Combined PR for CG alerts fix and Dependabot PRs#3043
Merged
v-sharmachir merged 52 commits intomainfrom Apr 13, 2026
Merged
Conversation
Bumps [basic-ftp](https://github.com/patrickjuchli/basic-ftp) from 5.0.3 to 5.2.0. - [Release notes](https://github.com/patrickjuchli/basic-ftp/releases) - [Changelog](https://github.com/patrickjuchli/basic-ftp/blob/master/CHANGELOG.md) - [Commits](patrickjuchli/basic-ftp@v5.0.3...v5.2.0) --- updated-dependencies: - dependency-name: basic-ftp dependency-version: 5.2.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [commander](https://github.com/tj/commander.js) from 14.0.2 to 14.0.3. - [Release notes](https://github.com/tj/commander.js/releases) - [Changelog](https://github.com/tj/commander.js/blob/master/CHANGELOG.md) - [Commits](tj/commander.js@v14.0.2...v14.0.3) --- updated-dependencies: - dependency-name: commander dependency-version: 14.0.3 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [rimraf](https://github.com/isaacs/rimraf) from 6.0.1 to 6.1.3. - [Changelog](https://github.com/isaacs/rimraf/blob/main/CHANGELOG.md) - [Commits](isaacs/rimraf@v6.0.1...v6.1.3) --- updated-dependencies: - dependency-name: rimraf dependency-version: 6.1.3 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@crawlee/browser-pool](https://github.com/apify/crawlee) from 3.15.2 to 3.16.0. - [Release notes](https://github.com/apify/crawlee/releases) - [Changelog](https://github.com/apify/crawlee/blob/master/CHANGELOG.md) - [Commits](apify/crawlee@v3.15.2...v3.16.0) --- updated-dependencies: - dependency-name: "@crawlee/browser-pool" dependency-version: 3.16.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@crawlee/puppeteer](https://github.com/apify/crawlee) from 3.15.2 to 3.16.0. - [Release notes](https://github.com/apify/crawlee/releases) - [Changelog](https://github.com/apify/crawlee/blob/master/CHANGELOG.md) - [Commits](apify/crawlee@v3.15.2...v3.16.0) --- updated-dependencies: - dependency-name: "@crawlee/puppeteer" dependency-version: 3.16.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@opentelemetry/semantic-conventions](https://github.com/open-telemetry/opentelemetry-js) from 1.37.0 to 1.40.0. - [Release notes](https://github.com/open-telemetry/opentelemetry-js/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-js/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-js@semconv/v1.37.0...semconv/v1.40.0) --- updated-dependencies: - dependency-name: "@opentelemetry/semantic-conventions" dependency-version: 1.40.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [applicationinsights](https://github.com/microsoft/ApplicationInsights-node.js) from 3.12.0 to 3.14.0. - [Release notes](https://github.com/microsoft/ApplicationInsights-node.js/releases) - [Changelog](https://github.com/microsoft/ApplicationInsights-node.js/blob/main/CHANGELOG.md) - [Commits](microsoft/ApplicationInsights-node.js@3.12.0...3.14.0) --- updated-dependencies: - dependency-name: applicationinsights dependency-version: 3.14.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [flatted](https://github.com/WebReflection/flatted) from 3.3.1 to 3.4.2. - [Commits](WebReflection/flatted@v3.3.1...v3.4.2) --- updated-dependencies: - dependency-name: flatted dependency-version: 3.4.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [picomatch](https://github.com/micromatch/picomatch) from 2.3.0 to 2.3.2. - [Release notes](https://github.com/micromatch/picomatch/releases) - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md) - [Commits](micromatch/picomatch@2.3.0...2.3.2) --- updated-dependencies: - dependency-name: picomatch dependency-version: 2.3.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [convict](https://github.com/mozilla/node-convict) from 6.2.4 to 6.2.5. - [Changelog](https://github.com/mozilla/node-convict/blob/master/CHANGELOG.md) - [Commits](https://github.com/mozilla/node-convict/commits) --- updated-dependencies: - dependency-name: convict dependency-version: 6.2.5 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [handlebars](https://github.com/handlebars-lang/handlebars.js) from 4.7.8 to 4.7.9. - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.9/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.7.8...v4.7.9) --- updated-dependencies: - dependency-name: handlebars dependency-version: 4.7.