Skip to content

build(deps): bump brace-expansion from 1.1.11 to 1.1.13 in /addons#1274

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/addons/brace-expansion-1.1.13
Open

build(deps): bump brace-expansion from 1.1.11 to 1.1.13 in /addons#1274
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/addons/brace-expansion-1.1.13

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 3, 2026
edited
Loading

Bumps brace-expansion from 1.1.11 to 1.1.13.

Release notes

Sourced from brace-expansion's releases.

v1.1.12

  • pkg: publish on tag 1.x c460dbd
  • fmt ccb8ac6
  • Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65) c3c73c8

juliangruber/brace-expansion@v1.1.11...v1.1.12

Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 3, 2026
@meta-cla meta-cla bot added the CLA Signed label Apr 3, 2026
@meta-codesync
Copy link
Copy Markdown

meta-codesync bot commented Apr 3, 2026

@facebook-github-bot has imported this pull request. If you are a Meta employee, you can view this in D99388092. (Because this pull request was imported automatically, there will not be any future comments.)

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/addons/brace-expansion-1.1.13 branch from ba676c2 to bc01c91 Compare April 3, 2026 04:23
@facebook-github-tools
Copy link
Copy Markdown

facebook-github-tools bot commented Apr 3, 2026

@dependabot[bot] has updated the pull request. You must reimport the pull request before landing.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/addons/brace-expansion-1.1.13 branch from bc01c91 to bc06e02 Compare April 7, 2026 17:56
@facebook-github-tools
Copy link
Copy Markdown

facebook-github-tools bot commented Apr 7, 2026

@dependabot[bot] has updated the pull request. You must reimport the pull request before landing.

@dependabot
build(deps): bump brace-expansion from 1.1.11 to 1.1.13 in /addons
c7dbe7e 
Bumps [brace-expansion](https://github.com/juliangruber/brace-expansion) from 1.1.11 to 1.1.13.
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](juliangruber/brace-expansion@1.1.11...v1.1.13)

---
updated-dependencies:
- dependency-name: brace-expansion
  dependency-version: 1.1.13
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/addons/brace-expansion-1.1.13 branch from bc06e02 to c7dbe7e Compare April 7, 2026 23:46
@facebook-github-tools
Copy link
Copy Markdown

facebook-github-tools bot commented Apr 7, 2026

@dependabot[bot] has updated the pull request. You must reimport the pull request before landing.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

CLA Signed dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants