Skip to content

Bump brace-expansion and wireit#1447

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-0d22d5acd8
Open

Bump brace-expansion and wireit#1447
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-0d22d5acd8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown
Contributor

Bumps brace-expansion and wireit. These dependencies needed to be updated together.
Updates brace-expansion from 4.0.1 to 5.0.6

Commits
Install script changes

This version adds prepare script that runs during installation. Review the package contents before updating.


Updates wireit from 0.14.12 to 0.14.13

Changelog

Sourced from wireit's changelog.

[0.14.13] - 2026-06-23

Added

  • Add WIREIT_WATCH=true as an environment-variable escape hatch for enabling watch mode when a package runner does not forward --watch.

Fixed

  • HTTP errors from the GitHub Actions cache service are no longer ever fatal, and should always continue gracefully with GitHub Actions caching temporarily disabled (previously only network errors and HTTP 429/503 errors failed gracefully).
Commits
  • df39b14 Fix some missed and accidental changes from PR #1439
  • 8b288d2 Update dependencies and documentation and release 0.14.13 (#1439)
  • f6ec092 feat(cli): accept WIREIT_WATCH as an escape hatch for --watch detection (#134...
  • 3ad0bbf Replace uvu with node:test (24/24) (#1433)
  • e4bb9e2 Fix npm audit vulnerabilities (#1432)
  • b9011ec Bump the minor-and-patch group across 1 directory with 4 updates (#1375)
  • 385c404 Bump diff from 5.2.0 to 5.2.2 (#1378)
  • ab04357 Bump lodash from 4.17.21 to 4.17.23 (#1379)
  • 391710c Convert 9 more tests to test:node (14/24) (#1369)
  • 6290df9 Convert watch test to node:test (4/24) (#1368)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [brace-expansion](https://github.com/juliangruber/brace-expansion) and [wireit](https://github.com/google/wireit). These dependencies needed to be updated together.

Updates `brace-expansion` from 4.0.1 to 5.0.6
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](juliangruber/brace-expansion@v4.0.1...v5.0.6)

Updates `wireit` from 0.14.12 to 0.14.13
- [Changelog](https://github.com/google/wireit/blob/main/CHANGELOG.md)
- [Commits](v0.14.12...v0.14.13)

---
updated-dependencies:
- dependency-name: brace-expansion
  dependency-version: 5.0.6
  dependency-type: indirect
- dependency-name: wireit
  dependency-version: 0.14.13
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 30, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants