Skip to content

chore(deps): bump picomatch from 2.3.1 to 2.3.2#341

Merged
michael-valdron merged 1 commit intomainfrom
dependabot/npm_and_yarn/picomatch-2.3.2
Mar 27, 2026
Merged

chore(deps): bump picomatch from 2.3.1 to 2.3.2#341
michael-valdron merged 1 commit intomainfrom
dependabot/npm_and_yarn/picomatch-2.3.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 26, 2026
edited
Loading

Bumps picomatch from 2.3.1 to 2.3.2.

Release notes

Sourced from picomatch's releases.

2.3.2

This is a security release fixing several security relevant issues.

What's Changed

Full Changelog: micromatch/picomatch@2.3.1...2.3.2

Changelog

Sourced from picomatch's changelog.

Release history

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

  • Changelogs are for humans, not machines.
  • There should be an entry for every single version.
  • The same types of changes should be grouped.
  • Versions and sections should be linkable.
  • The latest version comes first.
  • The release date of each versions is displayed.
  • Mention whether you follow Semantic Versioning.

Changelog entries are classified using the following labels (from keep-a-changelog):

  • Added for new features.
  • Changed for changes in existing functionality.
  • Deprecated for soon-to-be removed features.
  • Removed for now removed features.
  • Fixed for any bug fixes.
  • Security in case of vulnerabilities.

4.0.0 (2024-02-07)

Fixes

Changed

3.0.1

Fixes

... (truncated)

Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 26, 2026
@openshift-ci openshift-ci bot requested review from Jdubrick and thepetk March 26, 2026 03:34
thepetk
thepetk approved these changes Mar 26, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@thepetk thepetk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/picomatch-2.3.2 branch from a0d31db to fbe955a Compare March 26, 2026 14:09
@openshift-ci openshift-ci bot removed the lgtm label Mar 26, 2026
@michael-valdron
Copy link
Copy Markdown
Member

michael-valdron commented Mar 27, 2026

@dependabot rebase

@dependabot
chore(deps): bump picomatch from 2.3.1 to 2.3.2
b6b3dbc 
Bumps [picomatch](https://github.com/micromatch/picomatch) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/micromatch/picomatch/releases)
- [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md)
- [Commits](micromatch/picomatch@2.3.1...2.3.2)

---
updated-dependencies:
- dependency-name: picomatch
  dependency-version: 2.3.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/picomatch-2.3.2 branch from fbe955a to b6b3dbc Compare March 27, 2026 22:23
@openshift-ci openshift-ci bot added the lgtm label Mar 27, 2026
@openshift-ci
Copy link
Copy Markdown

openshift-ci bot commented Mar 27, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dependabot[bot], michael-valdron, thepetk

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:
  • OWNERS [michael-valdron,thepetk]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@michael-valdron michael-valdron merged commit 30dd6c0 into main Mar 27, 2026
9 of 10 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/picomatch-2.3.2 branch March 27, 2026 23:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@thepetk thepetk thepetk approved these changes

@michael-valdron michael-valdron michael-valdron approved these changes

@Jdubrick Jdubrick Awaiting requested review from Jdubrick

Assignees

@thepetk thepetk

@michael-valdron michael-valdron

Labels

approved dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code lgtm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@michael-valdron @thepetk