Skip to content

Bump mermaid and ngx-markdown in /report/report-ng#1372

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/report/report-ng/multi-003d96e669
Open

Bump mermaid and ngx-markdown in /report/report-ng#1372
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/report/report-ng/multi-003d96e669

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 11, 2026

Bumps mermaid and ngx-markdown. These dependencies needed to be updated together.
Updates mermaid from 10.9.1 to 10.9.6

Commits
  • dd351a7 chore: bump mermaid version to v10.9.6
  • e67a79b build: upgrade repo to use Node v20.17.0
  • e8c7043 fix: loosen uuid dependency range to allow v14
  • 1e8583d ci(publish): support NPM trusted publishing
  • 1173597 chore(deps): update dependencies using pnpm audit
  • c2094a4 Update docs
  • 46a487d test: correct createUserStyles call
  • 47437f3 Merge commit from fork
  • 7470a90 fix: skip namespacing CSSKeyframeRule
  • b37366e fix: disallow some CSS at-rules in custom CSS
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for mermaid since your current version.


Updates ngx-markdown from 14.0.1 to 21.3.0

Release notes

Sourced from ngx-markdown's releases.

v21.3.0

New features and enhancements

Security fixes

Special Thanks

🥇 Thanks to @​BernhardBehrendt for his contribution in #646

Full Changelog: jfcere/ngx-markdown@v21.2.0...v21.3.0

v21.2.0

New features and enhancements

Security fixes

Special Thanks

🥇 Thanks to @​hardikpatel043 for his contribution in #634

Full Changelog: jfcere/ngx-markdown@v21.1.0...v21.2.0

v21.1.0

New features and enhancements

  • Add support for emoji-toolkit 10.0.0, Unicode 16.0 (#619) (140336f7b257d009067ec8b3bfa7c3b11c1e6ce1) @​jfcere

Security fixes

  • Bump lodash from 4.17.21 to 4.17.23 (#615) (0e150990bac39ce0287eaf5d2464e5c2f9af7056) @​dependabot[bot]
  • Bump tar from 7.5.2 to 7.5.3 (#612) (37b852cea3b39d8b5471ce420be8ef39ae709026) @​dependabot[bot]
  • Bump tar from 7.5.3 to 7.5.7 (#617) (a31ebbbc7f83ac359787c305e3c33cd1f8bd264b) @​dependabot[bot]
  • chore: update angular-cli-ghpages to 3.0.2 (#620) (508c7f8c7f248ee46dbd8fd2ed6672a762187a08) @​jfcere

... (truncated)

Commits
  • 4f1d1a7 21.3.0
  • b2a6a9a feat(deps): add support for marked 18 (#646)
  • 723ed2f build(deps): bump dompurify from 3.3.3 to 3.4.0 (#644)
  • 7d32475 build(deps): bump hono from 4.12.12 to 4.12.14 (#643)
  • 4338bdf build(deps): bump follow-redirects from 1.15.11 to 1.16.0 (#642)
  • 85618c4 build(deps): bump hono from 4.12.8 to 4.12.12 (#640)
  • e3ef5bf build(deps): bump @​hono/node-server from 1.19.11 to 1.19.13 (#639)
  • 022bc93 21.2.0
  • a1e692f build(deps): bump lodash from 4.17.23 to 4.18.1 (#638)
  • 4f1ceed build(deps): bump lodash-es and langium (#637)
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
mermaid [>= 11.a, < 12]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump mermaid and ngx-markdown in /report/report-ng
47d5047 
Bumps [mermaid](https://github.com/mermaid-js/mermaid) and [ngx-markdown](https://github.com/jfcere/ngx-markdown). These dependencies needed to be updated together.

Updates `mermaid` from 10.9.1 to 10.9.6
- [Release notes](https://github.com/mermaid-js/mermaid/releases)
- [Commits](mermaid-js/mermaid@v10.9.1...v10.9.6)

Updates `ngx-markdown` from 14.0.1 to 21.3.0
- [Release notes](https://github.com/jfcere/ngx-markdown/releases)
- [Commits](jfcere/ngx-markdown@v14.0.1...v21.3.0)

---
updated-dependencies:
- dependency-name: mermaid
  dependency-version: 10.9.6
  dependency-type: direct:production
- dependency-name: ngx-markdown
  dependency-version: 21.3.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 11, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants