Skip to content

chore(deps): bump brace-expansion from 2.0.2 to 2.0.3#2001

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/brace-expansion-2.0.3
Open

chore(deps): bump brace-expansion from 2.0.2 to 2.0.3#2001
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/brace-expansion-2.0.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 27, 2026
edited
Loading

Bumps brace-expansion from 2.0.2 to 2.0.3.

Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 27, 2026
@changeset-bot
Copy link
Copy Markdown

changeset-bot bot commented Mar 27, 2026
edited
Loading

⚠️ No Changeset found

Latest commit: 4e8419b

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@vercel
Copy link
Copy Markdown

vercel bot commented Mar 27, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
hyperdx-oss Error Error Apr 6, 2026 3:54pm

Request Review

@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Mar 27, 2026
edited
Loading

E2E Test Results

Error reading test results: ENOENT: no such file or directory, scandir 'all-test-results'

View full report →

@wrn14897 wrn14897 force-pushed the dependabot/npm_and_yarn/brace-expansion-2.0.3 branch from 0b092e8 to ced715b Compare April 1, 2026 04:18
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 1, 2026
edited
Loading

PR Review

✅ No critical issues found.

This is a routine dependabot security patch bumping brace-expansion from 2.0.2 → 2.0.3, backporting fix for GHSA-f886-m6hf-6m8v. Already approved by a maintainer — safe to merge.

@github-actions github-actions bot added the review/tier-1 Trivial — auto-merge candidate once CI passes label Apr 6, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 6, 2026
edited
Loading

🟢 Tier 1 — Trivial

Docs, images, lock files, or a dependency bump. No functional code changes detected.

Why this tier:

  • Bot author: dependabot[bot]

Review process: Auto-merge once CI passes. No human review required.
SLA: Resolves automatically.

Stats
  • Files changed: 1
  • Lines changed: 2
  • Branch: dependabot/npm_and_yarn/brace-expansion-2.0.3
  • Author: dependabot[bot]

To override this classification, remove the review/tier-1 label and apply a different review/tier-* label. Manual overrides are preserved on subsequent pushes.

@teeohhem
Copy link
Copy Markdown
Contributor

teeohhem commented Apr 6, 2026

@dependabot recreate

@dependabot
chore(deps): bump brace-expansion from 2.0.2 to 2.0.3
4e8419b 
Dependabot couldn't find the original pull request head commit, 0b092e8.
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/brace-expansion-2.0.3 branch from 65bb53a to 4e8419b Compare April 6, 2026 15:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wrn14897 wrn14897 wrn14897 approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code review/tier-1 Trivial — auto-merge candidate once CI passes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@teeohhem @wrn14897