Skip to content
This repository was archived by the owner on Feb 19, 2026. It is now read-only.

chore(deps): bump axios, zwave-js, @alcalzone/release-script, @alcalzone/release-script-plugin-iobroker and @iobroker/adapter-dev#1112

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/multi-78d47578e6
Closed

chore(deps): bump axios, zwave-js, @alcalzone/release-script, @alcalzone/release-script-plugin-iobroker and @iobroker/adapter-dev#1112
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/multi-78d47578e6

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Nov 17, 2025
edited
Loading

Bumps axios, zwave-js, @alcalzone/release-script, @alcalzone/release-script-plugin-iobroker and @iobroker/adapter-dev. These dependencies needed to be updated together.
Updates axios from 1.6.3 to 1.13.2

Release notes

Sourced from axios's releases.

Release v1.13.2

Release notes:

Bug Fixes

  • http: fix 'socket hang up' bug for keep-alive requests when using timeouts; (#7206) (8d37233)
  • http: use default export for http2 module to support stubs; (#7196) (0588880)

Performance Improvements

Contributors to this release

Release v1.13.1

Release notes:

Bug Fixes

  • http: fixed a regression that caused the data stream to be interrupted for responses with non-OK HTTP statuses; (#7193) (bcd5581)

Contributors to this release

Release v1.13.0

Release notes:

Bug Fixes

  • fetch: prevent TypeError when config.env is undefined (#7155) (015faec)
  • resolve issue #7131 (added spacing in mergeConfig.js) (#7133) (9b9ec98)

Features

Contributors to this release

... (truncated)

Changelog

Sourced from axios's changelog.

1.13.2 (2025-11-04)

Bug Fixes

  • http: fix 'socket hang up' bug for keep-alive requests when using timeouts; (#7206) (8d37233)
  • http: use default export for http2 module to support stubs; (#7196) (0588880)

Performance Improvements

Contributors to this release

1.13.1 (2025-10-28)

Bug Fixes

  • http: fixed a regression that caused the data stream to be interrupted for responses with non-OK HTTP statuses; (#7193) (bcd5581)

Contributors to this release

1.13.0 (2025-10-27)

Bug Fixes

  • fetch: prevent TypeError when config.env is undefined (#7155) (015faec)
  • resolve issue #7131 (added spacing in mergeConfig.js) (#7133) (9b9ec98)

Features

Contributors to this release

... (truncated)

Commits
  • 08b84b5 chore(release): v1.13.2 (#7207)
  • 8d37233 fix(http): fix 'socket hang up' bug for keep-alive requests when using timeou...
  • 12c314b perf(http): fix early loop exit; (#7202)
  • f6d79e7 chore(sponsor): update sponsor block (#7203)
  • 0588880 fix(http): use default export for http2 module to support stubs; (#7196)
  • 1ef8e72 chore(release): v1.13.1 (#7194)
  • bcd5581 fix(http): fixed a regression that caused the data stream to be interrupted f...
  • c9b3371 chore: enhance styling and responsiveness in client.html (#7173)
  • 9ead04d [Release] v1.13.0 (#7189)
  • d000fbf fix(http2): fix possible race condition when handling http2 stream on almost ...
  • Additional commits viewable in compare view

Updates zwave-js from 10.23.6 to 15.16.0

Release notes

Sourced from zwave-js's releases.

Release v15.16.0

Features

  • Config parameter values can now be marked as recommended and automatically be set during the interview (#8164, #8382)
  • Config parameters can now be marked as destructive, allowing applications to confirm before setting them (#8170)
  • Add API to enable more frequent background RSSI measurements (#8193)

Bugfixes

  • Battery CC reports with invalid levels are now discarded (#8404)

Config file changes

  • Add fingerprint to Kwikset HC-620 (#8371)
  • Add Zooz ZSE11 800LR (#8373)
  • Add version conditionals and correct parameters for Enbrighten 55258 (#8359)
  • Replace wrong troubleshooting link in 700 series firmware warning template (#8365)
  • Add Kwikset 918 (#8368)
  • Correct user code slot bit field for BE468ZP/BE469/BE469ZP (#8366)
  • Add parameters 3, 40 and 84 for Enbrighten 55258, firmware version 5.51 (#8357)

Changes under the hood

  • Updated several dependencies
  • The parser for conditional logic in configuration files has been rewritten from scratch instead of being generated (#8380)
  • Optimized some timed assertions in integration tests (#8349)

Release v15.15.3

Changes under the hood

  • Fixes an issue with loading the DB library when Z-Wave JS was bundled as CommonJS (#8356)

Release v15.15.2

Bugfixes

  • Fixes a rare issue with the cache serialization of certain values that could lead to out-of-memory crashes, often immediately or shortly after startup (#8353)

Config file changes

  • Add Namron 4512774 Remote Controller (#8335)

Release v15.15.1

Bugfixes

  • Fixed a warning in bundlers about an unexpected node:net import (#8343)
  • Fixed an issue where the device class of newly joined devices would not be persisted, causing legacy secure devices not to be automatically included with encryption (#8344)

Config file changes

  • Update parameters for HomeSeer WS300 (#8338)
  • Add Zooz ZEN78 High Power Relay (#8337)

Changes under the hood

  • Update several dependencies
  • Z-Wave JS now uses npm's trusted publishing (#8332, #8334)
  • The mock-server and integration tests can now simulate inclusion of devices, both insecure and with Security S0 (#8344)

Release v15.15.0

Features

... (truncated)

Changelog

Sourced from zwave-js's changelog.

15.16.0 (2025-11-04)

Features

  • Config parameter values can now be marked as recommended and automatically be set during the interview (#8164, #8382)
  • Config parameters can now be marked as destructive, allowing applications to confirm before setting them (#8170)
  • Add API to enable more frequent background RSSI measurements (#8193)

Bugfixes

  • Battery CC reports with invalid levels are now discarded (#8404)

Config file changes

  • Add fingerprint to Kwikset HC-620 (#8371)
  • Add Zooz ZSE11 800LR (#8373)
  • Add version conditionals and correct parameters for Enbrighten 55258 (#8359)
  • Replace wrong troubleshooting link in 700 series firmware warning template (#8365)
  • Add Kwikset 918 (#8368)
  • Correct user code slot bit field for BE468ZP/BE469/BE469ZP (#8366)
  • Add parameters 3, 40 and 84 for Enbrighten 55258, firmware version 5.51 (#8357)

Changes under the hood

  • Updated several dependencies
  • The parser for conditional logic in configuration files has been rewritten from scratch instead of being generated (#8380)
  • Optimized some timed assertions in integration tests (#8349)

15.15.3 (2025-10-15)

Changes under the hood

  • Fixes an issue with loading the DB library when Z-Wave JS was bundled as CommonJS (#8356)

15.15.2 (2025-10-14)

Bugfixes

  • Fixes a rare issue with the cache serialization of certain values that could lead to out-of-memory crashes, often immediately or shortly after startup (#8353)

Config file changes

  • Add Namron 4512774 Remote Controller (#8335)

15.15.1 (2025-10-08)

Bugfixes

  • Fixed a warning in bundlers about an unexpected node:net import (#8343)
  • Fixed an issue where the device class of newly joined devices would not be persisted, causing legacy secure devices not to be automatically included with encryption (#8344)

Config file changes

  • Update parameters for HomeSeer WS300 (#8338)
  • Add Zooz ZEN78 High Power Relay (#8337)

Changes under the hood

  • Update several dependencies
  • Z-Wave JS now uses npm's trusted publishing (#8332, #8334)
  • The mock-server and integration tests can now simulate inclusion of devices, both insecure and with Security S0 (#8344)

15.15.0 (2025-09-30)

Features

... (truncated)

Commits
  • abedcd2 chore: release v15.16.0
  • f08aad4 chore: update changelog
  • d146643 fix: reject Battery CC reports with invalid levels (#8404)
  • 767c09d chore(deps-dev): bump esbuild from 0.25.10 to 0.25.11 (#8397)
  • 6c97751 fix: rename driver option for auto config param setting (#8382)
  • e607ad1 chore: update config editor extension (#8381)
  • 752d25a feat: add recommendedValue field to the parameter config (#8164)
  • 35b5064 refactor: migrate config logic parser to hand-written implementation (#8380)
  • f97b9e0 chore: update dependencies (#8379)
  • c0e8799 chore: upgrade to Vitest v4 (#8378)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for zwave-js since your current version.


Updates @alcalzone/release-script from 3.5.9 to 3.8.0

Release notes

Sourced from @​alcalzone/release-script's releases.

Release v3.8.0

  • git plugin: allow to skip push stage via noPush option

Release v3.7.3

  • package plugin: Support monorepos managed with Yarn v4

Release v3.7.2

  • iobroker plugin: Fixed issue in changelog cleanup routine introduced in 3.7.1

Release v3.7.1

  • iobroker plugin: Detect more author names and @ mentions in the changelog

Release v3.7.0

  • Added -lf option to run the lock file update with the --force flag
  • Dependency upgrades

Release v3.6.0

  • git plugin: Add the --tagOnly flag to only create a tag without pushing the commit to the release branch.
Changelog

Sourced from @​alcalzone/release-script's changelog.

3.8.0 (2024-07-23)

  • git plugin: allow to skip push stage via noPush option

3.7.3 (2024-07-05)

  • package plugin: Support monorepos managed with Yarn v4

3.7.2 (2024-06-24)

  • iobroker plugin: Fixed issue in changelog cleanup routine introduced in 3.7.1

3.7.1 (2024-06-12)

  • iobroker plugin: Detect more author names and @ mentions in the changelog

3.7.0 (2023-11-29)

  • Added -lf option to run the lock file update with the --force flag
  • Dependency upgrades

3.6.0 (2023-07-03)

  • git plugin: Add the --tagOnly flag to only create a tag without pushing the commit to the release branch.
Commits

Updates @alcalzone/release-script-plugin-iobroker from 3.5.9 to 3.7.2

Release notes

Sourced from @​alcalzone/release-script-plugin-iobroker's releases.

Release v3.7.2

  • iobroker plugin: Fixed issue in changelog cleanup routine introduced in 3.7.1

Release v3.7.1

  • iobroker plugin: Detect more author names and @ mentions in the changelog

Release v3.7.0

  • Added -lf option to run the lock file update with the --force flag
  • Dependency upgrades

Release v3.6.0

  • git plugin: Add the --tagOnly flag to only create a tag without pushing the commit to the release branch.
Changelog

Sourced from @​alcalzone/release-script-plugin-iobroker's changelog.

3.7.2 (2024-06-24)

  • iobroker plugin: Fixed issue in changelog cleanup routine introduced in 3.7.1

3.7.1 (2024-06-12)

  • iobroker plugin: Detect more author names and @ mentions in the changelog

3.7.0 (2023-11-29)

  • Added -lf option to run the lock file update with the --force flag
  • Dependency upgrades

3.6.0 (2023-07-03)

  • git plugin: Add the --tagOnly flag to only create a tag without pushing the commit to the release branch.
Commits
  • 0ce8359 chore: release v3.7.2
  • 564ae9b fix: set unicode flag for author name regex (#170)
  • 74822d4 chore: release v3.7.1
  • 3c0c9fd Run workflows with node 20, dropped node 14 and 16 support (#169)
  • ee8c4b4 build: bump tar from 6.1.11 to 6.2.1 (#167)
  • 78a3509 build: bump @​babel/traverse from 7.17.3 to 7.24.1 (#163)
  • c5f0fdb build: bump ip from 1.1.5 to 1.1.9 (#164)
  • a7afb52 build: bump follow-redirects from 1.15.4 to 1.15.6 (#166)
  • 0ad727c build: bump follow-redirects from 1.15.3 to 1.15.4 (#157)
  • fe5aa0d fix: match non-ASCII author names and @ (#161)
  • Additional commits viewable in compare view

Updates @iobroker/adapter-dev from 1.2.0 to 1.5.0

Release notes

Sourced from @​iobroker/adapter-dev's releases.

Release v1.5.0

  • (@Apollon77/@​copilot) Add DeepL API support for higher quality translations. Set DEEPL_API_KEY environment variable to use DeepL as the preferred translation service. DeepL is prioritized over Google Translate when available.
  • (@Apollon77/@​copilot) Add remove-translations (rt) and remove-key (rk) commands for translation management. New commands allow removing translation keys from language files efficiently
  • (@Apollon77/@​copilot) Enhanced translation error messages for empty string keys with clearer error context and actionable guidance
  • (@Apollon77/@​copilot) Add --rebuild option to translate command for complete regeneration of translation files
  • (@Apollon77/@​copilot) Detect and preserve original indentation in JSON files during translation. Files using tab indentation or different space amounts are now preserved correctly instead of being converted to 4-space indentation.
  • (@Apollon77/@​copilot) Sort JSON keys alphabetically in all generated translation files
  • (@Apollon77/@​copilot) ESM support for TypeScript build format option. The --typescriptFormat option now accepts both cjs (CommonJS) and esm (ES modules) formats
  • (@Apollon77/@​copilot) Enhanced handling of rate limits for translations and persist as much progress as possible.

Release v1.4.0

  • (ticaki) rimraf replaced by by internal tool.
  • (hombach) change year to 2025
  • (hombach) Fix two vulnerabilities
  • (hombach) Bump dev dependencies
  • (hombach) add tests for node.js 22, remove node 16 tests
  • (@​GermanBluefox) Added convert command to convert old i18n structure to new one
  • (@​GermanBluefox) Packages were updated
  • (@​UncleSamSwiss) Change default path for translation JSON files to admin/i18n/en.json; the old path is still supported for existing repositories

Release v1.3.0

  • (kleinOr/Apollon77) Detects and keeps space indentation of io-package
  • (Steiger04) Fix handling of dot keys for esbuild
  • (Steiger04) Update esbuild and adjust watch mode
  • (Steiger04) process.env.NODE_ENV is now also available server side
Commits
  • 794bbcb chore: release v1.5.0
  • ee70cbb prepare release
  • 21def91 Add DeepL API support for higher quality translations (#367)
  • 7b36516 Stop translation attempts when rate-limited by Google Translate API and prese...
  • bc33748 changelog
  • f664fea Add remove-translations and remove-key commands for translation management (#...
  • e7568f6 Enhance translation error messages for empty string keys (#365)
  • b16a67f Migrate to ESLint 9 and @​iobroker/eslint-config (#363)
  • 6830f1e Add --rebuild option to translate command for complete regeneration of transl...
  • 4e80716 Detect and preserve original indentation in JSON files during translation (#356)
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
chore(deps): bump axios, zwave-js, @alcalzone/release-script, @alcalz…
0c60c75 
…one/release-script-plugin-iobroker and @iobroker/adapter-dev

Bumps [axios](https://github.com/axios/axios), [zwave-js](https://github.com/zwave-js/zwave-js), [@alcalzone/release-script](https://github.com/AlCalzone/release-script), [@alcalzone/release-script-plugin-iobroker](https://github.com/AlCalzone/release-script) and [@iobroker/adapter-dev](https://github.com/ioBroker/adapter-dev). These dependencies needed to be updated together.

Updates `axios` from 1.6.3 to 1.13.2
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.6.3...v1.13.2)

Updates `zwave-js` from 10.23.6 to 15.16.0
- [Release notes](https://github.com/zwave-js/zwave-js/releases)
- [Changelog](https://github.com/zwave-js/zwave-js/blob/master/CHANGELOG.md)
- [Commits](zwave-js/zwave-js@v10.23.6...v15.16.0)

Updates `@alcalzone/release-script` from 3.5.9 to 3.8.0
- [Release notes](https://github.com/AlCalzone/release-script/releases)
- [Changelog](https://github.com/AlCalzone/release-script/blob/master/CHANGELOG.md)
- [Commits](AlCalzone/release-script@v3.5.9...v3.8.0)

Updates `@alcalzone/release-script-plugin-iobroker` from 3.5.9 to 3.7.2
- [Release notes](https://github.com/AlCalzone/release-script/releases)
- [Changelog](https://github.com/AlCalzone/release-script/blob/master/CHANGELOG.md)
- [Commits](AlCalzone/release-script@v3.5.9...v3.7.2)

Updates `@iobroker/adapter-dev` from 1.2.0 to 1.5.0
- [Release notes](https://github.com/ioBroker/adapter-dev/releases)
- [Commits](ioBroker/adapter-dev@v1.2.0...v1.5.0)

---
updated-dependencies:
- dependency-name: axios
  dependency-version: 1.13.2
  dependency-type: direct:development
- dependency-name: zwave-js
  dependency-version: 15.16.0
  dependency-type: direct:production
- dependency-name: "@alcalzone/release-script"
  dependency-version: 3.8.0
  dependency-type: direct:development
- dependency-name: "@alcalzone/release-script-plugin-iobroker"
  dependency-version: 3.7.2
  dependency-type: direct:development
- dependency-name: "@iobroker/adapter-dev"
  dependency-version: 1.5.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 17, 2025
@dependabot dependabot Bot mentioned this pull request Nov 17, 2025
Closed
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Feb 10, 2026

Superseded by #1126.

@dependabot dependabot Bot closed this Feb 10, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/multi-78d47578e6 branch February 10, 2026 01:09
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

@AlCalzone AlCalzone

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@AlCalzone