Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Warning

These dependencies are deprecated:

Datasource	Name	Replacement PR?
npm	@types/markdown-table

Pending Approval

These branches will be created by Renovate only once you click their checkbox below.

• build(deps): update dependency @sindresorhus/is to v7
• build(deps): update dependency aggregate-error to v5
• build(deps): update dependency chalk to v5
• build(deps): update dependency detect-indent to v7
• build(deps): update dependency find-up to v7
• build(deps): update dependency got to v14
• build(deps): update dependency json-stringify-pretty-compact to v4
• build(deps): update dependency markdown-table to v3 (markdown-table, @types/markdown-table)
• build(deps): update dependency nanoid to v5
• build(deps): update dependency p-all to v5
• build(deps): update dependency p-map to v7
• build(deps): update dependency p-queue to v8
• build(deps): update dependency p-throttle to v6
• build(deps): update dependency url-join to v5
• build(deps): update remark (major) (remark, remark-github)
• chore(deps): update dependency @types/mdast to v4
• chore(deps): update dependency @types/unist to v3
• chore(deps): update dependency unified to v11
• chore(deps): update eslint monorepo to v9 (major) (@types/eslint, eslint)
• 🔐 Create all pending approval PRs at once 🔐

Awaiting Schedule

These updates are awaiting their schedule. Click on a checkbox to get an update now.

• build(deps): update aws-sdk-js-v3 monorepo to v3.637.0 (@aws-sdk/client-codecommit, @aws-sdk/client-ec2, @aws-sdk/client-ecr, @aws-sdk/client-rds, @aws-sdk/client-s3, @aws-sdk/credential-providers)
• docs: update references to renovate/renovate
• chore(deps): lock file maintenance

Pending Status Checks

These updates await pending status checks. To force their creation now, click the checkbox below.

• chore(deps): update dependency @swc/core to v1.7.14
• chore(deps): update dependency husky to v9.1.5
• chore(deps): update dependency nock to v13.5.5
• chore(deps): update dependency ts-jest to v29.2.5
• build(deps): update dependency @opentelemetry/semantic-conventions to v1.26.0
• build(deps): update dependency better-sqlite3 to v11.2.1
• build(deps): update dependency google-auth-library to v9.14.0
• build(deps): update dependency semantic-release to v24.1.0
• build(deps): update dependency tslib to v2.7.0
• chore(deps): update dependency type-fest to v4.25.0
• chore(deps): update pnpm to v9.8.0
• build(deps): update dependency git-url-parse to v15

Ignored or Blocked

These are blocked by an existing closed PR and will not be recreated unless you click a checkbox below.

• chore(deps): update dependency @openpgp/web-stream-tools to v0.1.3

Detected dependencies

dockerfile

.devcontainer/Dockerfile

• ghcr.io/containerbase/devcontainer 11.11.6

tools/docker/Dockerfile

• docker/dockerfile 1.9.0@sha256:fe40cf4e92cd0c467be2cfc30657a680ae2398318afd50b0c80585784c604f28
• ghcr.io/renovatebot/base-image 7.17.0@sha256:2f95402b323ee9baf582dd662c2919d957f37b8c5ed471102f63f2e9abfe6c22
• ghcr.io/renovatebot/base-image 7.17.0-full@sha256:83ea557d0f9996a442491aebe1a393c8793d0df1fa6f695d22e69dd0060dcc3d
• ghcr.io/renovatebot/base-image 7.17.0@sha256:2f95402b323ee9baf582dd662c2919d957f37b8c5ed471102f63f2e9abfe6c22

github-actions

.github/actions/calculate-prefetch-matrix/action.yml

• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9

.github/actions/setup-node/action.yml

• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• pnpm/action-setup v4.0.0@fe02b34f77f8bc703788d5817da081398fad5dd2
• actions/setup-node v4.0.3@1e60f620b9541d16bece96c5465dc8ee9832be0b
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• nick-fields/retry v3.0.0@7152eba30c6575329ac0576536151aca5a72780e
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9

.github/workflows/build.yml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• DavidAnson/markdownlint-cli2-action v16.0.0@b4c9feab76d8025d1e83c653fa3990936df0e6c8
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/cache v4.0.2@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9
• actions/upload-artifact v4.3.6@834a144ee995460fba8ed112a2fc961b36a5ec5a
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16
• codecov/codecov-action v4.5.0@e28ff129e5465c2c0dcc6f003fc735cb6ae0c673
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/upload-artifact v4.3.6@834a144ee995460fba8ed112a2fc961b36a5ec5a
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• pdm-project/setup-pdm v4.1@568ddd69406b30de1774ec0044b73ae06e716aa4
• actions/upload-artifact v4.3.6@834a144ee995460fba8ed112a2fc961b36a5ec5a
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• pnpm/action-setup v4.0.0@fe02b34f77f8bc703788d5817da081398fad5dd2
• actions/setup-node v4.0.3@1e60f620b9541d16bece96c5465dc8ee9832be0b
• actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16
• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• containerbase/internal-tools v3.4.7@8547f01d73522b44482b8757716e4e1d73cf3a66
• sigstore/cosign-installer v3.6.0@4959ce089c160fddf62f7b42464195ba1a56d382

.github/workflows/codeql-analysis.yml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• github/codeql-action v3.26.5@2c779ab0d087cd7fe7b826087247c2c81f27bfa6
• github/codeql-action v3.26.5@2c779ab0d087cd7fe7b826087247c2c81f27bfa6
• github/codeql-action v3.26.5@2c779ab0d087cd7fe7b826087247c2c81f27bfa6

.github/workflows/dependency-review.yml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/dependency-review-action v4.3.4@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c

.github/workflows/devcontainer.yml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• devcontainers/ci v0.3.1900000349@a56d055efecd725e8cfe370543b6071b79989cc8

.github/workflows/label-actions.yml

• dessant/label-actions v4.0.1@102faf474a544be75fbaf4df54e73d3c515a0e65

.github/workflows/lock.yml

• dessant/lock-threads v5.0.1@1bf7ec25051fe7c00bdd17e6a7cf3d7bfb7dc771

.github/workflows/mend-slack.yml

• slackapi/slack-github-action v1.26.0@70cd7be8e40a46e8b0eced40b0de447bdb42f68e

.github/workflows/scorecard.yml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• ossf/scorecard-action v2.4.0@62b2cac7ed8198b15735ed49ab1e5cf35480ba46
• actions/upload-artifact v4.3.6@834a144ee995460fba8ed112a2fc961b36a5ec5a
• github/codeql-action v3.26.5@2c779ab0d087cd7fe7b826087247c2c81f27bfa6

.github/workflows/trivy.yml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• aquasecurity/trivy-action 0.10.0@e5f43133f6e8736992c9f3c1b3296e24b37e17f2
• github/codeql-action v3.26.5@2c779ab0d087cd7fe7b826087247c2c81f27bfa6

.github/workflows/update-data.yml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332
• pnpm/action-setup v4.0.0@fe02b34f77f8bc703788d5817da081398fad5dd2
• actions/setup-node v4.0.3@1e60f620b9541d16bece96c5465dc8ee9832be0b
• peter-evans/create-pull-request v6.1.0@c5a7806660adbe173f04e3e038b0ccdcd758773c

.github/workflows/ws_scan.yaml

• actions/checkout v4.1.7@692973e3d937129bcbf40652eb9f2f61becf3332

npm

package.json

• @aws-sdk/client-codecommit 3.621.0
• @aws-sdk/client-ec2 3.621.0
• @aws-sdk/client-ecr 3.621.0
• @aws-sdk/client-rds 3.621.0
• @aws-sdk/client-s3 3.621.0
• @aws-sdk/credential-providers 3.621.0
• @breejs/later 4.2.0
• @cdktf/hcl2json 0.20.8
• @opentelemetry/api 1.9.0
• @opentelemetry/context-async-hooks 1.25.1
• @opentelemetry/exporter-trace-otlp-http 0.52.1
• @opentelemetry/instrumentation 0.52.1
• @opentelemetry/instrumentation-bunyan 0.40.0
• @opentelemetry/instrumentation-http 0.52.1
• @opentelemetry/resources 1.25.1
• @opentelemetry/sdk-trace-base 1.25.1
• @opentelemetry/sdk-trace-node 1.25.1
• @opentelemetry/semantic-conventions 1.25.1
• @qnighy/marshal 0.1.3
• @renovatebot/detect-tools 1.0.4
• @renovatebot/kbpgp 3.0.1
• @renovatebot/osv-offline 1.5.9
• @renovatebot/pep440 3.0.20
• @renovatebot/ruby-semver 3.0.23
• @sindresorhus/is 4.6.0
• @yarnpkg/core 4.1.2
• @yarnpkg/parsers 3.0.2
• agentkeepalive 4.5.0
• aggregate-error 3.1.0
• async-mutex 0.5.0
• auth-header 1.0.0
• aws4 1.13.1
• azure-devops-node-api 14.0.2
• bunyan 1.8.15
• cacache 18.0.4
• chalk 4.1.2
• changelog-filename-regex 2.0.1
• clean-git-ref 2.0.1
• commander 12.1.0
• conventional-commits-detector 1.0.3
• cron-parser 4.9.0
• cronstrue 2.50.0
• deepmerge 4.3.1
• dequal 2.0.3
• detect-indent 6.1.0
• diff 5.2.0
• editorconfig 2.0.0
• email-addresses 5.0.0
• emoji-regex 10.3.0
• emojibase 15.3.1
• emojibase-regex 15.3.2
• extract-zip 2.0.1
• find-packages 10.0.4
• find-up 5.0.0
• fs-extra 11.2.0
• git-url-parse 14.1.0
• github-url-from-git 1.5.0
• glob 11.0.0
• global-agent 3.0.0
• good-enough-parser 1.1.23
• google-auth-library 9.13.0
• got 11.8.6
• graph-data-structure 3.5.0
• handlebars 4.7.8
• ignore 5.3.2
• ini 4.1.3
• js-yaml 4.1.0
• json-dup-key-validator 1.0.3
• json-stringify-pretty-compact 3.0.0
• json5 2.2.3
• jsonata 2.0.5
• jsonc-parser 3.3.1
• klona 2.0.6
• luxon 3.5.0
• markdown-it 14.1.0
• markdown-table 2.0.0
• minimatch 10.0.1
• moo 0.5.2
• ms 2.1.3
• nanoid 3.3.7
• neotraverse 0.6.18
• node-html-parser 6.1.13
• p-all 3.0.0
• p-map 4.0.0
• p-queue 6.6.2
• p-throttle 4.1.1
• parse-link-header 2.0.0
• prettier 3.3.3
• redis 4.7.0
• remark 13.0.0
• remark-github 10.1.0
• safe-stable-stringify 2.4.3
• semver 7.6.3
• semver-stable 3.0.0
• semver-utils 1.1.4
• shlex 2.1.2
• simple-git 3.25.0
• slugify 1.6.6
• source-map-support 0.5.21
• toml-eslint-parser 0.10.0
• tslib 2.6.3
• upath 2.0.1
• url-join 4.0.1
• validate-npm-package-name 5.0.1
• vuln-vects 1.1.0
• xmldoc 1.3.0
• zod 3.23.8
• @hyrious/marshal 0.3.3
• @jest/environment 29.7.0
• @jest/globals 29.7.0
• @jest/reporters 29.7.0
• @jest/test-result 29.7.0
• @jest/types 29.6.3
• @ls-lint/ls-lint 2.2.3
• @openpgp/web-stream-tools 0.0.14
• @semantic-release/exec 6.0.3
• @swc/core 1.7.11
• @types/auth-header 1.0.6
• @types/aws4 1.11.6
• @types/better-sqlite3 7.6.11
• @types/breejs__later 4.1.5
• @types/bunyan 1.8.11
• @types/cacache 17.0.2
• @types/callsite 1.0.34
• @types/changelog-filename-regex 2.0.2
• @types/clean-git-ref 2.0.2
• @types/common-tags 1.8.4
• @types/conventional-commits-detector 1.0.2
• @types/diff 5.2.1
• @types/eslint 8.56.11
• @types/fs-extra 11.0.4
• @types/git-url-parse 9.0.3
• @types/github-url-from-git 1.5.3
• @types/global-agent 2.1.3
• @types/ini 4.1.1
• @types/js-yaml 4.0.9
• @types/json-dup-key-validator 1.0.2
• @types/linkify-markdown 1.0.3
• @types/lodash 4.17.7
• @types/luxon 3.4.2
• @types/markdown-it 14.1.2
• @types/markdown-table 2.0.0
• @types/marshal 0.5.3
• @types/mdast 3.0.15
• @types/moo 0.5.9
• @types/ms 0.7.34
• @types/node 20.16.1
• @types/parse-link-header 2.0.3
• @types/semver 7.5.8
• @types/semver-stable 3.0.2
• @types/semver-utils 1.1.3
• @types/tar 6.1.13
• @types/tmp 0.2.6
• @types/unist 2.0.11
• @types/url-join 4.0.3
• @types/validate-npm-package-name 4.0.2
• @types/xmldoc 1.1.9
• @typescript-eslint/eslint-plugin 8.2.0
• @typescript-eslint/parser 8.2.0
• aws-sdk-client-mock 4.0.1
• callsite 1.0.0
• common-tags 1.8.2
• conventional-changelog-conventionalcommits 8.0.0
• emojibase-data 15.3.2
• eslint 8.57.0
• eslint-formatter-gha 1.5.0
• eslint-import-resolver-typescript 3.6.1
• eslint-plugin-import 2.29.1
• eslint-plugin-jest 28.8.0
• eslint-plugin-jest-formatting 3.1.0
• eslint-plugin-promise 7.1.0
• eslint-plugin-typescript-enum 2.1.0
• expect 29.7.0
• expect-more-jest 5.5.0
• graphql 16.9.0
• husky 9.1.4
• jest 29.7.0
• jest-extended 4.0.2
• jest-mock 29.7.0
• jest-mock-extended 3.0.7
• jest-snapshot 29.7.0
• markdownlint-cli2 0.13.0
• memfs 4.11.1
• nock 13.5.4
• npm-run-all2 6.2.2
• nyc 17.0.0
• pretty-format 29.7.0
• rimraf 6.0.1
• semantic-release 24.0.0
• tar 7.4.3
• tmp-promise 3.0.3
• ts-jest 29.2.4
• ts-node 10.9.2
• type-fest 4.24.0
• typescript 5.5.4
• unified 9.2.2
• better-sqlite3 11.1.2
• openpgp 5.11.2
• re2 1.21.3
• node ^20.15.1
• pnpm ^9.0.0
• pnpm 9.7.1

tools/eslint/package.json

nvm

.nvmrc

• node 20.17.0

pep621

pyproject.toml

• mkdocs-material ==9.5.33
• mkdocs-awesome-pages-plugin ==2.9.3

pyenv

.python-version

• python 3.12.5

regex

docs/usage/configuration-options.md

docs/usage/docker.md

• renovate/renovate 38.39.6

docs/usage/examples/opentelemetry.md

• jaegertracing/all-in-one 1.60.0
• otel/opentelemetry-collector-contrib 0.107.0

docs/usage/examples/self-hosting.md

• renovate/renovate 38
• renovate/renovate 38.39
• renovate/renovate 38.39.6
• renovate/renovate 38.39.6
• renovate/renovate 38.39.6
• renovate/renovate 38.39.6
• renovate/renovate 38.39.6
• renovate/renovate 38.39.6
• renovate/renovate 38.39.6

docs/usage/release-notes-for-major-versions.md

• renovate/renovate 38-full

lib/modules/manager/azure-pipelines/readme.md

• ubuntu 24.04
• python 3.12@sha256:e3d5b6f95ce66923b5e48a06ee5755abb097de96a8617c3f2f7d431d48e63d35

readme.md

tools/docker/Dockerfile

• node 20.17.0

.github/workflows/build.yml

• pdm 2.18.1

lib/config/options/index.ts

• ghcr.io/containerbase/sidecar 11.11.6

---

• Check this box to trigger a request for Renovate to run again on this repository

[viceice]

Packages blocked by #9890, they are ESM only

• @sindresorhus/is v5
• aggregate-error v4
• cacheable-lookup v7
• chalk v5
• crypto-random-string to v4
• delay v6
• detect-indent v7
• find-up v6
• got v12
• json-stringify-pretty-compact v4
• markdown-table v3
• nanoid v4
• quick-lru v6
• p-all v4
• p-map v5
• p-queue v7
• p-throttle v5
• remark v10 (unified v14, remark-github v11)
• strip-ansi v7
• url-join v5

[HonkingGoose]

We have a deprecated dependency warning for @types/markdown-table. To get rid of this warning, we need to:

• Update markdown-table to v3 (ESM-only!)
• Drop the deprecated @types/markdown-table definitions, as markdown-table v3 includes the TypeScript types already

[viceice]

We have a deprecated dependency warning for @types/markdown-table. To get rid of this warning, we need to:

• Update markdown-table to v3 (ESM-only!)
• Drop the deprecated @types/markdown-table definitions, as markdown-table v3 includes the TypeScript types already

I know, we're still blocked from esm usage by some mend products