Skip to content

chore(deps-dev): bump @metamask/eslint-config from 12.2.0 to 14.1.0#105

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/main/metamask/eslint-config-14.1.0
Closed

chore(deps-dev): bump @metamask/eslint-config from 12.2.0 to 14.1.0#105
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/main/metamask/eslint-config-14.1.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Nov 14, 2025

Copy link
Copy Markdown
Contributor

Bumps @metamask/eslint-config from 12.2.0 to 14.1.0.

Release notes

Sourced from @​metamask/eslint-config's releases.

14.1.0

@​metamask/eslint-config 14.1.0

Changed

  • Loosen promise/catch-or-return and promise/param-names rules (#384)

@​metamask/eslint-config-jest 14.1.0

Changed

  • Replace @typescript-eslint/unbound-method rule with jest/unbound-method in Jest tests (#391)
    • jest/unbound-method is looser than @typescript-eslint/unbound-method, so this should be a non-breaking change unless @typescript-eslint/unbound-method is disabled.
  • Remove jest/no-conditional-in-test rule (#383)

@​metamask/eslint-config-typescript 14.1.0

Added

  • Add support for TypeScript 5.6.x-5.8.x (#395)

Changed

  • Disable @typescript-eslint/no-unsafe-enum-comparison rule (#387)
  • Loosen @typescript-eslint/prefer-promise-reject-errors rule to allow rejecting with unknown (#389)
  • Loosen @typescript-eslint/naming-convention rule to allow more formats for import names (#388)
  • Loosen @typescript-eslint/switch-exhaustiveness-check rule to allow default case (#390)

14.0.0

@​metamask/eslint-config 14.0.0

Changed

  • BREAKING: Bump minimum Node.js version from 16 to 18.18 (#371)
  • BREAKING: Bump peer dependency on ESLint from ^8.57.0 to ^9.11.0 (#370)
    • ESLint 9 requires flat configs, so this change also rewrites the configs to use flat configs. The legacy config format is no longer supported.
  • BREAKING: Bump peer dependency on @metamask/eslint-config from ^13.0.0 to ^14.0.0 (#377)
  • BREAKING: Bump peer dependency on eslint-config-prettier from ^8.5.0 to ^9.1.0 (#370)
  • BREAKING: Bump peer dependency on eslint-plugin-import-x from ^0.5.1 to ^4.3.0 (#370)
  • BREAKING: Bump peer dependency on eslint-plugin-jsdoc from >=43.0.7 <48 to ^50.2.4 (#370)
  • BREAKING: Bump peer dependency on eslint-plugin-prettier from ^4.2.1 to ^5.2.1 (#370)
  • BREAKING: Bump peer dependency on eslint-plugin-promise from ^6.1.1 to ^7.1.0 (#370)
  • BREAKING: Bump peer dependency on prettier from ^2.7.1 to ^3.3.3 (#370)
  • BREAKING: Change package to be pure ESM (#370)
    • ESLint 9 supports ESM out-of-the-box, so this change updates the package to be pure ESM. This means that the package can no longer be used with CommonJS require syntax.

@​metamask/eslint-config-browser 14.0.0

Changed

  • BREAKING: Bump minimum Node.js version from 16 to 18.18 (#371)
  • BREAKING: Bump peer dependency on ESLint from ^8.57.0 to ^9.11.0 (#370)
    • ESLint 9 requires flat configs, so this change also rewrites the configs to

... (truncated)

Commits
  • a948d02 Release/14.1.0 (#421)
  • e3b8fa7 ci: Fix publish workflow (#420)
  • ddd0557 Revert "Release/14.1.0" (#419)
  • fe384a0 Release/14.1.0 (#411)
  • 26bae79 chore: Add dependency lint and fix lint issues (#412)
  • 6ac9442 chore: Update release documentation (#408)
  • e214271 chore: Update @metamask/create-release-branch to ^4.1.3 (#409)
  • cd9425a Revert "feat(typescript): Update type import specifier rules" (#407)
  • bf6fe5b Update codeowners to @MetaMask/core-platform (#406)
  • 773e3bf Bump vite from 5.4.18 to 5.4.19 in the npm_and_yarn group across 1 directory ...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note

Upgrade @metamask/eslint-config to ^15.0.0 across the monorepo and update yarn.lock to reflect new peer/dependency changes (e.g., @eslint/js, globals).

Written by Cursor Bugbot for commit 788d70c. This will update automatically on new commits. Configure here.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 14, 2025
@dependabot dependabot Bot requested a review from a team as a code owner November 14, 2025 06:26
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 14, 2025
@socket-security

socket-security Bot commented Nov 14, 2025

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Updated@​metamask/​eslint-config@​12.2.0 ⏵ 15.0.09910085 +391 +10100

View full report

@dependabot @github

dependabot Bot commented on behalf of github Dec 3, 2025

Copy link
Copy Markdown
Contributor Author

Dependabot could not find a dependency.. Because of this, Dependabot cannot update this pull request.

@jeffsmale90

Copy link
Copy Markdown
Collaborator

@dependabot rebase

@dependabot @github

dependabot Bot commented on behalf of github Dec 4, 2025

Copy link
Copy Markdown
Contributor Author

Dependabot could not find a dependency.. Because of this, Dependabot cannot update this pull request.

1 similar comment
@dependabot @github

dependabot Bot commented on behalf of github Dec 4, 2025

Copy link
Copy Markdown
Contributor Author

Dependabot could not find a dependency.. Because of this, Dependabot cannot update this pull request.

Bumps [@metamask/eslint-config](https://github.com/MetaMask/eslint-config) from 12.2.0 to 14.1.0.
- [Release notes](https://github.com/MetaMask/eslint-config/releases)
- [Commits](https://github.com/MetaMask/eslint-config/compare/@metamask/eslint-config@12.2.0...@metamask/eslint-config@14.1.0)

---
updated-dependencies:
- dependency-name: "@metamask/eslint-config"
  dependency-version: 14.1.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/main/metamask/eslint-config-14.1.0 branch from b8e549d to 788d70c Compare December 7, 2025 21:40
Comment thread package.json
"@lavamoat/preinstall-always-fail": "^2.1.1",
"@metamask/create-release-branch": "^4.1.1",
"@metamask/eslint-config": "^12.0.0",
"@metamask/eslint-config": "^15.0.0",

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Peer dependency mismatch breaks ESLint configuration installation

The @metamask/eslint-config is being updated to ^15.0.0 which requires eslint: ^9.11.0, but the project uses eslint: ^8.56.0. Additionally, @metamask/eslint-config-nodejs@12.1.0 and @metamask/eslint-config-typescript@12.1.0 both have peer dependency on @metamask/eslint-config: ^12.0.0, which is incompatible with version 15. The PR title also indicates updating to 14.1.0, but the actual version being installed is 15.0.0. Several other peer dependencies are also mismatched: eslint-config-prettier requires ^9.1.0 but project has ^8.5.0, and eslint-plugin-promise requires ^7.1.0 but project has ^6.1.1.

Additional Locations (2)

Fix in Cursor Fix in Web

@dependabot @github

dependabot Bot commented on behalf of github Dec 8, 2025

Copy link
Copy Markdown
Contributor Author

Superseded by #114.

@dependabot dependabot Bot closed this Dec 8, 2025
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/main/metamask/eslint-config-14.1.0 branch December 8, 2025 06:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants