BreizhHardware/portfolio
1
0
Fork 0
mirror of https://github.com/BreizhHardware/portfolio.git synced 2026-05-09 08:15:49 +02:00
Code Issues 8 Projects Packages Wiki Activity

[PR #243] [MERGED] Dev #318

New issue
Closed
opened 2026-05-06 12:16:23 +02:00 by BreizhHardware · 0 comments
BreizhHardware commented 2026-05-06 12:16:23 +02:00
Owner
Copy link

📋 Pull Request Information

Original PR: https://github.com/BreizhHardware/portfolio/pull/243
Author: @BreizhHardware
Created: 12/15/2025
Status: Merged
Merged: 12/15/2025
Merged by: @BreizhHardware

Base: mainHead: dev

📝 Commits (9)

  • 32c9ed6 chore(deps): Bump sass from 1.94.2 to 1.95.0
  • 13a5f68 chore(deps): Bump actions/github-script in /.github/workflows
  • 1bda415 chore(deps): Bump actions/checkout from 4 to 6 in /.github/workflows
  • 4cee43d Merge pull request #242 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/actions/checkout-6
  • 8927e5a Merge pull request #241 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/actions/github-script-8
  • 43e94db Merge pull request #240 from BreizhHardware/dependabot/npm_and_yarn/dev/sass-1.95.0
  • 9ac0979 chore(deps): Bump react and @types/react
  • 705b265 chore(deps): Bump @tailwindcss/cli @tailwindcss/vite i18next react react-dom react-i18next sass tailwindcss
  • 39bfd46 Merge pull request #239 from BreizhHardware/dependabot/npm_and_yarn/dev/multi-e105fa5dd2

📊 Changes

3 files changed (+181 additions, -181 deletions)

View changed files

📝 .github/workflows/audit.yml (+2 -2)
📝 package.json (+9 -9)
📝 pnpm-lock.yaml (+170 -170)

📄 Description

This pull request primarily updates dependencies to their latest patch or minor versions, including several key frontend libraries and build tools. It also updates the versions of some GitHub Actions used in the workflow configuration. These changes help keep the project up-to-date with the latest bug fixes, security patches, and improvements from upstream packages.

Dependency Upgrades:

  • Upgraded major frontend and build dependencies in package.json, including react and react-dom (from 19.2.0 to 19.2.3), @tailwindcss/cli and @tailwindcss/vite (from 4.1.17 to 4.1.18), i18next (from 25.7.2 to 25.7.3), react-i18next (from 16.4.0 to 16.5.0), sass (from 1.94.2 to 1.96.0), and others.

  • Updated corresponding entries in pnpm-lock.yaml to reflect the new dependency versions, including all related sub-packages and peer dependencies. [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14] [15] [16]

CI/CD Workflow Updates:

  • Updated GitHub Actions versions in .github/workflows/audit.yml: actions/checkout from v4 to v6 and actions/github-script from v7 to v8, ensuring the workflow uses the latest features and security patches. [1] [2]

These updates are routine maintenance to keep the codebase secure and compatible with the latest ecosystem changes. No breaking changes are expected, but it's good practice to test the application thoroughly after such upgrades.

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/BreizhHardware/portfolio/pull/243 **Author:** [@BreizhHardware](https://github.com/BreizhHardware) **Created:** 12/15/2025 **Status:** ✅ Merged **Merged:** 12/15/2025 **Merged by:** [@BreizhHardware](https://github.com/BreizhHardware) **Base:** `main` ← **Head:** `dev` --- ### 📝 Commits (9) - [`32c9ed6`](https://github.com/BreizhHardware/portfolio/commit/32c9ed602765c6831662f0a76e03a98e468a1460) chore(deps): Bump sass from 1.94.2 to 1.95.0 - [`13a5f68`](https://github.com/BreizhHardware/portfolio/commit/13a5f68c68f5aed28d152e3996793ac6c7900053) chore(deps): Bump actions/github-script in /.github/workflows - [`1bda415`](https://github.com/BreizhHardware/portfolio/commit/1bda415eaf5dd27acf0a25833dfbc1b8a8c62be7) chore(deps): Bump actions/checkout from 4 to 6 in /.github/workflows - [`4cee43d`](https://github.com/BreizhHardware/portfolio/commit/4cee43d693f0dfaddcd5db17e391846df4bb4c44) Merge pull request #242 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/actions/checkout-6 - [`8927e5a`](https://github.com/BreizhHardware/portfolio/commit/8927e5a10f7a9c3f8458408d505951464f586be6) Merge pull request #241 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/actions/github-script-8 - [`43e94db`](https://github.com/BreizhHardware/portfolio/commit/43e94db30a4b5ee25e2b9bfdf7d74142fe8bc32b) Merge pull request #240 from BreizhHardware/dependabot/npm_and_yarn/dev/sass-1.95.0 - [`9ac0979`](https://github.com/BreizhHardware/portfolio/commit/9ac09799959ac1334c4f6ff70ddef2efe1b206be) chore(deps): Bump react and @types/react - [`705b265`](https://github.com/BreizhHardware/portfolio/commit/705b265bfc56c2b99a62ee44d7754768b48b0f41) chore(deps): Bump @tailwindcss/cli @tailwindcss/vite i18next react react-dom react-i18next sass tailwindcss - [`39bfd46`](https://github.com/BreizhHardware/portfolio/commit/39bfd46da72478e83d6eebbaafe687c205fa1bfc) Merge pull request #239 from BreizhHardware/dependabot/npm_and_yarn/dev/multi-e105fa5dd2 ### 📊 Changes **3 files changed** (+181 additions, -181 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/audit.yml` (+2 -2) 📝 `package.json` (+9 -9) 📝 `pnpm-lock.yaml` (+170 -170) </details> ### 📄 Description This pull request primarily updates dependencies to their latest patch or minor versions, including several key frontend libraries and build tools. It also updates the versions of some GitHub Actions used in the workflow configuration. These changes help keep the project up-to-date with the latest bug fixes, security patches, and improvements from upstream packages. **Dependency Upgrades:** - Upgraded major frontend and build dependencies in `package.json`, including `react` and `react-dom` (from 19.2.0 to 19.2.3), `@tailwindcss/cli` and `@tailwindcss/vite` (from 4.1.17 to 4.1.18), `i18next` (from 25.7.2 to 25.7.3), `react-i18next` (from 16.4.0 to 16.5.0), `sass` (from 1.94.2 to 1.96.0), and others. - Updated corresponding entries in `pnpm-lock.yaml` to reflect the new dependency versions, including all related sub-packages and peer dependencies. [[1]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL15-R34) [[2]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL45-R73) [[3]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL92-R92) [[4]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL101-R107) [[5]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL702-R764) [[6]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL775-R792) [[7]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL843-R844) [[8]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL854-R855) [[9]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL942-R943) [[10]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL996-R997) [[11]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL1149-R1159) [[12]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL1344-R1345) [[13]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL1740-R1751) [[14]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL1784-R1785) [[15]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL1824-R1825) [[16]](diffhunk://#diff-32824c984905bb02bc7ffcef96a77addd1f1602cff71a11fbbfdd7f53ee026bbL1924-R1925) **CI/CD Workflow Updates:** - Updated GitHub Actions versions in `.github/workflows/audit.yml`: `actions/checkout` from v4 to v6 and `actions/github-script` from v7 to v8, ensuring the workflow uses the latest features and security patches. [[1]](diffhunk://#diff-93a89f16f6717d1e4e4e27ec20ef916e3355c7aa890ca74cd9b12db30d8a899fL21-R21) [[2]](diffhunk://#diff-93a89f16f6717d1e4e4e27ec20ef916e3355c7aa890ca74cd9b12db30d8a899fL38-R38) These updates are routine maintenance to keep the codebase secure and compatible with the latest ecosystem changes. No breaking changes are expected, but it's good practice to test the application thoroughly after such upgrades. --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
BreizhHardware 2026-05-06 12:16:23 +02:00
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
dependabot/npm_and_yarn/i18next-http-backend-3.0.5
dependabot/npm_and_yarn/dev/react-i18next-17.0.4
dependabot/npm_and_yarn/dev/vite-8.0.9
dependabot/npm_and_yarn/dev/cypress-15.14.0
dependabot/npm_and_yarn/dev/tailwindcss/cli-4.2.3
dependabot/npm_and_yarn/dev/sass-1.99.0
dependabot/github_actions/dot-github/workflows/dev/pnpm/action-setup-6
dev
fix/security-audit
No results found.
Labels
Clear labels   
audit

   
audit

   
audit

   
pull-request
Mirrored from GitHub Pull Request

  
security

   
security

   
security
No labels
audit
audit
audit
pull-request
security
security
security
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
BreizhHardware/portfolio#318
No description provided.