Skip to content

fix(deps): update dependency iconv-lite to ^0.7.0 #90

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
renovate wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

fix(deps): update dependency iconv-lite to ^0.7.0 #90

renovate wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Oct 20, 2025
edited by coderabbitai bot
Loading

This PR contains the following updates:

Package Change Age Confidence
iconv-lite ^0.6.3 -> ^0.7.0 age confidence

Release Notes

pillarjs/iconv-lite (iconv-lite)

v0.7.0

Compare Source

🐞 Bug fixes

  • Handle split surrogate pairs when encoding utf8 - by @​yosion-p and @​ashtuchkin in #​282:

    Handle a case where streaming utf8 encoder (converting js strings -> buffers) encounters
    surrogate pairs split between chunks (last character of one chunk is high surrogate and first
    character of the next chunk is a low surrogate).

  • Avoid false positives in encodingExists by using objects without a prototype - by @​bjohansebas in #​328

    The encodingExists method could return incorrect results if the lookup matched properties inherited
    from the prototype of the object that stores the encodings, such as constructor and others. This change
    replaces that object with one that has no prototype, ensuring that only explicitly defined valid encodings
    in the library are considered. In addition, the fix is applied to the internal cache system to avoid the same
    kind of false positives

🚀 Improvements

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Summary by CodeRabbit

  • Chores
    • Updated dependency: bumped iconv-lite from ^0.6.3 to ^0.7.0 to keep libraries current and maintain compatibility.
    • No changes to public APIs or exported declarations.

✏️ Tip: You can customize this high-level summary in your review settings.

@renovate renovate bot added the renovate label Oct 20, 2025
@renovate renovate bot added the renovate label Oct 20, 2025
@codecov
Copy link

codecov bot commented Oct 20, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 0%. Comparing base (722b206) to head (ed3bead).

Additional details and impacted files 
@@    Coverage Diff     @@
##   main   #90   +/-   ##
==========================
==========================
🚀 New features to boost your workflow:
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Oct 20, 2025
edited
Loading

📝 Walkthrough

Walkthrough

Bumps the iconv-lite dependency in package.json from ^0.6.3 to ^0.7.0. No source code, configuration, exported-interface, or control-flow changes are included.

Pre-merge checks

✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title clearly summarizes the main change: updating the iconv-lite dependency from ^0.6.3 to ^0.7.0.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

Disabled knowledge base sources:

  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 59a604c and ed3bead.

⛔ Files ignored due to path filters (1)
  • package-lock.json is excluded by !**/package-lock.json
📒 Files selected for processing (1)
  • package.json (1 hunks)
🔇 Additional comments (1)
package.json (1)

2530-2530: Package-lock.json has been properly updated—no action needed.

The root-level iconv-lite dependency in package-lock.json is correctly pinned to 0.7.0, matching the ^0.7.0 specification in package.json. The version mismatch flagged in the previous review has been resolved. (Note: nested iconv-lite versions in transitive dependencies—d3-dsv, encoding, gulp, needle—remain at 0.6.3 and 0.4.24, which is expected and controlled by those packages' lock constraints, not this update.)

Comment @coderabbitai help to get the list of available commands and usage tips.

@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch 2 times, most recently from c080474 to 330e966 Compare October 20, 2025 17:39
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch 17 times, most recently from 9161d6e to 76b4dc1 Compare October 23, 2025 12:16
@jamesbhobbs jamesbhobbs marked this pull request as draft October 23, 2025 12:36
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch 2 times, most recently from b84d309 to 951d184 Compare October 23, 2025 12:55
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch 8 times, most recently from 55f8b2c to 8fb4108 Compare November 12, 2025 15:33
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch 7 times, most recently from 9a49e70 to 050ca27 Compare November 24, 2025 12:09
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch 2 times, most recently from 67320d4 to 317c857 Compare November 27, 2025 11:05
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch from 317c857 to b8f8bc6 Compare December 3, 2025 12:48
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch from b8f8bc6 to cc44895 Compare December 4, 2025 08:54
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch 7 times, most recently from 4a8c4f7 to 59a604c Compare December 10, 2025 08:55
@renovate renovate bot force-pushed the renovate/iconv-lite-0.x branch from 59a604c to ed3bead Compare December 10, 2025 10:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] approved these changes

@saltenasl saltenasl Awaiting requested review from saltenasl

@jamesbhobbs jamesbhobbs Awaiting requested review from jamesbhobbs

@Artmann Artmann Awaiting requested review from Artmann

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

renovate

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant