Skip to content

Bump the mostly-harmless group with 2 updates#280

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/mostly-harmless-6428125dea
Open

Bump the mostly-harmless group with 2 updates#280
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/mostly-harmless-6428125dea

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2026

Bumps the mostly-harmless group with 2 updates: @bufbuild/buf and @types/node.

Updates @bufbuild/buf from 1.64.0 to 1.66.0

Release notes

Sourced from @​bufbuild/buf's releases.

v1.66.0

  • Add LSP comment ignore code action to add comment ignores for lint errors.
  • Fix buf breaking module comparison when adding new modules.
  • Add LSP hover support for protovalidate CEL expressions.
  • Fixed offset handling in CEL semantic tokens for non-ASCII content and proto escape sequences in multi-line string literal expressions.
  • Improve URI normalization for the LSP.

v1.65.0

  • Add buf registry policy {commit,create,delete,info,label,settings} commands to manage BSR policies.
  • Add LSP deprecate code action to add the deprecated option on types and symbols.
  • Fix import LSP document link to not include import keyword.
  • Update PROTOVALIDATE lint rule to support checking unenforceable required rules on repeated.items, map.keys and map.values.
  • Add buf source edit deprecate command to deprecate types by setting the deprecate = true option.
Changelog

Sourced from @​bufbuild/buf's changelog.

[v1.66.0] - 2026-02-23

  • Add LSP comment ignore code action to add comment ignores for lint errors.
  • Fix buf breaking module comparison when adding new modules.
  • Add LSP hover support for protovalidate CEL expressions.
  • Fixed offset handling in CEL semantic tokens for non-ASCII content and proto escape sequences in multi-line string literal expressions.
  • Improve URI normalization for the LSP.

[v1.65.0] - 2026-02-03

  • Add buf registry policy {commit,create,delete,info,label,settings} commands to manage BSR policies.
  • Add LSP deprecate code action to add the deprecated option on types and symbols.
  • Fix import LSP document link to not include import keyword.
  • Update PROTOVALIDATE lint rule to support checking unenforceable required rules on repeated.items, map.keys and map.values.
  • Add buf source edit deprecate command to deprecate types by setting the deprecate = true option.
Commits

Updates @types/node from 25.1.0 to 25.3.3

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the mostly-harmless group with 2 updates
8ad0c38 
Bumps the mostly-harmless group with 2 updates: [@bufbuild/buf](https://github.com/bufbuild/buf) and [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node).


Updates `@bufbuild/buf` from 1.64.0 to 1.66.0
- [Release notes](https://github.com/bufbuild/buf/releases)
- [Changelog](https://github.com/bufbuild/buf/blob/main/CHANGELOG.md)
- [Commits](bufbuild/buf@v1.64.0...v1.66.0)

Updates `@types/node` from 25.1.0 to 25.3.3
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@bufbuild/buf"
  dependency-version: 1.66.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: mostly-harmless
- dependency-name: "@types/node"
  dependency-version: 25.3.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: mostly-harmless
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants