Skip to content

Bump sinon from 14.0.2 to 22.0.0 in /lib#492

Closed
dependabot[bot] wants to merge 3 commits into
mainfrom
dependabot/npm_and_yarn/lib/sinon-22.0.0
Closed

Bump sinon from 14.0.2 to 22.0.0 in /lib#492
dependabot[bot] wants to merge 3 commits into
mainfrom
dependabot/npm_and_yarn/lib/sinon-22.0.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 6, 2026
edited
Loading

Bumps sinon from 14.0.2 to 22.0.0.

Changelog

Sourced from sinon's changelog.

22.0.0

  • ed911df5 Update Ruby gems (Carl-Erik Kopseng)
  • 75a1e5b8 Update to Node 26 (Carl-Erik Kopseng)
  • 197d6608 Update documentation on faking timers to reflect the current state of fake-timers (Carl-Erik Kopseng)
  • c5ddf80b Update fake-timers@15.4: includes new Temporal API (Carl-Erik Kopseng)
  • f4ab02f6 Update updatable packages (Carl-Erik Kopseng)
  • 0536afc8 Quality: Global mutable call id can grow unbounded across long-lived processes (#2691) (tuanaiseo)
    • refactor: global mutable call id can grow unbounded across l

    callId is module-scoped and incremented on every invocation. In long-running test runners or embedded usage, this can grow indefinitely and eventually lose integer precision semantics for strict ordering comparisons.

    Affected files: proxy-invoke.js

    Signed-off-by: tuanaiseo 221258316+tuanaiseo@users.noreply.github.com

    • Wrap around for all values that are too high

    Signed-off-by: tuanaiseo 221258316+tuanaiseo@users.noreply.github.com Co-authored-by: Carl-Erik Kopseng carlerik@gmail.com

  • f4f7d93b Perform additional cleanup when calling callThrough() (#2670) (Cyrille)
  • 6199e9e4 improve GitHubworkflows by introducing zizmor for monitoring (#2686) (Till!)
    • fix(workflows): fetch-depth is for actions/checkout
    • chore(workflows): update
    • pin all actions to precise commits
    • avoid credential leakage from actions/checkout
    • group action updates going forward
    • add zimor config to ignore "secrets outside env"
    • add job to keep validating workflows
  • f7476b59 Use path.normalize() for path normalization (Carl-Erik Kopseng)
  • 2c975393 fix: make build and node test scripts cross-platform (laplace young)
  • a7692917 fix: isolate walk state from Object prototype (laplace young)
  • 66df977a Fix sinon.restore() cascade-restoring sub-sandboxes (#2704) (Charlie Leitheiser)

    The ESM port of createApi (#2683, shipped in 21.1.0) replaced createSandbox: createSandbox with a wrapper that pushes every newly-created sandbox into the root sandbox's fake collection:

... (truncated)

Commits
  • 52555af 22.0.0
  • ed911df Update Ruby gems
  • 75a1e5b Update to Node 26
  • 197d660 Update documentation on faking timers to reflect the current state of fake-ti...
  • c5ddf80 Update fake-timers@15.4: includes new Temporal API
  • f4ab02f Update updatable packages
  • 0536afc Quality: Global mutable call id can grow unbounded across long-lived processe...
  • f4f7d93 Perform additional cleanup when calling callThrough() (#2670)
  • 6199e9e improve GitHubworkflows by introducing zizmor for monitoring (#2686)
  • 1519009 Merge #2703: isolate walk state from Object prototype
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by fatso83, a new releaser for sinon since your current version.


Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
sinon [>= 19.0.a, < 19.1]
sinon [>= 18.0.a, < 18.1]
sinon [>= 17.0.a, < 17.1]
sinon [>= 16.1.a, < 16.2]
sinon [>= 20.0.a, < 20.1]
sinon [>= 21.0.a, < 21.1]
sinon [>= 21.1.a, < 21.2]

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 6, 2026
@dependabot dependabot Bot requested review from a team as code owners May 6, 2026 00:20
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 6, 2026
nev21
nev21 previously approved these changes May 8, 2026
View reviewed changes
@nev21
Copy link
Copy Markdown
Contributor

nev21 commented May 9, 2026

@dependabot recreate

@dependabot
Bump sinon from 14.0.2 to 22.0.0 in /lib
e47fc9f 
Bumps [sinon](https://github.com/sinonjs/sinon) from 14.0.2 to 22.0.0.
- [Release notes](https://github.com/sinonjs/sinon/releases)
- [Changelog](https://github.com/sinonjs/sinon/blob/main/docs/changelog.md)
- [Commits](sinonjs/sinon@v14.0.2...v22.0.0)

---
updated-dependencies:
- dependency-name: sinon
  dependency-version: 22.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/lib/sinon-22.0.0 branch from b3e82ed to e47fc9f Compare May 9, 2026 15:14
@nev21
Copy link
Copy Markdown
Contributor

nev21 commented May 9, 2026

@dependabot ignore this minor version

@dependabot dependabot Bot closed this May 9, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 9, 2026

OK, I won't notify you about version 22.0.x again, unless you re-open this PR.

@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/lib/sinon-22.0.0 branch May 9, 2026 15:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nev21 nev21 nev21 left review comments

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nev21 @nevware21-bot