug Fixes

v13.1.1

13.1.1 (2025-10-19)

Bug Fixes

  • publish-dry-run: temporarily remove the addition of dry-running the publish step (30bd176)

v13.1.0

13.1.0 (2025-10-19)

Features

  • trusted-publishing: verify auth, considering OIDC vs tokens from various registries (e3319f1), closes #958
  • trusted-publishing: refine the messages for related errors (316ce21), closes #958
  • trusted-publishing: make request to verify if OIDC token exchange can succeed (c80ecb0), closes #958
  • trusted-publishing: pass id-token as bearer header for github actions (d83b727), closes #958
  • trusted-publishing: pass id-token as bearer header for gitlab pipelines (6d1c3cf), closes #958

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​semantic-release/npm since your current version.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file security Security related issue labels Apr 22, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/semantic-release/npm-13.1.5 branch 5 times, most recently from fcc69e9 to c4096c2 Compare April 29, 2026 15:23
@dependabot
fix(deps)(deps-dev): bump @semantic-release/npm from 12.0.2 to 13.1.5
cd4bf4a 
Bumps [@semantic-release/npm](https://github.com/semantic-release/npm) from 12.0.2 to 13.1.5.
- [Release notes](https://github.com/semantic-release/npm/releases)
- [Commits](semantic-release/npm@v12.0.2...v13.1.5)

---
updated-dependencies:
- dependency-name: "@semantic-release/npm"
  dependency-version: 13.1.5
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/semantic-release/npm-13.1.5 branch from c4096c2 to cd4bf4a Compare April 29, 2026 15:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file security Security related issue

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants