Skip to content

Bump picomatch from 4.0.3 to 4.0.4#1010

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/picomatch-2.3.2
Open

Bump picomatch from 4.0.3 to 4.0.4#1010
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/picomatch-2.3.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 1, 2026

Copy link
Copy Markdown

Bumps picomatch from 4.0.3 to 4.0.4.

Release notes

Sourced from picomatch's releases.

4.0.4

This is a security release fixing several security relevant issues.

What's Changed

Full Changelog: micromatch/picomatch@4.0.3...4.0.4

Commits

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies javascript Pull requests that update javascript code labels May 1, 2026
@dependabot dependabot Bot requested a review from paulshryock as a code owner May 1, 2026 03:21
@dependabot dependabot Bot added dependencies javascript Pull requests that update javascript code labels May 1, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/picomatch-2.3.2 branch 6 times, most recently from 6ca5cd3 to 13846b8 Compare May 8, 2026 06:08
@dependabot dependabot Bot changed the title Bump picomatch from 2.3.1 to 2.3.2 Bump picomatch from 4.0.3 to 4.0.4 May 8, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/picomatch-2.3.2 branch 5 times, most recently from a59062b to 5be20db Compare May 12, 2026 16:39
@dependabot dependabot Bot changed the title Bump picomatch from 4.0.3 to 4.0.4 Bump picomatch from 2.3.2 to 4.0.4 May 16, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/picomatch-2.3.2 branch 3 times, most recently from 8e649bb to e37bfa7 Compare May 19, 2026 08:57
@dependabot dependabot Bot changed the title Bump picomatch from 2.3.2 to 4.0.4 Bump picomatch from 4.0.3 to 4.0.4 May 23, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/picomatch-2.3.2 branch 5 times, most recently from ee4c36d to 32cc9d3 Compare May 27, 2026 05:30
Bumps [picomatch](https://github.com/micromatch/picomatch) from 4.0.3 to 4.0.4.
- [Release notes](https://github.com/micromatch/picomatch/releases)
- [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md)
- [Commits](micromatch/picomatch@4.0.3...4.0.4)

---
updated-dependencies:
- dependency-name: picomatch
  dependency-version: 2.3.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/picomatch-2.3.2 branch from 32cc9d3 to 85aedb4 Compare May 30, 2026 06:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants