Skip to content

chore(deps-dev): bump semantic-release from 25.0.5 to 25.0.7 in the semantic-release group#992

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/semantic-release-6dcf7165a3
Open

chore(deps-dev): bump semantic-release from 25.0.5 to 25.0.7 in the semantic-release group#992
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/semantic-release-6dcf7165a3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the semantic-release group with 1 update: semantic-release.

Updates semantic-release from 25.0.5 to 25.0.7

Release notes

Sourced from semantic-release's releases.

v25.0.7

25.0.7 (2026-07-13)

Bug Fixes

  • argument Injection via repositoryUrl in package.json (#4245) (c46dbda)

v25.0.6

25.0.6 (2026-07-10)

Bug Fixes

  • ensure encoded secrets get masked (8e28dd3)
Commits
  • c46dbda fix: argument Injection via repositoryUrl in package.json (#4245)
  • 7abb562 chore(deps): update npm to v12 (#4244)
  • 8b15865 chore(deps): update dependency @​types/node to v24.13.3 (#4243)
  • 8e28dd3 fix: ensure encoded secrets get masked
  • f293647 Merge commit from fork
  • a973d20 ci(action): update github/codeql-action action to v4.37.0 (#4241)
  • c62136f chore(deps): update dependency mockserver-client to v7.4.0 (#4240)
  • 9be3e6c chore(deps): lock file maintenance (#4239)
  • 3259ebb chore(deps): update dependency got to v15.1.0 (#4238)
  • 1c17eb5 chore(deps): update dependency mockserver-client to v7.3.0 (#4237)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the semantic-release group with 1 update: [semantic-release](https://github.com/semantic-release/semantic-release).


Updates `semantic-release` from 25.0.5 to 25.0.7
- [Release notes](https://github.com/semantic-release/semantic-release/releases)
- [Commits](semantic-release/semantic-release@v25.0.5...v25.0.7)

---
updated-dependencies:
- dependency-name: semantic-release
  dependency-version: 25.0.7
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: semantic-release
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added auto Opened by an automated process dependencies Pull request that updates a dependency file javascript Pull requests that update JavaScript code labels Jul 13, 2026
@dependabot dependabot Bot requested a review from devpow112 as a code owner July 13, 2026 08:02
@dependabot dependabot Bot added auto Opened by an automated process dependencies Pull request that updates a dependency file javascript Pull requests that update JavaScript code labels Jul 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

auto Opened by an automated process dependencies Pull request that updates a dependency file javascript Pull requests that update JavaScript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants