Skip to content

build(deps): bump nodemailer and @types/nodemailer in /webui#927

Merged
github-actions[bot] merged 1 commit intodevelopfrom
dependabot/npm_and_yarn/webui/develop/multi-f20459af40
Apr 10, 2026
Merged

build(deps): bump nodemailer and @types/nodemailer in /webui#927
github-actions[bot] merged 1 commit intodevelopfrom
dependabot/npm_and_yarn/webui/develop/multi-f20459af40

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 10, 2026
edited
Loading

Bumps nodemailer and @types/nodemailer. These dependencies needed to be updated together.
Updates nodemailer from 8.0.4 to 8.0.5

Release notes

Sourced from nodemailer's releases.

v8.0.5

8.0.5 (2026-04-07)

Bug Fixes

  • decode SMTP server responses as UTF-8 at line boundary (95876b1)
  • sanitize CRLF in transport name option to prevent SMTP command injection (GHSA-vvjj-xcjg-gr5g) (0a43876)
Changelog

Sourced from nodemailer's changelog.

8.0.5 (2026-04-07)

Bug Fixes

  • decode SMTP server responses as UTF-8 at line boundary (95876b1)
  • sanitize CRLF in transport name option to prevent SMTP command injection (GHSA-vvjj-xcjg-gr5g) (0a43876)
Commits
  • 202cfb3 chore(master): release 8.0.5 (#1809)
  • b634abf docs: add CLAUDE.md with project conventions and release process
  • 95876b1 fix: decode SMTP server responses as UTF-8 at line boundary
  • 0a43876 fix: sanitize CRLF in transport name option to prevent SMTP command injection...
  • 08e59e6 chore: update dev dependencies
  • See full diff in compare view

Updates @types/nodemailer from 7.0.11 to 8.0.0

Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 10, 2026
@github-actions github-actions bot enabled auto-merge April 10, 2026 07:44
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 10, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/webui/develop/multi-f20459af40 branch from f06bd3a to 37960d9 Compare April 10, 2026 07:52
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 10, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/webui/develop/multi-f20459af40 branch from 37960d9 to 5fafc1b Compare April 10, 2026 07:59
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 10, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

@codecov
Copy link
Copy Markdown

codecov bot commented Apr 10, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 70.68%. Comparing base (20cc96d) to head (5fafc1b).
⚠️ Report is 4 commits behind head on develop.

Additional details and impacted files 
@@             Coverage Diff             @@
##           develop     #927      +/-   ##
===========================================
+ Coverage    70.66%   70.68%   +0.02%     
===========================================
  Files          479      479              
  Lines        43717    43717              
===========================================
+ Hits         30893    30903      +10     
+ Misses       10549    10540       -9     
+ Partials      2275     2274       -1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@dependabot
build(deps): bump nodemailer and @types/nodemailer in /webui
b7dd16e 
Bumps [nodemailer](https://github.com/nodemailer/nodemailer) and [@types/nodemailer](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/nodemailer). These dependencies needed to be updated together.

Updates `nodemailer` from 8.0.4 to 8.0.5
- [Release notes](https://github.com/nodemailer/nodemailer/releases)
- [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md)
- [Commits](nodemailer/nodemailer@v8.0.4...v8.0.5)

Updates `@types/nodemailer` from 7.0.11 to 8.0.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/nodemailer)

---
updated-dependencies:
- dependency-name: nodemailer
  dependency-version: 8.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: "@types/nodemailer"
  dependency-version: 8.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/webui/develop/multi-f20459af40 branch from 5fafc1b to b7dd16e Compare April 10, 2026 08:07
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 10, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

@github-actions github-actions bot merged commit 44897cb into develop Apr 10, 2026
6 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/webui/develop/multi-f20459af40 branch April 10, 2026 08:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code requires-manual-qa

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants