Bump @mitre/saf from 1.5.1 to 1.5.2 #87

dependabot · 2025-12-11T01:03:22Z

Bumps @mitre/saf from 1.5.1 to 1.5.2.

Release notes

Sourced from @mitre/saf's releases.

1.5.2

What's New

dependency updates @Amndeep7 (#5714)

Npm trusted publishing @Amndeep7 (#5270)

upgrade marked from 16.3.0 to 16.4.0 @Amndeep7 (#5049)

Dependency Updates

build(deps-dev): Bump @aws-sdk/client-cloudfront from 3.947.0 to 3.948.0 @dependabot[bot] (#5750)

build(deps-dev): Bump caniuse-lite from 1.0.30001759 to 1.0.30001760 @dependabot[bot] (#5751)

build(deps-dev): Bump @aws-sdk/client-s3 from 3.947.0 to 3.948.0 @dependabot[bot] (#5749)

build(deps): Bump @aws-sdk/client-securityhub from 3.947.0 to 3.948.0 @dependabot[bot] (#5752)

build(deps): Bump @mitre/heimdall-lite from 2.12.3 to 2.12.4 @dependabot[bot] (#5747)

build(deps): Bump @aws-sdk/client-config-service from 3.947.0 to 3.948.0 @dependabot[bot] (#5748)

build(deps): Bump inspecjs from 2.12.3 to 2.12.4 @dependabot[bot] (#5746)

build(deps): Bump winston from 3.18.3 to 3.19.0 @dependabot[bot] (#5745)

build(deps): Bump @types/node from 24.10.1 to 24.10.2 @dependabot[bot] (#5734)

build(deps): Bump @aws-sdk/client-securityhub from 3.946.0 to 3.947.0 @dependabot[bot] (#5735)

build(deps-dev): Bump jsdom from 27.2.0 to 27.3.0 @dependabot[bot] (#5743)

build(deps-dev): Bump vite from 7.2.6 to 7.2.7 @dependabot[bot] (#5740)

build(deps-dev): Bump @asamuzakjp/dom-selector from 6.7.5 to 6.7.6 @dependabot[bot] (#5732)

build(deps-dev): Bump baseline-browser-mapping from 2.9.3 to 2.9.5 @dependabot[bot] (#5731)

build(deps-dev): Bump typescript-eslint from 8.48.1 to 8.49.0 @dependabot[bot] (#5744)

build(deps-dev): Bump cssstyle from 5.3.3 to 5.3.4 @dependabot[bot] (#5741)

build(deps-dev): Bump @typescript-eslint/eslint-plugin from 8.48.1 to 8.49.0 @dependabot[bot] (#5737)

build(deps-dev): Bump @aws-sdk/client-cloudfront from 3.946.0 to 3.947.0 @dependabot[bot] (#5742)

build(deps): Bump @aws-sdk/client-config-service from 3.946.0 to 3.947.0 @dependabot[bot] (#5738)

build(deps-dev): Bump @typescript-eslint/parser from 8.48.1 to 8.49.0 @dependabot[bot] (#5730)

build(deps-dev): Bump oclif from 4.22.52 to 4.22.54 @dependabot[bot] (#5733)

build(deps-dev): Bump @aws-sdk/client-s3 from 3.946.0 to 3.947.0 @dependabot[bot] (#5739)

build(deps-dev): Bump expect-type from 1.2.2 to 1.3.0 @dependabot[bot] (#5729)

build(deps-dev): Bump electron-to-chromium from 1.5.266 to 1.5.267 @dependabot[bot] (#5728)

build(deps): Bump @aws-sdk/client-config-service from 3.943.0 to 3.946.0 @dependabot[bot] (#5727)

build(deps-dev): Bump @aws-sdk/client-s3 from 3.943.0 to 3.946.0 @dependabot[bot] (#5725)

build(deps-dev): Bump electron-to-chromium from 1.5.265 to 1.5.266 @dependabot[bot] (#5723)

build(deps): Bump @aws-sdk/client-securityhub from 3.943.0 to 3.946.0 @dependabot[bot] (#5726)

build(deps-dev): Bump baseline-browser-mapping from 2.9.2 to 2.9.3 @dependabot[bot] (#5724)

build(deps-dev): Bump @aws-sdk/client-cloudfront from 3.943.0 to 3.946.0 @dependabot[bot] (#5722)

build(deps): Bump @azure/msal-browser from 4.26.2 to 4.27.0 @dependabot[bot] (#5719)

build(deps-dev): Bump @acemir/cssom from 0.9.24 to 0.9.26 @dependabot[bot] (#5716)

build(deps): Bump jsonwebtoken from 9.0.2 to 9.0.3 @dependabot[bot] (#5720)

build(deps): Bump @azure/msal-node from 3.8.3 to 3.8.4 @dependabot[bot] (#5721)

build(deps-dev): Bump baseline-browser-mapping from 2.9.0 to 2.9.2 @dependabot[bot] (#5717)

build(deps-dev): Bump electron-to-chromium from 1.5.264 to 1.5.265 @dependabot[bot] (#5718)

build(deps-dev): Bump update-browserslist-db from 1.2.1 to 1.2.2 @dependabot[bot] (#5715)

build(deps-dev): Bump browserslist from 4.28.0 to 4.28.1 @dependabot[bot] (#5706)

build(deps): Bump jws from 3.2.2 to 3.2.3 @dependabot[bot] (#5713)

build(deps-dev): Bump electron-to-chromium from 1.5.263 to 1.5.264 @dependabot[bot] (#5708)

build(deps-dev): Bump update-browserslist-db from 1.1.4 to 1.2.1 @dependabot[bot] (#5702)

build(deps): Bump @smithy/middleware-retry from 4.4.13 to 4.4.14 @dependabot[bot] (#5709)

... (truncated)

Commits

b8f0348 prep for 1.5.2
bfa6528 Merge pull request #5750 from mitre/dependabot/npm_and_yarn/aws-sdk/client-cl...
d4977a6 build(deps-dev): Bump @aws-sdk/client-cloudfront from 3.947.0 to 3.948.0
b8bd17e Merge pull request #5751 from mitre/dependabot/npm_and_yarn/caniuse-lite-1.0....
9879041 build(deps-dev): Bump caniuse-lite from 1.0.30001759 to 1.0.30001760
bd005bd Merge pull request #5749 from mitre/dependabot/npm_and_yarn/aws-sdk/client-s3...
2dd63d3 build(deps-dev): Bump @aws-sdk/client-s3 from 3.947.0 to 3.948.0
bfd562c Merge pull request #5752 from mitre/dependabot/npm_and_yarn/aws-sdk/client-se...
39bad93 build(deps): Bump @aws-sdk/client-securityhub from 3.947.0 to 3.948.0
37a8396 Merge pull request #5747 from mitre/dependabot/npm_and_yarn/mitre/heimdall-li...
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @mitre/saf since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@mitre/saf](https://github.com/mitre/saf) from 1.5.1 to 1.5.2. - [Release notes](https://github.com/mitre/saf/releases) - [Changelog](https://github.com/mitre/saf/blob/main/release-prep.ps1) - [Commits](mitre/saf@1.5.1...1.5.2) --- updated-dependencies: - dependency-name: "@mitre/saf" dependency-version: 1.5.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Dec 11, 2025

github-actions bot approved these changes Dec 11, 2025

View reviewed changes

github-actions bot merged commit 06bb1e9 into main Dec 11, 2025
3 of 6 checks passed

dependabot bot deleted the dependabot/npm_and_yarn/mitre/saf-1.5.2 branch December 11, 2025 01:03

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump @mitre/saf from 1.5.1 to 1.5.2 #87

Bump @mitre/saf from 1.5.1 to 1.5.2 #87

Uh oh!

dependabot bot commented on behalf of github Dec 11, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Bump @mitre/saf from 1.5.1 to 1.5.2 #87

Bump @mitre/saf from 1.5.1 to 1.5.2 #87

Uh oh!

Conversation

dependabot bot commented on behalf of github Dec 11, 2025

1.5.2

What's New

Dependency Updates

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant