build(deps): bump the patch-dependencies group across 1 directory with 10 updates by dependabot[bot] · Pull Request #26 · db-ux-design-system/cicd-test

dependabot · 2026-04-20T22:52:21Z

Bumps the patch-dependencies group with 10 updates in the / directory:

Package	From	To
@axe-core/playwright	`4.11.1`	`4.11.2`
accessibility-checker	`4.0.11`	`4.0.16`
adm-zip	`0.5.16`	`0.5.17`
glob	`13.0.1`	`13.0.6`
jscpd	`4.0.8`	`4.0.9`
postcss	`8.5.6`	`8.5.10`
publint	`0.3.17`	`0.3.18`
rimraf	`6.1.2`	`6.1.3`
cssnano	`7.1.2`	`7.1.5`
nodemon	`3.1.11`	`3.1.14`

Updates @axe-core/playwright from 4.11.1 to 4.11.2

Release notes

Sourced from @axe-core/playwright's releases.

Release 4.11.2

Bug Fixes

Update axe-core to v4.11.3 (#1306) (71c4179)

wdio: support v9 wdio switchFrame and switchWindow (#1302) (4689273), closes #1164

Changelog

Sourced from @axe-core/playwright's changelog.

4.11.2 (2026-04-14)

Bug Fixes

Update axe-core to v4.11.3 (#1306) (71c4179)

wdio: support v9 wdio switchFrame and switchWindow (#1302) (4689273), closes #1164

Commits

310de0a chore: Release 4.11.2 (#1323)
39d9967 chore: RC v4.11.2 (#1317)
7eb0bf2 chore: RC v4.11.2
71c4179 fix: Update axe-core to v4.11.3 (#1306)
4689273 fix(wdio): support v9 wdio switchFrame and switchWindow (#1302)
6d6dd29 chore: update dependabot config to ignore @types/node major versions (#1295)
49dd6ce chore: bump the npm-low-risk group across 1 directory with 21 updates (#1296)
6d41ff4 refactor: move tyepscript, @types/node, and ts-node to root (#1299)
22ddeaf refactor: have all packages extend tsconfig from root (#1297)
e1dd13a chore: bump basic-ftp from 5.0.4 to 5.2.0 (#1282)
Additional commits viewable in compare view

Updates accessibility-checker from 4.0.11 to 4.0.16

Release notes

Sourced from accessibility-checker's releases.

Mar 26, 2026

What's Changed

fix(node,cypress): Fix simulation and add example of usage by @tombrunet in IBMa/equal-access#2500

chore: Update dependencies and Simulator docs by @tombrunet in IBMa/equal-access#2504

fix(simulator): Wrong profiles set, Cypress implementation incomplete by @tombrunet in IBMa/equal-access#2505

Full Changelog: IBMa/equal-access@4.0.15...4.0.16

March 23, 2026

What's Changed

fix(help): Rule server not deploying due to bad mkdirp dependency by @tombrunet in IBMa/equal-access#2499

Full Changelog: IBMa/equal-access@4.0.14...4.0.15

March 20, 2026

What's Changed

fix(extension): Emulator updates 2026 03 11 by @tombrunet in IBMa/equal-access#2491

fix(extension): Using 'this' in the wrong context by @tombrunet in IBMa/equal-access#2488

fix(help): Change in key broke help server deployment by @tombrunet in IBMa/equal-access#2490

feature(node, cypress): Add simulator capability to Node/Cypress tools by @tombrunet in IBMa/equal-access#2496

build(deps): bump the npm_and_yarn group across 3 directories with 5 updates by @dependabot[bot] in IBMa/equal-access#2486

build(deps): bump ajv from 8.17.1 to 8.18.0 in /accessibility-checker-extension in the npm_and_yarn group across 1 directory by @dependabot[bot] in IBMa/equal-access#2489

build(deps): bump the npm_and_yarn group across 4 directories with 3 updates by @dependabot[bot] in IBMa/equal-access#2497

chore(engine): Build Mar 20, 2026 archive by @tombrunet in IBMa/equal-access#2498

Full Changelog: IBMa/equal-access@4.0.13...4.0.14

March 4, 2026

What's Changed

Cypress

fix(cypress): ReferenceError: err is not defined by @davidebibm in IBMa/equal-access#2460

Extension

fix(extension): Fixes non-functional close button issue -2457 by @nam-singh in IBMa/equal-access#2459

fix(extension): replace multiselect with menu button for filters by @nam-singh in IBMa/equal-access#2474

Rules / engine

fixrule(element_tabbable_unobscured): Don't report potentially obscured when covering content is hidden by @tombrunet in IBMa/equal-access#2481

feature(engine): Engine sourcemap by @shunguoy in IBMa/equal-access#2479

Dependency updates

build(deps): bump minimatch from 3.1.2 to 3.1.5 in /cypress-accessibility-checker by @dependabot[bot] in IBMa/equal-access#2477

build(deps): bump multer from 2.0.2 to 2.1.0 in /rule-server by @dependabot[bot] in IBMa/equal-access#2476

build(deps): bump minimatch from 3.1.2 to 3.1.5 by @dependabot[bot] in IBMa/equal-access#2473

build(deps): bump minimatch in /report-react by @dependabot[bot] in IBMa/equal-access#2472

... (truncated)

Commits

b59f05d Merge pull request #2505 from IBMa/profile-err
e1d43a2 Finish out cypress implementation
abe9d67 Fix profile str
204583b Merge pull request #2504 from IBMa/2026-03-deps
57609d4 Update deps and docs
b9d73d9 Merge pull request #2500 from IBMa/sim-node-fail
169bf55 fix(node,cypress): Fix simulation and add example of usage
5ff5019 Merge pull request #2499 from IBMa/mkdirp
d2f8bd8 Remove mkdirp dependency
671b1f3 Merge pull request #2498 from IBMa/archive-2026-03-20
Additional commits viewable in compare view

Updates adm-zip from 0.5.16 to 0.5.17

Release notes

Sourced from adm-zip's releases.

v0.5.17

What's Changed

entryHeader time setter more tolerant by @thomasheritage in cthackers/adm-zip#540

Add check for local desc flag in crc check by @issacgerges in cthackers/adm-zip#543

Create only if the directory does not exist by @DennisHill in cthackers/adm-zip#557

Fix issue with absolute paths by @kwolfy in cthackers/adm-zip#559

New Contributors

@thomasheritage made their first contribution in cthackers/adm-zip#540

@issacgerges made their first contribution in cthackers/adm-zip#543

@DennisHill made their first contribution in cthackers/adm-zip#557

@kwolfy made their first contribution in cthackers/adm-zip#559

Full Changelog: cthackers/adm-zip@v0.5.16...v0.5.17

Commits

094d08c Incremented package version
23c5e1d Added readUInt64LE test
2818b03 Downgraded rimraf version to maintain node compatibility
7c77752 Fixed readUInt64LE
220f817 Updated vulnerable dependencies
c8c20fd Merge pull request #559 from kwolfy/master
840bfdf Merge pull request #557 from DennisHill/DennisHill-patch-1
fdf64a4 fix issue with absolute paths
6f0af5b Create only if the directory does not exist
1cd32f7 Merge pull request #543 from issacgerges/master
Additional commits viewable in compare view

Updates glob from 13.0.1 to 13.0.6

Commits

e80cb38 13.0.6
9cdbbff revert tsgo, not ready for test coverage correctness yet
89c99ba use tsgo compiler
b7275d5 update deps, expand engines to include node 18
942e360 update workflows, pull taprc out of package.json
4a0d53c update tap for mockImport bugfix
ef94ad2 update tap
180c2d4 update docs
37993c8 remove stray console.error in test
03ae4c2 13.0.5
Additional commits viewable in compare view

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.

Updates jscpd from 4.0.8 to 4.0.9

Commits

See full diff in compare view

Updates postcss from 8.5.6 to 8.5.10

Release notes

Sourced from postcss's releases.

8.5.10

Fixed XSS via unescaped </style> in non-bundler cases (by @TharVid).

8.5.9

Speed up source map encoding paring in case of the error.

8.5.8

Fixed Processor#version.

8.5.7

Improved source map annotation cleaning performance (by CodeAnt AI).

Changelog

Sourced from postcss's changelog.

8.5.10

Fixed XSS via unescaped </style> in non-bundler cases (by @TharVid).

8.5.9

Speed up source map encoding paring in case of the error.

8.5.8

Fixed Processor#version.

8.5.7

Improved source map annotation cleaning performance (by CodeAnt AI).

