Skip to content

chore(deps-dev): Bump the dev-dependencies group with 4 updates#130

Merged
sjnims merged 1 commit intomainfrom
dependabot/npm_and_yarn/dev-dependencies-36e8a0f7c6
Jan 12, 2026
Merged

chore(deps-dev): Bump the dev-dependencies group with 4 updates#130
sjnims merged 1 commit intomainfrom
dependabot/npm_and_yarn/dev-dependencies-36e8a0f7c6

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 12, 2026

Bumps the dev-dependencies group with 4 updates: @vitest/coverage-v8, @vitest/ui, typescript-eslint and vitest.

Updates @vitest/coverage-v8 from 4.0.16 to 4.0.17

Release notes

Sourced from @​vitest/coverage-v8's releases.

v4.0.17

   🚀 Experimental Features

   🐞 Bug Fixes

    View changes on GitHub
Commits

Updates @vitest/ui from 4.0.16 to 4.0.17

Release notes

Sourced from @​vitest/ui's releases.

v4.0.17

   🚀 Experimental Features

   🐞 Bug Fixes

    View changes on GitHub
Commits
  • dd54e94 chore: release v4.0.17
  • a36c3be refactor(browser): restructure screenshot matcher and add documentation (#9243)
  • dd03316 fix(ui): detect gzip by magic numbers instead of Content-Type header in html ...
  • See full diff in compare view

Updates typescript-eslint from 8.52.0 to 8.53.0

Release notes

Sourced from typescript-eslint's releases.

v8.53.0

8.53.0 (2026-01-12)

🚀 Features

  • eslint-plugin: [no-unused-vars] add a fixer to remove unused imports (#11922)
  • eslint-plugin: add rule [strict-void-return] (#9707)
  • project-service: allow passing Partial<ts.server.ServerHost> to project service (#11932)

🩹 Fixes

  • eslint-plugin: replace unclear "error typed" with more helpful description (#11704)
  • eslint-plugin: [no-useless-default-assignment] fix false positive for parameters corresponding to a rest parameter (#11916)
  • typescript-estree: forbid type-only import with both default and named specifiers (#11930)
  • typescript-estree: fix syntax check for using declaration (#11910)
  • typescript-estree: forbid invalid class implements (#11934)
  • typescript-estree: forbid invalid "import equals" declaration (#11936)
  • typescript-estree: forbid invalid extends and implements in interface declaration (#11935)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.53.0 (2026-01-12)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

Updates vitest from 4.0.16 to 4.0.17

Release notes

Sourced from vitest's releases.

v4.0.17

   🚀 Experimental Features

   🐞 Bug Fixes

    View changes on GitHub
Commits
  • dd54e94 chore: release v4.0.17
  • 59f92d4 fix(fsModuleCache): add importers alongside importedModules (#9423)
  • 751364e fix(fsModuleCache): don't store importers in cache (#9422)
  • 4b67fc2 fix: typo in browser.provider error (#9394)
  • 40841ff fix: handle null options in addEventHandler #9371 (#9372)
  • 200dadb fix(pool): handle worker start failures gracefully (#9337)
  • 1500654 fix(browser): support fileParallelism on an instance (#9328)
  • a8a8836 fix(pool): validate environment options when reusing the worker (#9349)
  • 7b10ab4 fix(typecheck): improve error message when tsc outputs help text (#9214)
  • 876cb84 feat: support TRACEPARENT and TRACESTATE environment variables for OpenTeleme...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps-dev): Bump the dev-dependencies group with 4 updates
a2eaf70 
Bumps the dev-dependencies group with 4 updates: [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8), [@vitest/ui](https://github.com/vitest-dev/vitest/tree/HEAD/packages/ui), [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest).


Updates `@vitest/coverage-v8` from 4.0.16 to 4.0.17
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.17/packages/coverage-v8)

Updates `@vitest/ui` from 4.0.16 to 4.0.17
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.17/packages/ui)

Updates `typescript-eslint` from 8.52.0 to 8.53.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.53.0/packages/typescript-eslint)

Updates `vitest` from 4.0.16 to 4.0.17
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.17/packages/vitest)

---
updated-dependencies:
- dependency-name: "@vitest/coverage-v8"
  dependency-version: 4.0.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: "@vitest/ui"
  dependency-version: 4.0.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: typescript-eslint
  dependency-version: 8.53.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: vitest
  dependency-version: 4.0.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file npm Pull requests that update npm dependencies labels Jan 12, 2026
@dependabot dependabot bot requested a review from sjnims as a code owner January 12, 2026 17:47
@dependabot dependabot bot added dependencies Pull requests that update a dependency file npm Pull requests that update npm dependencies labels Jan 12, 2026
@sjnims
Copy link
Owner

sjnims commented Jan 12, 2026

@claude Review this pull request for the cc-plugin-eval TypeScript evaluation framework.

        ## Context
        - Repository: ${{ github.repository }}
        - PR #${{ github.event.pull_request.number }}: ${{ github.event.pull_request.title }}
        - Author: ${{ github.event.pull_request.user.login }}
        - Dependencies: Already installed (node_modules available)

        ## Instructions
        1. Run `gh pr diff ${{ github.event.pull_request.number }}` to view the PR changes
        2. Run `npm run typecheck` to check for TypeScript errors
        3. Run `npm run lint` to check for ESLint issues
        4. Run `npx prettier --check "src/**/*.ts"` to verify formatting
        5. Review the changes against the criteria below
        6. Post a summary comment with your findings

        ## Review Criteria

        ### TypeScript Quality
        - No `any` types without justification
        - Proper error handling with typed errors
        - Imports use `.js` extension (ESM requirement)
        - Zod schemas updated if types change

        ### Architecture (4-Stage Pipeline)
        - **Stage 1 - Analysis** (`src/stages/1-analysis/`): Correct trigger extraction
        - **Stage 2 - Generation** (`src/stages/2-generation/`): LLM prompts well-structured
        - **Stage 3 - Execution** (`src/stages/3-execution/`): Proper Agent SDK usage
        - **Stage 4 - Evaluation** (`src/stages/4-evaluation/`): Programmatic detection preferred

        ### Code Patterns
        - Retry logic uses `src/utils/retry.ts`
        - Concurrency uses `src/utils/concurrency.ts`
        - Config validation uses Zod schemas
        - State management enables resume capability

        ### Testing
        - Tests added for new functionality
        - Tests updated for changed functionality
        - 80% coverage threshold maintained

        ### Documentation
        - CLAUDE.md updated if architecture changes
        - JSDoc comments for public APIs

        ## Output Format
        Post a PR comment with your review:
        1. **Summary**: One-line assessment (looks good / needs changes / has concerns)
        2. **What's Good**: Positive aspects of the PR
        3. **Suggestions**: Improvements or issues found (if any)
        4. **Checklist Verification**: Confirm key items are addressed

        Be constructive and helpful. Focus on significant issues, not nitpicks.

@claude
Copy link
Contributor

claude bot commented Jan 12, 2026
edited
Loading

Claude finished @sjnims's task in 1m 31s —— View job

PR Review: Dependency Updates

Summary: ✅ Looks good - safe to merge

This Dependabot PR updates 4 dev dependencies with bug fixes and minor improvements. All CI checks passed successfully.

What's Good

Clean Dependency Updates

  • All updates are patch/minor versions with no breaking changes
  • CI pipeline passed completely (tests, typecheck, lint, format, build)
  • Removes unnecessary istanbul-lib-source-maps dependency per upstream optimization

Vitest v4.0.17 Improvements

  • Multiple bug fixes for browser mode, coverage, and test runner
  • Better error handling (worker start failures, null options in event handlers)
  • Improved test behavior (respects nested test.only within describe.only)
  • Coverage improvements including removal of unused source map dependency

typescript-eslint v8.53.0 Improvements

  • New auto-fixer for removing unused imports in no-unused-vars rule
  • New strict-void-return rule available
  • Better error messages and syntax checking
  • Multiple false positive fixes

Review Checklist

TypeScript Quality ✅

  • No source code changes (only package.json/package-lock.json)
  • CI typecheck passed successfully

Architecture (4-Stage Pipeline) ✅

  • No changes to pipeline stages - dependency update only

Code Patterns ✅

  • No code changes - patterns remain unchanged

Testing ✅

  • All unit tests passed in CI
  • No test changes needed for dependency updates
  • Coverage thresholds maintained

Documentation ✅

  • No architecture changes requiring CLAUDE.md updates
  • Dependency updates are self-documenting via package.json

CI Verification

All CI jobs passed successfully:

Recommendation

Safe to merge. This PR contains routine dependency updates with bug fixes and improvements. The removal of istanbul-lib-source-maps is intentional (per vitest#9344) and reduces the dependency footprint.

No breaking changes, all tests pass, and the updates include quality-of-life improvements like the new auto-fixer for unused imports.

| Branch: dependabot/npm_and_yarn/dev-dependencies-36e8a0f7c6

sjnims
sjnims approved these changes Jan 12, 2026
View reviewed changes
Copy link
Owner

@sjnims sjnims left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

PR Review: chore(deps): bump dev-dependencies

Summary: ✅ Looks good - routine dev dependency updates

What's Good

  • Clean dependency updates: Updates typescript-eslint (8.52.0 → 8.53.0), @vitest/coverage-v8 (4.0.16 → 4.0.17), and related Vitest packages
  • All checks pass:
    • ✅ TypeScript compilation: No errors
    • ✅ Prettier formatting: All files properly formatted
    • ⚠️ ESLint: 4 warnings (pre-existing, not introduced by this PR)
  • No breaking changes: Minor version bumps only in dev dependencies
  • Package versions in sync: package.json and package-lock.json are consistent

Pre-existing ESLint Warnings (not from this PR)

The following warnings exist in the codebase and are unrelated to this dependency update:

  • src/stages/2-generation/index.ts: runGeneration exceeds line limit (158/150) and complexity (25/20)
  • src/stages/3-execution/session-batching.ts: executeBatch exceeds line limit (181/150)
  • src/stages/4-evaluation/index.ts: runEvaluation exceeds line limit (171/150)

Checklist Verification

Item Status
TypeScript quality ✅ No type errors
Code formatting ✅ Prettier passes
Linting ⚠️ Pre-existing warnings only
Lock file updated ✅ Consistent with package.json
No source code changes ✅ Only package files modified

🤖 Reviewed by Claude Code

@sjnims sjnims merged commit f731303 into main Jan 12, 2026
11 checks passed
@sjnims sjnims deleted the dependabot/npm_and_yarn/dev-dependencies-36e8a0f7c6 branch January 12, 2026 22:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sjnims sjnims sjnims approved these changes

Assignees

@sjnims sjnims

Labels

dependencies Pull requests that update a dependency file npm Pull requests that update npm dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sjnims