Skip to content

build(deps): bump node-email-verifier from 3.4.1 to 4.0.0 #122

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
BaseMax merged 1 commit into from
Dec 2, 2025
Merged

build(deps): bump node-email-verifier from 3.4.1 to 4.0.0 #122

BaseMax merged 1 commit into from
Dec 2, 2025
+11 −11

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 2, 2025

Bumps node-email-verifier from 3.4.1 to 4.0.0.

Release notes

Sourced from node-email-verifier's releases.

4.0.0

🚨 BREAKING CHANGE

Minimum Node.js version is now 20.0.0 (previously 18.0.0)

Node.js 18 reached End of Life on April 30, 2025 (206 days ago). This release drops support for Node 18 and requires Node 20.0.0 or higher.

Migration Guide

Users on Node 18 should upgrade to:

  • Node 20 LTS (recommended, supported until April 2026)
  • Node 22 LTS (supported until October 2027)
  • Node 24 (current release)

No code changes required. Simply upgrade your Node.js version.

What's Changed

Node.js Requirement

  • ⚠️ Minimum version: 18.0.0 → 20.0.0
  • CI matrix: Removed 18.x, now tests [20.x, 22.x, 24.x]
  • Reason: Node 18 EOL + enables modern dependencies

NPM Dependencies Updated (15 packages)

Major updates requiring Node 20+:

  • markdownlint: 0.38.0 → 0.39.0
  • markdownlint-cli2: 0.18.1 → 0.19.1 (requires globby@15 which needs Node 20+)

Other dev dependency updates:

  • @types/node: 24.0.3 → 24.10.1
  • @typescript-eslint/eslint-plugin: 8.34.0 → 8.47.0
  • @typescript-eslint/parser: 8.34.0 → 8.47.0
  • eslint: 9.29.0 → 9.39.1
  • jest: 30.0.2 → 30.2.0
  • prettier: 3.5.3 → 3.6.2
  • typescript: 5.2.2 → 5.9.3
  • And 6 more packages

GitHub Actions Updated (5 actions, 6 workflows)

  • actions/checkout: v4 → v5
  • actions/setup-node: v4 → v6
  • github/codeql-action: v3 → v4
  • actions/github-script: v7 → v8

Security Updates

This release addresses:

  • validator 13.15.15 → 13.15.20 (CVE-2025-56200)
  • js-yaml 4.1.0 → 4.1.1 (Prototype pollution)

... (truncated)

Changelog

Sourced from node-email-verifier's changelog.

[4.0.0] - 2025-12-01

BREAKING CHANGES

  • Minimum Node.js version is now 20.0.0 (previously 18.0.0)
    • Node.js 18 reached End of Life on April 30, 2025
    • Updated CI workflows to test on Node 20.x, 22.x, and 24.x only
    • Enables modern tooling and dependencies that require Node 20+

Changed

  • Updated all dev dependencies to latest versions:

    • @typescript-eslint/eslint-plugin: 8.34.0 → 8.47.0
    • @typescript-eslint/parser: 8.34.0 → 8.47.0
    • eslint: 9.29.0 → 9.39.1
    • eslint-config-prettier: 10.1.5 → 10.1.8
    • eslint-plugin-prettier: 5.4.1 → 5.5.4
    • jest: 30.0.2 → 30.2.0
    • lint-staged: 16.1.2 → 16.2.7
    • markdownlint: 0.38.0 → 0.39.0
    • markdownlint-cli2: 0.18.1 → 0.19.1
    • prettier: 3.5.3 → 3.6.2
    • ts-jest: 29.4.0 → 29.4.5
    • typescript: 5.2.2 → 5.9.3
    • typescript-eslint: 8.34.0 → 8.47.0
    • @types/node: 24.0.3 → 24.10.1

  • Updated GitHub Actions:

    • actions/checkout: v4 → v5
    • actions/setup-node: v4 → v6
    • github/codeql-action: v3 → v4
    • actions/github-script: v7 → v8

Security

  • Updated validator to address CVE-2025-56200 (13.15.15 → 13.15.20)
  • Updated js-yaml to address prototype pollution vulnerability (4.1.0 → 4.1.1)

Documentation

  • Enhanced ValidKit promotional section with updated metrics (4,500+ disposable domains)
  • Updated README to reflect Node.js 20.0.0 minimum requirement
  • Improved API key onboarding flow with clearer instructions
Commits
  • 090f299 release: v4.0.0
  • 2e2d98d chore: update changelog
  • 2747b00 refactor: clean up
  • e972fb4 refactor: fix link
  • 739bd21 docs: enhance ValidKit section with updated copy
  • eb4b686 docs: update minimum Node.js version to 20.0.0 in README
  • cd824a5 chore: bump the dev-dependencies group across 1 directory with 4 updates
  • bfce840 chore(deps): update all dev deps + github actions
  • a49b34b docs: update readme
  • 7b8308d chore: bump validator
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump node-email-verifier from 3.4.1 to 4.0.0
9fdf7b2 
Bumps [node-email-verifier](https://github.com/jesselpalmer/node-email-verifier) from 3.4.1 to 4.0.0.
- [Release notes](https://github.com/jesselpalmer/node-email-verifier/releases)
- [Changelog](https://github.com/jesselpalmer/node-email-verifier/blob/main/CHANGELOG.md)
- [Commits](jesselpalmer/node-email-verifier@3.4.1...4.0.0)

---
updated-dependencies:
- dependency-name: node-email-verifier
  dependency-version: 4.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Dec 2, 2025
@BaseMax BaseMax merged commit b686156 into master Dec 2, 2025
4 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/node-email-verifier-4.0.0 branch December 2, 2025 05:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@BaseMax