Commits

33b9790 Release 8.5.10 version
536c79e Escape </style> in CSS output (#2074)
afa96b2 Update dependencies (#2073)
effe88b Typo (#2072)
3ee79a2 Thread model (#2071)
2e0683d Create incident response docs (#2070)
fe88ac2 Release 8.5.9 version
c551632 Avoid RegExp when we can use simple JS
89a6b74 Move SECURITY.txt for docs folder to keep GitHub page cleaner
6ceb8a4 Create SECURITY.md
Additional commits viewable in compare view

Updates publint from 0.3.17 to 0.3.18

Release notes

Sourced from publint's releases.

publint@0.3.18

Patch Changes

Fix deprecated subpath mapping check crash and make getPkgPathValue from publint/utils return undefined if the path is invalid (ad2aa9c)

Changelog

Sourced from publint's changelog.

0.3.18

Patch Changes

Fix deprecated subpath mapping check crash and make getPkgPathValue from publint/utils return undefined if the path is invalid (ad2aa9c)

Commits

9808a56 Release packages (#219)
ad2aa9c Fix deprecated subpath mapping check
113388f Update docs
c2d2d70 Update dependencies
See full diff in compare view

Updates rimraf from 6.1.2 to 6.1.3

Commits

f738c78 6.1.3
a164a85 update deps
4635ba7 update deps
509c53f limit ci workflow permissions
68ce04f formatting
37680c5 add warning to not pass untrusted input to this method ever
786563d remove contributing doc, already covered by .github repo
dbeef73 contributing
84d27af update workflows and standard project junk
See full diff in compare view

Updates cssnano from 7.1.2 to 7.1.5

Release notes

Sourced from cssnano's releases.

v7.1.5

Bug Fixes

fix(postcss-reduce-idents): support counter-set property by @dkryaklin in cssnano/cssnano#1765

fix(postcss-convert-values): add transformCustomProperties option by @dkryaklin in cssnano/cssnano#1769

fix(postcss-colormin): add transformCustomProperties option by @dkryaklin in cssnano/cssnano#1768

Full Changelog: https://github.com/cssnano/cssnano/compare/cssnano@7.1.4...cssnano@7.1.5

v7.1.4

Bug Fixes

Update color conversion library to @colordx/core to fix rounding errors in color conversions #1755

v7.1.3

What's Changed

Optimize mergeRule selector merging with WeakMap caching by @Goodwine in cssnano/cssnano#1748

Full Changelog: https://github.com/cssnano/cssnano/compare/cssnano@7.1.2...cssnano@7.1.3

Commits

1ecc51f Publish cssnano 7.1.5
5cb8b09 fix: update browserslist
9e615cc chore: add changeset
863fba5 fix(postcss-colormin): add transformCustomProperties option to skip custom pr...
a282215 fix(postcss-convert-values): add transformCustomProperties option to allow va...
23d0643 chore: fix broken image in README (#1763)
0ba209c fix(postcss-reduce-idents): support counter-set property for counter renaming
dfaf2ae chore: bump some transitive dep patch versions
0a2fe22 docs: update website for release
c4ec231 Publish cssnano 7.1.4
Additional commits viewable in compare view

Updates nodemon from 3.1.11 to 3.1.14

Release notes

Sourced from nodemon's releases.

v3.1.14

3.1.14 (2026-02-20)

Bug Fixes

get watch working on windows (cfebe2f), closes #2270

v3.1.13

3.1.13 (2026-02-19)

Bug Fixes

TypeScript definition for 'restart' args (5c03715), closes #2265

v3.1.12

3.1.12 (2026-02-19)

Bug Fixes

bump minimatch (9376af3), closes #2267

Commits

cfebe2f fix: get watch working on windows
f34bfa9 chore: fix release to run after tests
5c03715 fix: TypeScript definition for 'restart' args
28de4b7 chore: semver-release wanted 22-24 🤦
6217164 chore: move release workflow to node 20
2c458de chore: bump semver-release + update workflow
9376af3 fix: bump minimatch
e045423 chore: website
f7a4edd chore: website
f26223f chore: website
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for nodemon since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…h 10 updates Bumps the patch-dependencies group with 10 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@axe-core/playwright](https://github.com/dequelabs/axe-core-npm) | `4.11.1` | `4.11.2` | | [accessibility-checker](https://github.com/IBMa/equal-access) | `4.0.11` | `4.0.16` | | [adm-zip](https://github.com/cthackers/adm-zip) | `0.5.16` | `0.5.17` | | [glob](https://github.com/isaacs/node-glob) | `13.0.1` | `13.0.6` | | [jscpd](https://github.com/kucherenko/jscpd) | `4.0.8` | `4.0.9` | | [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.10` | | [publint](https://github.com/publint/publint/tree/HEAD/packages/publint) | `0.3.17` | `0.3.18` | | [rimraf](https://github.com/isaacs/rimraf) | `6.1.2` | `6.1.3` | | [cssnano](https://github.com/cssnano/cssnano) | `7.1.2` | `7.1.5` | | [nodemon](https://github.com/remy/nodemon) | `3.1.11` | `3.1.14` | Updates `@axe-core/playwright` from 4.11.1 to 4.11.2 - [Release notes](https://github.com/dequelabs/axe-core-npm/releases) - [Changelog](https://github.com/dequelabs/axe-core-npm/blob/v4.11.2/CHANGELOG.md) - [Commits](dequelabs/axe-core-npm@v4.11.1...v4.11.2) Updates `accessibility-checker` from 4.0.11 to 4.0.16 - [Release notes](https://github.com/IBMa/equal-access/releases) - [Changelog](https://github.com/IBMa/equal-access/blob/main-4.x/CHANGELOG.md) - [Commits](IBMa/equal-access@4.0.11...4.0.16) Updates `adm-zip` from 0.5.16 to 0.5.17 - [Release notes](https://github.com/cthackers/adm-zip/releases) - [Changelog](https://github.com/cthackers/adm-zip/blob/master/history.md) - [Commits](cthackers/adm-zip@v0.5.16...v0.5.17) Updates `glob` from 13.0.1 to 13.0.6 - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](isaacs/node-glob@v13.0.1...v13.0.6) Updates `jscpd` from 4.0.8 to 4.0.9 - [Changelog](https://github.com/kucherenko/jscpd/blob/master/CHANGELOG.md) - [Commits](https://github.com/kucherenko/jscpd/commits) Updates `postcss` from 8.5.6 to 8.5.10 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.5.6...8.5.10) Updates `publint` from 0.3.17 to 0.3.18 - [Release notes](https://github.com/publint/publint/releases) - [Changelog](https://github.com/publint/publint/blob/master/packages/publint/CHANGELOG.md) - [Commits](https://github.com/publint/publint/commits/publint@0.3.18/packages/publint) Updates `rimraf` from 6.1.2 to 6.1.3 - [Changelog](https://github.com/isaacs/rimraf/blob/main/CHANGELOG.md) - [Commits](isaacs/rimraf@v6.1.2...v6.1.3) Updates `cssnano` from 7.1.2 to 7.1.5 - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano@7.1.2...cssnano@7.1.5) Updates `nodemon` from 3.1.11 to 3.1.14 - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](remy/nodemon@v3.1.11...v3.1.14) --- updated-dependencies: - dependency-name: "@axe-core/playwright" dependency-version: 4.11.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: accessibility-checker dependency-version: 4.0.16 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: adm-zip dependency-version: 0.5.17 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: glob dependency-version: 13.0.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: jscpd dependency-version: 4.0.9 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: postcss dependency-version: 8.5.10 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: publint dependency-version: 0.3.18 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: rimraf dependency-version: 6.1.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: cssnano dependency-version: 7.1.5 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies - dependency-name: nodemon dependency-version: 3.1.14 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 20, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the patch-dependencies group across 1 directory with 10 updates#26

build(deps): bump the patch-dependencies group across 1 directory with 10 updates#26
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot-npm_and_yarn-patch-dependencies-8e99f29a71

dependabot Bot commented on behalf of github Apr 20, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Apr 20, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release 4.11.2

Bug Fixes

4.11.2 (2026-04-14)

Bug Fixes

Mar 26, 2026

What's Changed

March 23, 2026

What's Changed

March 20, 2026

What's Changed

March 4, 2026

What's Changed

Cypress

Extension

Rules / engine

Dependency updates

v0.5.17

What's Changed

New Contributors

8.5.10

8.5.9

8.5.8

8.5.7

8.5.10

8.5.9

8.5.8

8.5.7

publint@0.3.18

Patch Changes

0.3.18

Patch Changes

v7.1.5

Bug Fixes

v7.1.4

Bug Fixes

v7.1.3

What's Changed

v3.1.14

3.1.14 (2026-02-20)

Bug Fixes

v3.1.13

3.1.13 (2026-02-19)

Bug Fixes

v3.1.12

3.1.12 (2026-02-19)

Bug Fixes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Apr 20, 2026 •

edited

Loading