build(deps): bump the dependencies group across 1 directory with 7 updates by dependabot[bot] · Pull Request #1507 · DEFRA/forms-designer

dependabot · 2026-06-18T11:24:02Z

Bumps the dependencies group with 7 updates in the / directory:

Package	From	To
slug	`11.0.0`	`11.0.1`
tsc-alias	`1.8.11`	`1.8.17`
@defra/interactive-map	`0.0.22-alpha`	`0.0.23-alpha`
jsondiffpatch	`0.7.3`	`0.7.6`
resolve	`1.22.11`	`1.22.12`
serialize-javascript	`7.0.5`	`7.0.6`
nock	`14.0.11`	`14.0.15`

Updates slug from 11.0.0 to 11.0.1

Changelog

Sourced from slug's changelog.

11.0.1 (2025-10-13)

Bug Fixes

fix error in README documentation of pretty modeE (59988de)

Commits

97ab8b8 chore(release): 11.0.1 [skip ci]
59988de fix: fix error in README documentation of pretty modeE
b0b3c6f chore(deps-dev): bump mocha from 11.7.3 to 11.7.4 (#511)
76074da chore(deps-dev): bump mocha from 11.7.2 to 11.7.3 (#510)
6d3276c chore(deps-dev): bump tar-fs from 3.0.9 to 3.1.1 (#509)
42dd516 chore(deps-dev): bump semantic-release from 24.2.8 to 24.2.9 (#508)
c0e0f81 chore(deps-dev): bump semantic-release from 24.2.7 to 24.2.8 (#507)
749ecfd chore(deps-dev): bump mocha from 11.7.1 to 11.7.2 (#506)
720da7e chore: update package-lock.json (#505)
348e822 chore(deps-dev): bump semantic-release from 24.2.6 to 24.2.7 (#502)
Additional commits viewable in compare view

Updates tsc-alias from 1.8.11 to 1.8.17

Release notes

Sourced from tsc-alias's releases.

v1.8.17 (2025-04-30)

What's Changed

minor typo in README.md by @danielrentz in justkey007/tsc-alias#249

CI by @justkey007 in justkey007/tsc-alias#258

chore(deps): bump minimatch from 10.0.1 to 10.2.5 by @dependabot[bot] in justkey007/tsc-alias#257

New Contributors

@danielrentz made their first contribution in justkey007/tsc-alias#249

@dependabot[bot] made their first contribution in justkey007/tsc-alias#257

Full Changelog: justkey007/tsc-alias@v1.8.16...v1.8.17

v1.8.16 (2025-05-05)

What's Changed

fix: update import from get-tsconfig to use parseTsconfig by @ediaz2 in justkey007/tsc-alias#245

New Contributors

@ediaz2 made their first contribution in justkey007/tsc-alias#245

Full Changelog: justkey007/tsc-alias@v1.8.15...v1.8.16

v1.8.15 (2025-04-10)

What's Changed

fix: compilerOptions.outDir is not set error by @justkey007 in justkey007/tsc-alias#242

Full Changelog: justkey007/tsc-alias@v1.8.14...v1.8.15

v1.8.14 (2025-04-08)

What's Changed

Does not work properly with tsconfig.json with extends by @justkey007 in justkey007/tsc-alias#240

Full Changelog: justkey007/tsc-alias@v1.8.13...v1.8.14

v1.8.13 (2025-03-29)

What's Changed

fix: latest version not compatible with node 20+ by @justkey007 in justkey007/tsc-alias#239

Full Changelog: justkey007/tsc-alias@v1.8.12...v1.8.13

v1.8.12 (2025-03-29)

What's Changed

fix: Don't replace .d.ts paths by @LukeAbby in justkey007/tsc-alias#234

CI/CD by @justkey007 in justkey007/tsc-alias#237

New Contributors

@LukeAbby made their first contribution in justkey007/tsc-alias#234

... (truncated)

Commits

d51d3e6 1.8.17
0b1a906 test: increase timeout for prepareSingleFileReplaceTscAliasPaths test
318b473 Merge pull request #257 from justkey007/dependabot/npm_and_yarn/minimatch-10.2.5
0f67a39 Merge pull request #258 from justkey007/_ci
9aa5362 test: fix prepareSingleFileReplaceTscAliasPaths test to use JS API instead of...
f450e74 chore: update tsconfig.json files in project14 packages to include compiler o...
14aa685 chore: add "skipLibCheck" option to tsconfig.json files in project14 and proj...
57d8c33 chore: add "skipLibCheck" option to tsconfig.json files across multiple projects
b8984a4 chore: update Node.js and pnpm versions in CI workflow
a435cd4 chore(deps): bump minimatch from 10.0.1 to 10.2.5
Additional commits viewable in compare view

Updates @defra/interactive-map from 0.0.22-alpha to 0.0.23-alpha

Release notes

Sourced from @defra/interactive-map's releases.

v0.0.23-alpha

What's Changed

ReverseGeocode check fix by @dannyleech in DEFRA/interactive-map#235

Labels additions by @dannyleech in DEFRA/interactive-map#238

Keyboard listbox by @dannyleech in DEFRA/interactive-map#239

Focus fixes to button and panels by @dannyleech in DEFRA/interactive-map#240

Calls setWorkerUrl instead of constructor prop fix by @dannyleech in DEFRA/interactive-map#242

Rename registerPatterns/registerSymbols as addPatterns/Symbols to map by @markfee in DEFRA/interactive-map#244

Moved the patternRegistry helper methods into patternRegistry by @markfee in DEFRA/interactive-map#248

Interact plugin contiguous prop removed by @dannyleech in DEFRA/interactive-map#249

Moved the symbolRegistry helpers into symbolRegistry by @markfee in DEFRA/interactive-map#251

Dependency updates centred around v0.0.20 of theme by @alexluckett in DEFRA/interactive-map#257

Pixel ratio is set in one place only by @markfee in DEFRA/interactive-map#255

Use theme v0.0.22 by @alexluckett in DEFRA/interactive-map#260

Selected state on style change fix by @dannyleech in DEFRA/interactive-map#259

Hints feature added by @dannyleech in DEFRA/interactive-map#262

Full Changelog: DEFRA/interactive-map@v0.0.22-alpha...v0.0.23-alpha

Commits

6937ad5 Feature/hint (#262)
564d226 Selected state on style chnage fix (#259)
54f1cf0 Merge pull request #260 from DEFRA/update-theme-v0.0.22
ad1b7bd Use theme v0.0.22
387b7fb IM-247 pixelRatio is set in one place only (#255)
f7b3f5c Merge pull request #257 from DEFRA/docs/update-theme-v20
07f2424 Move packages into devDependencies
4222668 Update docs theme to v0.0.20 with CSS fixes
f498750 IM-253 moved back addSymbolToMap
96c0b82 IM-246 - moved the symbolRegistry helpers into symbolRegistry (#251)
Additional commits viewable in compare view

Updates jsondiffpatch from 0.7.3 to 0.7.6

Commits

See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for jsondiffpatch since your current version.

Updates resolve from 1.22.11 to 1.22.12

Commits

d2d30de v1.22.12
655c3db [Fix] defaultPaths: handle null homedir gracefully
0cec52b [Fix] homedir: fix operator precedence bug with HOMEDRIVE/HOMEPATH concaten...
a93a913 [Fix] loadpkg: add missing return after error callback to prevent double-...
eeb965e [meta] update security policy to use GitHub PVR instead of Tidelift
7929ac1 [Test] add test from v2 branch
9fcaf60 [Refactor] use non-hoisted declarations instead of expressions
4c6db66 [Robustness] use es-errors
29bac90 [readme] replace runkit CI badge with shields.io check-runs badge
651f4d1 [Performance] avoid an unnecessary slice
Additional commits viewable in compare view

Updates serialize-javascript from 7.0.5 to 7.0.6

Release notes

Sourced from serialize-javascript's releases.

v7.0.6

What's Changed

build(deps-dev): bump lodash from 4.17.23 to 4.18.1 by @dependabot[bot] in yahoo/serialize-javascript#215

fix: reject spoofed URL objects with non-string toString() result by @redonkulus in yahoo/serialize-javascript#217

release: v7.0.6 by @okuryu in yahoo/serialize-javascript#221

Full Changelog: yahoo/serialize-javascript@v7.0.5...v7.0.6

Commits

153eb43 release: v7.0.6
a83d2cb fix: reject spoofed URL objects with non-string toString() result
451af65 build(deps-dev): bump lodash from 4.17.23 to 4.18.1 (#215)
See full diff in compare view

Updates nock from 14.0.11 to 14.0.15

Release notes

Sourced from nock's releases.

v14.0.15

14.0.15 (2026-05-07)

Bug Fixes

Revert "fix(backport): apply body delay before the response end" (#2973) (de5450c), closes #2969

v14.0.14

14.0.14 (2026-04-30)

Bug Fixes

backport: apply body delay before the response end (#2969) (215cd2a)

v14.0.13

14.0.13 (2026-04-20)

Bug Fixes

types: align Definition with runtime; add rawHeaders, drop headers (#2955) (07fbfab)

v14.0.12

14.0.12 (2026-04-05)

Bug Fixes

prevent crash when query params have conflicting dot-notation keys (#2958) (7ea9933)

Commits

de5450c fix: Revert "fix(backport): apply body delay before the response end" (#2973)
215cd2a fix(backport): apply body delay before the response end (#2969)
07fbfab fix(types): align Definition with runtime; add rawHeaders, drop headers (#2955)
fe2c3ea chore(deps-dev): bump lodash-es from 4.17.23 to 4.18.1 (#2961)
ee49b4f chore(deps-dev): bump flatted from 3.2.5 to 3.4.2
11bf183 chore(deps-dev): bump undici from 6.23.0 to 6.24.1 (#2954)
6b80154 chore(deps-dev): bump handlebars from 4.7.8 to 4.7.9 (#2960)
4cbf6cc chore(deps): bump tar and npm (#2952)
7ea9933 fix: prevent crash when query params have conflicting dot-notation keys (#2958)
d00d371 chore(deps): bump picomatch
Additional commits viewable in compare view

…dates Bumps the dependencies group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [slug](https://github.com/Trott/slug) | `11.0.0` | `11.0.1` | | [tsc-alias](https://github.com/justkey007/tsc-alias) | `1.8.11` | `1.8.17` | | [@defra/interactive-map](https://github.com/DEFRA/interactive-map) | `0.0.22-alpha` | `0.0.23-alpha` | | [jsondiffpatch](https://github.com/benjamine/jsondiffpatch) | `0.7.3` | `0.7.6` | | [resolve](https://github.com/browserify/resolve) | `1.22.11` | `1.22.12` | | [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `7.0.5` | `7.0.6` | | [nock](https://github.com/nock/nock) | `14.0.11` | `14.0.15` | Updates `slug` from 11.0.0 to 11.0.1 - [Changelog](https://github.com/Trott/slug/blob/main/CHANGELOG.md) - [Commits](Trott/slug@v11.0.0...v11.0.1) Updates `tsc-alias` from 1.8.11 to 1.8.17 - [Release notes](https://github.com/justkey007/tsc-alias/releases) - [Commits](justkey007/tsc-alias@v1.8.11...v1.8.17) Updates `@defra/interactive-map` from 0.0.22-alpha to 0.0.23-alpha - [Release notes](https://github.com/DEFRA/interactive-map/releases) - [Commits](DEFRA/interactive-map@v0.0.22-alpha...v0.0.23-alpha) Updates `jsondiffpatch` from 0.7.3 to 0.7.6 - [Release notes](https://github.com/benjamine/jsondiffpatch/releases) - [Commits](https://github.com/benjamine/jsondiffpatch/commits) Updates `resolve` from 1.22.11 to 1.22.12 - [Commits](browserify/resolve@v1.22.11...v1.22.12) Updates `serialize-javascript` from 7.0.5 to 7.0.6 - [Release notes](https://github.com/yahoo/serialize-javascript/releases) - [Commits](yahoo/serialize-javascript@v7.0.5...v7.0.6) Updates `nock` from 14.0.11 to 14.0.15 - [Release notes](https://github.com/nock/nock/releases) - [Changelog](https://github.com/nock/nock/blob/main/CHANGELOG.md) - [Commits](nock/nock@v14.0.11...v14.0.15) --- updated-dependencies: - dependency-name: "@defra/interactive-map" dependency-version: 0.0.23-alpha dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: jsondiffpatch dependency-version: 0.7.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: nock dependency-version: 14.0.15 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: resolve dependency-version: 1.22.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: serialize-javascript dependency-version: 7.0.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: slug dependency-version: 11.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: tsc-alias dependency-version: 1.8.17 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

sonarqubecloud · 2026-06-22T14:23:52Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 18, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/dependencies-4f7f41e6b0 branch 2 times, most recently from d8fd20a to e982b9b Compare June 19, 2026 11:37

dependabot Bot force-pushed the dependabot/npm_and_yarn/dependencies-4f7f41e6b0 branch from e982b9b to fabd24a Compare June 22, 2026 14:16

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the dependencies group across 1 directory with 7 updates#1507

build(deps): bump the dependencies group across 1 directory with 7 updates#1507
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/dependencies-4f7f41e6b0

dependabot Bot commented on behalf of github Jun 18, 2026 •

edited

Loading

Uh oh!

sonarqubecloud Bot commented Jun 22, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 18, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

11.0.1 (2025-10-13)

Bug Fixes

v1.8.17 (2025-04-30)

What's Changed

New Contributors

v1.8.16 (2025-05-05)

What's Changed

New Contributors

v1.8.15 (2025-04-10)

What's Changed

v1.8.14 (2025-04-08)

What's Changed

v1.8.13 (2025-03-29)

What's Changed

v1.8.12 (2025-03-29)

What's Changed

New Contributors

v0.0.23-alpha

What's Changed

v7.0.6

What's Changed

v14.0.15

14.0.15 (2026-05-07)

Bug Fixes

v14.0.14

14.0.14 (2026-04-30)

Bug Fixes

v14.0.13

14.0.13 (2026-04-20)

Bug Fixes

v14.0.12

14.0.12 (2026-04-05)

Bug Fixes

Uh oh!

sonarqubecloud Bot commented Jun 22, 2026

Quality Gate passed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Jun 18, 2026 •

edited

Loading