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@xmldom/xmldom](https://github.com/xmldom/xmldom) from 0.8.6 to 0.8.12. - [Release notes](https://github.com/xmldom/xmldom/releases) - [Changelog](https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md) - [Commits](xmldom/xmldom@0.8.6...0.8.12) --- updated-dependencies: - dependency-name: "@xmldom/xmldom" dependency-version: 0.8.12 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@apify/log](https://github.com/apify/apify-shared-js) from 2.5.28 to 2.5.34. - [Release notes](https://github.com/apify/apify-shared-js/releases) - [Changelog](https://github.com/apify/apify-shared-js/blob/master/CHANGELOG.md) - [Commits](https://github.com/apify/apify-shared-js/compare/@apify/log@2.5.28...@apify/log@2.5.34) --- updated-dependencies: - dependency-name: "@apify/log" dependency-version: 2.5.34 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 8.51.0 to 8.58.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.58.0/packages/parser) --- updated-dependencies: - dependency-name: "@typescript-eslint/parser" dependency-version: 8.58.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [deep-equal-in-any-order](https://github.com/oprogramador/deep-equal-in-any-order) from 2.1.0 to 2.2.0. - [Commits](oprogramador/deep-equal-in-any-order@v2.1.0...v2.2.0) --- updated-dependencies: - dependency-name: deep-equal-in-any-order dependency-version: 2.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [azure-functions-core-tools](https://github.com/Azure/azure-functions-core-tools) from 4.6.0 to 4.9.0. - [Release notes](https://github.com/Azure/azure-functions-core-tools/releases) - [Changelog](https://github.com/Azure/azure-functions-core-tools/blob/main/release_notes.md) - [Commits](https://github.com/Azure/azure-functions-core-tools/commits) --- updated-dependencies: - dependency-name: azure-functions-core-tools dependency-version: 4.9.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@playwright/test](https://github.com/microsoft/playwright) from 1.57.0 to 1.59.1. - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](microsoft/playwright@v1.57.0...v1.59.1) --- updated-dependencies: - dependency-name: "@playwright/test" dependency-version: 1.59.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) from 3.30.0 to 3.33.0. - [Release notes](https://github.com/steveukx/git-js/releases) - [Changelog](https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md) - [Commits](https://github.com/steveukx/git-js/commits/simple-git@3.33.0/simple-git) --- updated-dependencies: - dependency-name: simple-git dependency-version: 3.33.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@azure/functions](https://github.com/Azure/azure-functions-nodejs-library) from 4.10.0 to 4.12.0. - [Release notes](https://github.com/Azure/azure-functions-nodejs-library/releases) - [Commits](https://github.com/Azure/azure-functions-nodejs-library/commits) --- updated-dependencies: - dependency-name: "@azure/functions" dependency-version: 4.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [puppeteer](https://github.com/puppeteer/puppeteer) from 24.34.0 to 24.40.0. - [Release notes](https://github.com/puppeteer/puppeteer/releases) - [Changelog](https://github.com/puppeteer/puppeteer/blob/main/CHANGELOG.md) - [Commits](puppeteer/puppeteer@puppeteer-v24.34.0...puppeteer-v24.40.0) --- updated-dependencies: - dependency-name: puppeteer dependency-version: 24.40.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@opentelemetry/instrumentation](https://github.com/open-telemetry/opentelemetry-js) from 0.208.0 to 0.214.0. - [Release notes](https://github.com/open-telemetry/opentelemetry-js/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-js/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-js@experimental/v0.208.0...experimental/v0.214.0) --- updated-dependencies: - dependency-name: "@opentelemetry/instrumentation" dependency-version: 0.214.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) from 29.0.0 to 29.0.2. - [Changelog](https://github.com/rollup/plugins/blob/master/packages/commonjs/CHANGELOG.md) - [Commits](https://github.com/rollup/plugins/commits/commonjs-v29.0.2/packages/commonjs) --- updated-dependencies: - dependency-name: "@rollup/plugin-commonjs" dependency-version: 29.0.2 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [webpack](https://github.com/webpack/webpack) from 5.104.1 to 5.105.4. - [Release notes](https://github.com/webpack/webpack/releases) - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md) - [Commits](webpack/webpack@v5.104.1...v5.105.4) --- updated-dependencies: - dependency-name: webpack dependency-version: 5.105.4 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [rollup](https://github.com/rollup/rollup) from 4.54.0 to 4.60.1. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v4.54.0...v4.60.1) --- updated-dependencies: - dependency-name: rollup dependency-version: 4.60.1 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
…ioninsights-3.14.0' into users/v-jitendjain/combined_dependabot_cg_PR
…browser-pool-3.16.0' into users/v-jitendjain/combined_dependabot_cg_PR
…h-2.3.2' into users/v-jitendjain/combined_dependabot_cg_PR
…3.4.2' into users/v-jitendjain/combined_dependabot_cg_PR
…6.2.5' into users/v-jitendjain/combined_dependabot_cg_PR
…rs-4.7.9' into users/v-jitendjain/combined_dependabot_cg_PR
…mldom-0.8.12' into users/v-jitendjain/combined_dependabot_cg_PR
…g-2.5.34' into users/v-jitendjain/combined_dependabot_cg_PR
…pt-eslint/parser-8.58.0' into users/v-jitendjain/combined_dependabot_cg_PR
…al-in-any-order-2.2.0' into users/v-jitendjain/combined_dependabot_cg_PR
…nctions-core-tools-4.9.0' into users/v-jitendjain/combined_dependabot_cg_PR
…ht/test-1.59.1' into users/v-jitendjain/combined_dependabot_cg_PR
…it-3.33.0' into users/v-jitendjain/combined_dependabot_cg_PR
…r-24.40.0' into users/v-jitendjain/combined_dependabot_cg_PR
…metry/instrumentation-0.214.0' into users/v-jitendjain/combined_dependabot_cg_PR
…lugin-commonjs-29.0.2' into users/v-jitendjain/combined_dependabot_cg_PR
…5.105.4' into users/v-jitendjain/combined_dependabot_cg_PR
….60.1' into users/v-jitendjain/combined_dependabot_cg_PR
…r-14.0.3' into users/v-jitendjain/combined_dependabot_cg_PR
…p-5.2.0' into users/v-jitendjain/combined_dependabot_cg_PR
Contributor
Author
|
/azp run |
homitc
approved these changes
Apr 10, 2026
lamaks
approved these changes
Apr 10, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This pull request updates various dependencies across multiple packages to keep them up-to-date with the latest versions, focusing primarily on devDependencies and some runtime dependencies. The changes are mostly minor version bumps for tools related to testing, linting, and core libraries, ensuring improved compatibility, security, and stability.
Dependency Updates
This PR addresses the fix from below multiple PRs.
This pull request updates dependencies across multiple packages to address security, compatibility, and performance improvements. Most changes are minor version bumps to keep the project up-to-date with the latest releases. The updates affect both development and production dependencies, including core libraries such as
lodash,puppeteer, and various build tools.Dependency Updates:
lodashto^4.18.0in all packages for security and bug fixes. [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]puppeteerto^24.40.0in relevant packages for improved browser automation support. [1] [2] [3] [4] [5] [6]rimrafto^6.1.3in all packages for file system cleanup tasks. [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14] [15] [16] [17] [18]Build and Tooling Updates:
@typescript-eslint/parser,commander,webpack,rollup, and@rollup/plugin-commonjs, to their latest minor or patch releases for improved development experience and compatibility. [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11]jest,ts-jest, and related test dependencies to maintain up-to-date testing infrastructure. [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14] [15]Production Dependency Updates:
applicationinsights,@apify/log,@crawlee/browser-pool,@crawlee/puppeteer,@opentelemetry/*, and other key dependencies to their latest compatible versions for improved observability, logging, and crawling capabilities. [1] [2] [3] [4] [5] [6] [7] [8] [9]package.jsonfor better resolution and security (brace-expansion,file-type).Other Dependency Bumps:
convict,deep-equal-in-any-order, and other utility libraries to latest versions for bug fixes and maintenance. [1] [2]These updates ensure the codebase remains secure, compatible with the latest ecosystem changes, and benefits from recent bug fixes and performance improvements. below Dependabot PRs are already merged into this branch and tested on dev VM environment.
#3000
#2994
#2978
#3042
#3041
#3040
#3039
#3038
#3037
#3036
#3035
#3034
#3031
#3028
#3025
#3023
#3022
#3021
#3020
#3013
#3012
#3011
#3007