Update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
@babel/core (source)	7.29.0 → 7.29.7			devDependencies	patch
@babel/eslint-parser (source)	7.28.6 → 7.29.7			devDependencies	minor
alpine	3.23.4 → 3.24.1			final	minor
axios (source)	1.16.1 → 1.18.0			resolutions	minor
axios (source)	1.16.1 → 1.18.0			dependencies	minor
js-yaml	4.1.1 → 4.2.0			dependencies	minor
mocha (source)	11.7.5 → 11.7.6			devDependencies	patch
nvuillam/github-dependents-info	v3.2.0 → v3.2.1			action	patch
prettier (source)	3.8.3 → 3.8.4			devDependencies	patch
uuid	14.0.0 → 14.0.1			dependencies	patch

---

Release Notes

babel/babel (@​babel/core)

v7.29.7

Compare Source

v7.29.7 (2026-05-25)

Re-release all packages with npm provenance attestations

v7.29.6

Compare Source

v7.29.6 (2026-05-25)

🐛 Bug Fix

• babel-generator
  • #​18014 Catchup source map position in preserveFormat (@​nicolo-ribaudo)
• babel-core
  • #​18001 [7.x packport]Improve input source map handling (@​JLHwung)
• babel-core, babel-generator
  • #​17998 Preserve original identifier names from input sourcemaps (#​17992) (@​Andarist)

Committers: 3

• Huáng Jùnliàng (@​JLHwung)
• Mateusz Burzyński (@​Andarist)
• Nicolò Ribaudo (@​nicolo-ribaudo)

axios/axios (axios)

v1.18.0

Compare Source

This release hardens redirect and URL handling, improves the validateStatus configuration semantics, and includes updates to documentation, dependencies, and release metadata.

v1.17.0

Compare Source

This release adds Node HTTP zstd decompression, hardens config and release workflows, and fixes authentication, header, proxy, and type-handling regressions.

nodeca/js-yaml (js-yaml)

v4.2.0

Compare Source

Added

• Added docs/safety.md with notes about processing untrusted YAML.
• Added maxDepth (100) loader option. Not a problem, but gives a better
  exception instead of RangeError on stack overflow.
• Added maxMergeSeqLength (20) loader option. Not a problem after merge fix,
  but an additional restriction for safety.
• Added sourcemaps to dist/ builds.

Changed

• Stop resolving numbers with underscores as numeric scalars, #​627.
• Switched dev toolchains to Vite / neostandard.
• Updated demo.
• Reorganized tests.
• dist/ files are no longer kept in the repository.

Fixed

• Fix parsing of properties on the first implicit block mapping key, #​62.
• Fix trailing whitespace handling when folding flow scalar lines, #​307.
• Reject top-level block scalars without content indentation, #​280.
• Ensure numbers survive round-trip, #​737.
• Fix test coverage for issue #​221.
• Fix flow scalar trailing whitespace folding, #​307.
• Fix digits in YAML named tag handles.

Security

• Fix potential DoS via quadratic complexity in merge - deduplicate repeated
  elements (makes sense for malformed files > 10K).

mochajs/mocha (mocha)

v11.7.6

Compare Source

🩹 Fixes

• make describe().timeout() work (aafe6fd)
• test: replace wmic usage with native Windows API (#​5694) (73ebdfa)

🧹 Chores

• format all code (#​5629) (0696784)
• remove Netlify (#​5630) (8d01d33)

nvuillam/github-dependents-info (nvuillam/github-dependents-info)

v3.2.1

Compare Source

What's Changed

• Upgrade dependencies

Pull Requests

• Update dependency numpy to v2.4.5 by @​renovate[bot] in #​1014
• Update all non-major dependencies by @​renovate[bot] in #​1017
• Update docker/setup-qemu-action digest to 0611638 by @​renovate[bot] in #​1039
• Update docker/login-action digest to 650006c by @​renovate[bot] in #​1026
• Update actions/checkout digest to df4cb1c by @​renovate[bot] in #​1057
• ⬆️ Bump platformdirs from 4.9.6 to 4.10.0 by @​dependabot[bot] in #​1044
• ⬆️ Bump actions/checkout from 6.0.2 to 6.0.3 by @​dependabot[bot] in #​1050
• ⬆️ Bump safety from 3.7.0 to 3.8.1 by @​dependabot[bot] in #​1049
• ⬆️ Bump docker/build-push-action from 7.1.0 to 7.2.0 by @​dependabot[bot] in #​1025
• ⬆️ Bump docker/setup-buildx-action from 4.0.0 to 4.1.0 by @​dependabot[bot] in #​1028
• ⬆️ Bump distlib from 0.4.0 to 0.4.3 by @​dependabot[bot] in #​1068
• ⬆️ Bump stevedore from 5.7.0 to 5.8.0 by @​dependabot[bot] in #​1022
• ⬆️ Bump ast-serialize from 0.3.0 to 0.5.0 by @​dependabot[bot] in #​1020
• Update all non-major dependencies by @​renovate[bot] in #​1071
• ⬆️ Update action versions in workflow files by @​nvuillam in #​1073
• [GitHub Dependents Info] Updated markdown file by @​github-actions[bot] in #​1012
• ⬆️ Bump pydantic-core from 2.46.4 to 2.47.0 by @​dependabot[bot] in #​1030
• ⬆️ Bump tqdm from 4.67.3 to 4.68.2 by @​dependabot[bot] in #​1063
• ⬆️ Bump joserfc from 1.6.5 to 1.7.1 by @​dependabot[bot] in #​1062
• ⬆️ Bump snowballstemmer from 3.0.1 to 3.1.1 by @​dependabot[bot] in #​1052
• ⬆️ Bump nvuillam/github-dependents-info from 7be385c to e86edaa by @​dependabot[bot] in #​1018

Full Changelog: nvuillam/github-dependents-info@v3.2.0...v3.2.1

prettier/prettier (prettier)

v3.8.4

Compare Source

diff

Markdown: Fix blank lines between list items and nested sub-lists being removed in Markdown/MDX (#​17746 by @​byplayer)

Prettier was removing blank lines between list items and their nested sub-lists, converting loose lists into tight lists and changing their semantic meaning.

<!-- Input -->
- a

  - b

- c

  - d

<!-- Prettier 3.8.3 -->
- a
  - b
- c
  - d

<!-- Prettier 3.8.4 -->
- a

  - b

- c

  - d

uuidjs/uuid (uuid)

v14.0.1

Compare Source

Bug Fixes

• add types condition to node export for moduleResolution bundler (#​961) (27ffae5)

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​babel/​eslint-parser@​7.28.6 ⏵ 7.29.7
	@​babel/​core@​7.29.0 ⏵ 7.29.7		+1	+1
	js-yaml@​4.1.1 ⏵ 4.2.0	-11	+2
	uuid@​14.0.0 ⏵ 14.0.1
	prettier@​3.8.3 ⏵ 3.8.4	+1		+1
	mocha@​11.7.5 ⏵ 11.7.6	+1		+1	+2
	axios@​1.16.1 ⏵ 1.18.0

View full report

[github-actions]

❌MegaLinter analysis: Error

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ DOCKERFILE	hadolint	1		0	0	0.03s
✅ GROOVY	npm-groovy-lint	10	3	0	0	23.72s
✅ JAVASCRIPT	prettier	100	100	0	0	4.94s
✅ JSON	jsonlint	9		0	0	0.28s
✅ JSON	npm-package-json-lint	yes		no	no	0.51s
✅ JSON	prettier	9	4	0	0	1.66s
✅ JSON	v8r	9		0	0	13.32s
⚠️ MARKDOWN	markdownlint	8	3	3	0	2.87s
✅ MARKDOWN	markdown-table-formatter	8	6	0	0	0.96s
✅ REPOSITORY	checkov	yes		no	no	16.88s
✅ REPOSITORY	gitleaks	yes		no	no	9.16s
✅ REPOSITORY	git_diff	yes		no	no	0.09s
❌ REPOSITORY	grype	yes		6	no	44.09s
✅ REPOSITORY	secretlint	yes		no	no	0.98s
❌ REPOSITORY	trivy	yes		1	no	5.8s
✅ REPOSITORY	trufflehog	yes		no	no	2.62s
✅ SPELL	cspell	140		0	0	8.02s
⚠️ SPELL	lychee	20		17	0	26.68s
✅ XML	xmllint	1	0	0	0	0.19s
✅ YAML	prettier	3	0	0	0	0.8s
✅ YAML	v8r	3		0	0	6.27s
✅ YAML	yamllint	3		0	0	0.64s

Detailed Issues

❌ REPOSITORY / grype - 6 errors

[0000]  WARN no explicit name and version provided for directory source, deriving artifact ID from the given path (which is not ideal) from=syft
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
error purl scheme is not "pkg": ""
NAME             INSTALLED  FIXED IN  TYPE          VULNERABILITY        SEVERITY  EPSS         RISK   
form-data        4.0.5      4.0.6     npm           GHSA-hmw2-7cc7-3qxx  High      0.3% (24th)  0.3    
brace-expansion  5.0.5      5.0.6     npm           GHSA-jxxr-4gwj-5jf2  Medium    0.2% (10th)  0.1    
logback-core     1.5.18     1.5.19    java-archive  GHSA-25qh-j22f-pwp8  Medium    0.2% (4th)   < 0.1  
logback-core     1.5.18     1.5.25    java-archive  GHSA-qqpg-mvqg-649v  Low       0.2% (4th)   < 0.1  
jackson-core     2.19.0     2.21.1    java-archive  GHSA-72hv-8253-57qq  Medium    N/A          N/A    
tar              7.5.13     7.5.16    npm           GHSA-vmf3-w455-68vh  Medium    N/A          N/A
[0044] ERROR discovered vulnerabilities at or above the severity threshold

❌ REPOSITORY / trivy - 1 error

2026-06-20T13:12:43Z	INFO	[vulndb] Need to update DB
2026-06-20T13:12:43Z	INFO	[vulndb] Downloading vulnerability DB...
2026-06-20T13:12:43Z	INFO	[vulndb] Downloading artifact...	repo="mirror.gcr.io/aquasec/trivy-db:2"
2.36 MiB / 97.02 MiB [->_____________________________________________________________] 2.43% ? p/s ?27.06 MiB / 97.02 MiB [----------------->___________________________________________] 27.89% ? p/s ?58.55 MiB / 97.02 MiB [------------------------------------>________________________] 60.35% ? p/s ?91.08 MiB / 97.02 MiB [-------------------------------------------->__] 93.88% 147.91 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 147.91 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 147.91 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 139.01 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 139.01 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 139.01 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 130.04 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 130.04 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 130.04 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 121.65 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 121.65 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 121.65 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 113.80 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 113.80 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [--------------------------------------------->] 100.00% 113.80 MiB p/s ETA 0s97.02 MiB / 97.02 MiB [-------------------------------------------------] 100.00% 27.76 MiB p/s 3.7s2026-06-20T13:12:47Z	INFO	[vulndb] Artifact successfully downloaded	repo="mirror.gcr.io/aquasec/trivy-db:2"
2026-06-20T13:12:47Z	INFO	[vuln] Vulnerability scanning is enabled
2026-06-20T13:12:47Z	INFO	[misconfig] Misconfiguration scanning is enabled
2026-06-20T13:12:47Z	INFO	[misconfig] Need to update the checks bundle
2026-06-20T13:12:47Z	INFO	[misconfig] Downloading the checks bundle...
165.46 KiB / 165.46 KiB [---------------------------------------------------------] 100.00% ? p/s 0s2026-06-20T13:12:49Z	INFO	Suppressing dependencies for development and testing. To display them, try the '--include-dev-deps' flag.
2026-06-20T13:12:49Z	INFO	Number of language-specific files	num=1
2026-06-20T13:12:49Z	INFO	[npm] Detecting vulnerabilities...
2026-06-20T13:12:49Z	INFO	Detected config files	num=1

Report Summary

┌───────────────────┬────────────┬─────────────────┬───────────────────┐
│      Target       │    Type    │ Vulnerabilities │ Misconfigurations │
├───────────────────┼────────────┼─────────────────┼───────────────────┤
│ package-lock.json │    npm     │        3        │         -         │
├───────────────────┼────────────┼─────────────────┼───────────────────┤
│ Dockerfile        │ dockerfile │        -        │         0         │
└───────────────────┴────────────┴─────────────────┴───────────────────┘
Legend:
- '-': Not scanned
- '0': Clean (no security findings detected)


For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in your project that you believe are not actually exploitable, consider issuing a VEX (Vulnerability Exploitability eXchange) statement.
VEX allows you to communicate the actual status of vulnerabilities in your project, improving security transparency and reducing false positives for your users.
Learn more and start using VEX: https://trivy.dev/v0.67/docs/supply-chain/vex/repo#publishing-vex-documents

To disable this notice, set the TRIVY_DISABLE_VEX_NOTICE environment variable.


package-lock.json (npm)
=======================
Total: 3 (UNKNOWN: 0, LOW: 0, MEDIUM: 2, HIGH: 1, CRITICAL: 0)

┌─────────────────┬────────────────┬──────────┬────────┬───────────────────┬─────────────────────┬────────────────────────────────────────────────────────────┐
│     Library     │ Vulnerability  │ Severity │ Status │ Installed Version │    Fixed Version    │                           Title                            │
├─────────────────┼────────────────┼──────────┼────────┼───────────────────┼─────────────────────┼────────────────────────────────────────────────────────────┤
│ brace-expansion │ CVE-2026-45149 │ MEDIUM   │ fixed  │ 5.0.5             │ 5.0.6               │ brace-expansion: brace-expansion: Denial of Service due to │
│                 │                │          │        │                   │                     │ excessive memory allocation when expanding...              │
│                 │                │          │        │                   │                     │ https://avd.aquasec.com/nvd/cve-2026-45149                 │
├─────────────────┼────────────────┼──────────┤        ├───────────────────┼─────────────────────┼────────────────────────────────────────────────────────────┤
│ form-data       │ CVE-2026-12143 │ HIGH     │        │ 4.0.5             │ 2.5.6, 3.0.5, 4.0.6 │ form-data is a library for creating readable               │
│                 │                │          │        │                   │                     │ multipart/form-data strea ...                              │
│                 │                │          │        │                   │                     │ https://avd.aquasec.com/nvd/cve-2026-12143                 │
├─────────────────┼────────────────┼──────────┤        ├───────────────────┼─────────────────────┼────────────────────────────────────────────────────────────┤
│ tar             │ CVE-2026-53655 │ MEDIUM   │        │ 7.5.13            │ 7.5.16              │ node-tar applies PAX size override to intermediary GNU     │
│                 │                │          │        │                   │                     │ long-name/long-link headers, causing tar...                │
│                 │                │          │        │                   │                     │ https://avd.aquasec.com/nvd/cve-2026-53655                 │
└─────────────────┴────────────────┴──────────┴────────┴───────────────────┴─────────────────────┴────────────────────────────────────────────────────────────┘

📣 Notices:
  - Version 0.71.2 of Trivy is now available, current version is 0.67.2

To suppress version checks, run Trivy scans with the --skip-version-check flag

⚠️ SPELL / lychee - 17 errors

[WARN ] Error creating request: InvalidPathToUri("/lib/java/logback.xml")
[403] https://www.npmjs.com/package/java-caller | Network error: Forbidden
[403] https://www.npmjs.com/package/amplitude | Network error: Forbidden
[403] https://nicolas.vuillamy.fr/a-groovy-journey-to-open-source-during-covid-19-npm-groovy-lint-8d88c7eecebc | Network error: Forbidden
[403] https://www.npmjs.com/package/java-caller | Error (cached)
[415] https://www.zlib.net/ | Network error: Unsupported Media Type
[403] https://npmjs.org/package/npm-groovy-lint | Network error: Forbidden
[403] https://www.npmjs.com/package/analytics | Network error: Forbidden
[403] https://www.npmjs.com/package/insight | Network error: Forbidden
[403] https://www.npmjs.com/package/analytics | Network error: Forbidden
[403] https://www.npmjs.com/package/java-caller | Error (cached)
[403] https://www.npmjs.com/package/insight | Error (cached)
[404] https://github.com/vafgoettlich/checkmk | Network error: Not Found
[403] https://nicolas.vuillamy.fr/a-groovy-journey-to-open-source-during-covid-19-npm-groovy-lint-8d88c7eecebc | Error (cached)
[403] https://www.npmjs.com/package/java-caller | Error (cached)
[403] https://www.npmjs.com/package/amplitude | Error (cached)
[403] https://npmjs.org/package/npm-groovy-lint | Error (cached)
[404] https://github.com/vafgoettlich | Network error: Not Found
[IGNORED] git+https://github.com/nvuillam/npm-groovy-lint.git | Unsupported: Error creating request client: builder error for url (git+https://github.com/nvuillam/npm-groovy-lint.git)
📝 Summary
---------------------
🔍 Total..........455
✅ Successful.....429
⏳ Timeouts.........0
🔀 Redirected.......0
👻 Excluded.........8
❓ Unknown..........0
🚫 Errors..........17

Errors in docs/github-dependents-info.md
[404] https://github.com/vafgoettlich/checkmk | Network error: Not Found
[404] https://github.com/vafgoettlich | Network error: Not Found

Errors in README.md
[403] https://nicolas.vuillamy.fr/a-groovy-journey-to-open-source-during-covid-19-npm-groovy-lint-8d88c7eecebc | Network error: Forbidden
[403] https://www.npmjs.com/package/amplitude | Network error: Forbidden
[403] https://npmjs.org/package/npm-groovy-lint | Network error: Forbidden
[403] https://www.npmjs.com/package/java-caller | Network error: Forbidden

Errors in docs/index.md
[403] https://www.npmjs.com/package/amplitude | Error (cached)
[403] https://npmjs.org/package/npm-groovy-lint | Error (cached)
[403] https://nicolas.vuillamy.fr/a-groovy-journey-to-open-source-during-covid-19-npm-groovy-lint-8d88c7eecebc | Error (cached)
[403] https://www.npmjs.com/package/java-caller | Error (cached)

Errors in CHANGELOG.md
[403] https://www.npmjs.com/package/java-caller | Error (cached)
[403] https://www.npmjs.com/package/analytics | Network error: Forbidden
[403] https://www.npmjs.com/package/insight | Network error: Forbidden

Errors in CONTRIBUTING.md
[415] https://www.zlib.net/ | Network error: Unsupported Media Type

Errors in docs/CHANGELOG.md
[403] https://www.npmjs.com/package/java-caller | Error (cached)
[403] https://www.npmjs.com/package/insight | Error (cached)
[403] https://www.npmjs.com/package/analytics | Network error: Forbidden

⚠️ MARKDOWN / markdownlint - 3 errors

docs/github-dependents-info.md:11:3 MD051/link-fragments Link fragments should be valid [Context: "[github.com/nvuillam/npm-groovy-lint](#package-github.comnvuillamnpm-groovy-lint)"]
docs/index.md:39:65 MD059/descriptive-link-text Link text should be descriptive [Context: "[**here**]"]
README.md:39:65 MD059/descriptive-link-text Link text should be descriptive [Context: "[**here**]"]

See detailed reports in MegaLinter artifacts

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert  (click "▶" to expand/collapse)
Warn		Obfuscated code: npm js-yaml is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package-lock.json → npm/js-yaml@4.2.0 ℹ Read more on: This package | This alert | What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/js-yaml@4.2.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report