Skip to content

build(deps): bump the pre-commit-hooks group with 5 updates#3092

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/pre_commit/pre-commit-hooks-46ed62c5cd
Open

build(deps): bump the pre-commit-hooks group with 5 updates#3092
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/pre_commit/pre-commit-hooks-46ed62c5cd

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 1, 2026

Copy link
Copy Markdown
Contributor

Bumps the pre-commit-hooks group with 5 updates:

Package From To
https://github.com/thlorenz/doctoc.git v2.4.1 2.5.0
https://github.com/pypa/pip-audit v2.10.0 2.10.1
https://github.com/zizmorcore/zizmor-pre-commit v1.25.2 1.26.1
https://github.com/igorshubovych/markdownlint-cli v0.48.0 0.49.0
https://github.com/python-jsonschema/check-jsonschema 0.37.2 0.37.3

Updates https://github.com/thlorenz/doctoc.git from v2.4.1 to 2.5.0

Release notes

Sourced from https://github.com/thlorenz/doctoc.git's releases.

v2.5.0

What's Changed

New Contributors

Full Changelog: thlorenz/doctoc@v2.4.1...v2.5.0

Commits
  • 59dcae9 feat: Support frontmatter in docs (#344)
  • be3cacc feat: Add ability for different symbol per level (#353)
  • 9b9c1e5 feat: configurable location to insert new toc (#346)
  • 90be2f8 chore(deps-dev): bump ip-address from 10.1.0 to 10.2.0 (#355)
  • 53e5a6f feat: support header id's in header text (#347)
  • 96ca2b9 chore: refactor recursive search for markdown files (#352)
  • 9965cd0 test: Large file handling (#351)
  • e15a1c7 fix: line endings are set based on file (#339)
  • 6504050 feat: Add toc based on minLines (#345)
  • e1ba3d5 chore: Reduce explicit usage of new lines (#338)
  • Additional commits viewable in compare view

Updates https://github.com/pypa/pip-audit from v2.10.0 to 2.10.1

Release notes

Sourced from https://github.com/pypa/pip-audit's releases.

v2.10.1

Fixed

  • Fixed a KeyError crash when an OSV vulnerability record contains an affected entry that omits the optional ranges field (#1046)
Changelog

Sourced from https://github.com/pypa/pip-audit's changelog.

[2.10.1]

Fixed

  • Fixed a KeyError crash when an OSV vulnerability record contains an affected entry that omits the optional ranges field (#1046)
Commits
  • 8894eb8 Merge pull request #1056 from pypa/copilot/release-2101
  • 1c625b7 Update version in README.md to 2.10.1
  • fd2094b Prep 2.10.1 release
  • 58d2488 build(deps): bump github/codeql-action from 4.35.2 to 4.36.1 (#1052)
  • 8df9420 build(deps): bump zizmorcore/zizmor-action from 0.5.3 to 0.5.6 (#1044)
  • 3f618d3 build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#1053)
  • 4849132 Restrict OIDC token to publish job (#1050)
  • c1eb69a Fix KeyError when OSV affected entry omits optional ranges field (#1046)
  • 68de07f Merge pull request #1054 from pypa/fix/1047
  • ef31c9e Formatting fixes
  • Additional commits viewable in compare view

Updates https://github.com/zizmorcore/zizmor-pre-commit from v1.25.2 to 1.26.1

Release notes

Sourced from https://github.com/zizmorcore/zizmor-pre-commit's releases.

v1.26.1

See: https://github.com/zizmorcore/zizmor/releases/tag/v1.26.1

v1.26.0

See: https://github.com/zizmorcore/zizmor/releases/tag/v1.26.0

Commits

Updates https://github.com/igorshubovych/markdownlint-cli from v0.48.0 to 0.49.0

Release notes

Sourced from https://github.com/igorshubovych/markdownlint-cli's releases.

v0.49.0

  • Update markdownlint dependency to 0.41.0
    • Improve MD022/MD028/MD035/MD042/MD051/MD060
    • Remove handling of inline directive syntax (frequent false positives)
    • Remove support for end-of-life Node version 20
  • Update all dependencies via Dependabot
Commits
  • a4d5d37 Bump version 0.49.0
  • 503f264 Delete and recreate package-lock.json via "npm install".
  • 7a24593 Bump markdownlint from 0.40.0 to 0.41.0
  • c7c1c76 Bump commander from 14.0.3 to 15.0.0
  • 83f5f30 Bump tinyglobby from 0.2.16 to 0.2.17
  • 74b98de Bump js-yaml from 4.1.1 to 4.2.0
  • d368135 Bump markdown-it from 14.1.1 to 14.2.0
  • dd34288 Bump ava from 8.0.0 to 8.0.1
  • 1e363dc Bump brace-expansion from 5.0.5 to 5.0.6
  • 2f092d2 Bump ava from 7.0.0 to 8.0.0
  • Additional commits viewable in compare view

Updates https://github.com/python-jsonschema/check-jsonschema from 0.37.2 to 0.37.3

Release notes

Sourced from https://github.com/python-jsonschema/check-jsonschema's releases.

0.37.3

  • Update vendored schemas: bitbucket-pipelines, circle-ci, dependabot, github-workflows, gitlab-ci, mergify, readthedocs, renovate, snapcraft, woodpecker-ci (2026-06-12)
Changelog

Sourced from https://github.com/python-jsonschema/check-jsonschema's changelog.

0.37.3

  • Update vendored schemas: bitbucket-pipelines, circle-ci, dependabot, github-workflows, gitlab-ci, mergify, readthedocs, renovate, snapcraft, woodpecker-ci (2026-06-12)
Commits
  • 5030dca Bump version for release
  • e49ebfe Merge pull request #687 from python-jsonschema/dependabot/pip/responses-0.26.1
  • b3ae064 Bump responses from 0.26.0 to 0.26.1
  • 48ba608 Fix stale test data
  • ed0cecf Update vendored schemas
  • b1f7546 Merge pull request #686 from python-jsonschema/vendor-schemas-auto
  • d99034f [vendor-schemas] automated update
  • 566da04 Merge pull request #684 from python-jsonschema/vendor-schemas-auto
  • dca8424 Merge pull request #685 from python-jsonschema/pre-commit-ci-update-config
  • 520b76e [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the pre-commit-hooks group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [https://github.com/thlorenz/doctoc.git](https://github.com/thlorenz/doctoc) | `v2.4.1` | `2.5.0` |
| [https://github.com/pypa/pip-audit](https://github.com/pypa/pip-audit) | `v2.10.0` | `2.10.1` |
| [https://github.com/zizmorcore/zizmor-pre-commit](https://github.com/zizmorcore/zizmor-pre-commit) | `v1.25.2` | `1.26.1` |
| [https://github.com/igorshubovych/markdownlint-cli](https://github.com/igorshubovych/markdownlint-cli) | `v0.48.0` | `0.49.0` |
| [https://github.com/python-jsonschema/check-jsonschema](https://github.com/python-jsonschema/check-jsonschema) | `0.37.2` | `0.37.3` |


Updates `https://github.com/thlorenz/doctoc.git` from v2.4.1 to 2.5.0
- [Release notes](https://github.com/thlorenz/doctoc/releases)
- [Commits](thlorenz/doctoc@v2.4.1...v2.5.0)

Updates `https://github.com/pypa/pip-audit` from v2.10.0 to 2.10.1
- [Release notes](https://github.com/pypa/pip-audit/releases)
- [Changelog](https://github.com/pypa/pip-audit/blob/main/CHANGELOG.md)
- [Commits](pypa/pip-audit@v2.10.0...v2.10.1)

Updates `https://github.com/zizmorcore/zizmor-pre-commit` from v1.25.2 to 1.26.1
- [Release notes](https://github.com/zizmorcore/zizmor-pre-commit/releases)
- [Commits](zizmorcore/zizmor-pre-commit@v1.25.2...v1.26.1)

Updates `https://github.com/igorshubovych/markdownlint-cli` from v0.48.0 to 0.49.0
- [Release notes](https://github.com/igorshubovych/markdownlint-cli/releases)
- [Commits](igorshubovych/markdownlint-cli@v0.48.0...v0.49.0)

Updates `https://github.com/python-jsonschema/check-jsonschema` from 0.37.2 to 0.37.3
- [Release notes](https://github.com/python-jsonschema/check-jsonschema/releases)
- [Changelog](https://github.com/python-jsonschema/check-jsonschema/blob/main/CHANGELOG.rst)
- [Commits](python-jsonschema/check-jsonschema@0.37.2...0.37.3)

---
updated-dependencies:
- dependency-name: https://github.com/thlorenz/doctoc.git
  dependency-version: 2.5.0
  dependency-type: direct:production
  dependency-group: pre-commit-hooks
- dependency-name: https://github.com/pypa/pip-audit
  dependency-version: 2.10.1
  dependency-type: direct:production
  dependency-group: pre-commit-hooks
- dependency-name: https://github.com/zizmorcore/zizmor-pre-commit
  dependency-version: 1.26.1
  dependency-type: direct:production
  dependency-group: pre-commit-hooks
- dependency-name: https://github.com/igorshubovych/markdownlint-cli
  dependency-version: 0.49.0
  dependency-type: direct:production
  dependency-group: pre-commit-hooks
- dependency-name: https://github.com/python-jsonschema/check-jsonschema
  dependency-version: 0.37.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pre-commit-hooks
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file minor Minor issue pre_commit Pull requests that update pre_commit code labels Jul 1, 2026
@dependabot dependabot Bot requested a review from jbampton as a code owner July 1, 2026 00:12
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 1, 2026
@dependabot dependabot Bot requested a review from jiayuasu as a code owner July 1, 2026 00:12
@dependabot dependabot Bot added minor Minor issue pre_commit Pull requests that update pre_commit code labels Jul 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file minor Minor issue pre_commit Pull requests that update pre_commit code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants