Skip to content

ci(deps): bump markdown-it and renovate#103

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-706cae220e
Open

ci(deps): bump markdown-it and renovate#103
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-706cae220e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps markdown-it to 14.2.0 and updates ancestor dependency renovate. These dependencies need to be updated together.

Updates markdown-it from 14.1.1 to 14.2.0

Changelog

Sourced from markdown-it's changelog.

[14.2.0] - 2026-05-24

Added

  • isPunctCharCode to utilities.

Fixed

  • Don't end HTML comment blocks on a blank line, #1155.
  • Properly recognize astral chars (surrogates) in delimiter scans for emphasis-like markers, #1072. Big thanks to @​tats-u for his global efforts with improving CJK support.
  • Preserve unicode whitespaces when trimm headings/paragraphs, #1074.
  • More strict entities decode to avoid false positives ;, #1096.
  • Restore block parser state on fail in lheading rule, #1131.

Security

  • Fixed poor smartquotes perfomance on > 70k quotes in single block
  • Bumped linkify-it to 5.0.1 with fixed potential perfomance issues.
Commits

Updates renovate from 43.139.6 to 43.245.0

Release notes

Sourced from renovate's releases.

43.245.0

43.245.0 (2026-06-27)

Features

Miscellaneous Chores

  • deps: update dependency memfs to v4.57.8 (main) (#44271) (5281211)

43.244.4

43.244.4 (2026-06-27)

Bug Fixes

  • deps: update ghcr.io/renovatebot/base-image docker tag to v13.68.2 (main) (#44270) (f30fdc6)

Miscellaneous Chores

  • deps: update dependency @​types/luxon to v3.7.2 (main) (#44265) (7d9248c)
  • deps: update dependency astral-sh/uv to v0.11.25 (main) (#44268) (f338cbc)
  • deps: update dependency uv to v0.11.25 (main) (#44269) (5f7fb2f)

43.244.3

43.244.3 (2026-06-26)

Build System

  • deps: update dependency semver to v7.8.5 (main) (#44263) (cf74a67)

43.244.2

43.244.2 (2026-06-26)

Bug Fixes

  • deps: update ghcr.io/renovatebot/base-image docker tag to v13.68.1 (main) (#44261) (cced14c)
  • http/github: handle Github got errors containing falsely an object (#44259) (a539377)

Miscellaneous Chores

  • deps: update dependency @​containerbase/istanbul-reports-html to v2.0.8 (main) (#44252) (61147d7)

43.244.1

43.244.1 (2026-06-26)

Bug Fixes

  • schema-utils: support for GitHub bot style email addresses (#44249) (1e43d46)

... (truncated)

Commits
  • bcd44b9 feat(onboarding): add a summary for detected package files (#44258)
  • 5281211 chore(deps): update dependency memfs to v4.57.8 (main) (#44271)
  • f30fdc6 fix(deps): update ghcr.io/renovatebot/base-image docker tag to v13.68.2 (main...
  • 5f7fb2f chore(deps): update dependency uv to v0.11.25 (main) (#44269)
  • f338cbc chore(deps): update dependency astral-sh/uv to v0.11.25 (main) (#44268)
  • 7d9248c chore(deps): update dependency @​types/luxon to v3.7.2 (main) (#44265)
  • cf74a67 build(deps): update dependency semver to v7.8.5 (main) (#44263)
  • a539377 fix(http/github): handle Github got errors containing falsely an object (#44259)
  • cced14c fix(deps): update ghcr.io/renovatebot/base-image docker tag to v13.68.1 (main...
  • 61147d7 chore(deps): update dependency @​containerbase/istanbul-reports-html to v2.0.8...
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code minor labels Jun 17, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/multi-706cae220e branch from ffd9884 to 18c9aaa Compare June 21, 2026 00:48
@dependabot @github

dependabot Bot commented on behalf of github Jun 27, 2026

Copy link
Copy Markdown
Contributor Author

Dependabot can't access a private package registry without explicit configuration. Because of this, Dependabot cannot update this pull request.

1 similar comment
@dependabot @github

dependabot Bot commented on behalf of github Jun 27, 2026

Copy link
Copy Markdown
Contributor Author

Dependabot can't access a private package registry without explicit configuration. Because of this, Dependabot cannot update this pull request.

@dependabot
ci(deps): bump markdown-it and renovate
830703b 
Bumps [markdown-it](https://github.com/markdown-it/markdown-it) to 14.2.0 and updates ancestor dependency [renovate](https://github.com/renovatebot/renovate). These dependencies need to be updated together.


Updates `markdown-it` from 14.1.1 to 14.2.0
- [Changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md)
- [Commits](markdown-it/markdown-it@14.1.1...14.2.0)

Updates `renovate` from 43.139.6 to 43.245.0
- [Release notes](https://github.com/renovatebot/renovate/releases)
- [Commits](renovatebot/renovate@43.139.6...43.245.0)

---
updated-dependencies:
- dependency-name: markdown-it
  dependency-version: 14.2.0
  dependency-type: indirect
- dependency-name: renovate
  dependency-version: 43.228.1
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/multi-706cae220e branch from 18c9aaa to 830703b Compare June 28, 2026 06:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code minor

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants