Bump ajv, grunt-jsonlint and node-red by dependabot[bot] · Pull Request #31 · unirobot/node-red-node-feedparser

dependabot · 2026-02-22T22:50:16Z

Bumps ajv to 6.14.0 and updates ancestor dependencies ajv, grunt-jsonlint and node-red. These dependencies need to be updated together.

Updates ajv from 6.10.2 to 6.14.0

Release notes

Sourced from ajv's releases.

v6.12.6

Fix performance issue of "url" format.

v6.12.5

Fix uri scheme validation (@ChALkeR). Fix boolean schemas with strictKeywords option (#1270)

v6.12.4

Fix: coercion of one-item arrays to scalar that should fail validation (failing example).

v6.12.3

Pass schema object to processCode function Option for strictNumbers (@issacgerges, #1128) Fixed vulnerability related to untrusted schemas (CVE-2020-15366)

v6.12.2

Removed post-install script

v6.12.1

Docs and dependency updates

v6.12.0

Improved hostname validation (@sambauers, #1143) Option keywords to add custom keywords (@franciscomorais, #1137) Types fixes (@boenrobot, @MattiAstedrone) Docs:

error logging example (@RadiationSickness)

TypeScript usage notes (@thetric)

v6.11.0

Time formats support two digit and colon-less variants of timezone offset (#1061 , @cjpillsbury) Docs: RegExp related security considerations Tests: Disabled failing typescript test

Commits

e3af0a7 6.14.0
b552ed6 add regExp option to address $data exploit via a regular expression (CVE-2025...
72f2286 docs: update v7 info
231e52b Merge pull request #1320 from philsturgeon/patch-1
d3475fc Add spectral, an AJV util from a sponsor
413afe0 docs: v7.0.0-beta.3
11e997b update readme for v7
fe59143 6.12.6
d580d3e Merge pull request #1298 from ajv-validator/fix-url
fd36389 fix: regular expression for "url" format
Additional commits viewable in compare view

Updates grunt-jsonlint from 2.0.0 to 3.0.0

Commits

11797df Prepare for v3.0.0 release.
cae4190 Port v2 changes
1a7f3f7 Draft 04 is no longer supported.
a2aec00 Add support for node v22.
d1704d3 Remove Travis build status.
916ce58 Require node v18+.
27ab6d5 Upgrade to latest jsonlint
fc14627 Upgrade eslint
3b9e7bb Update to latest airbnb lint rules
535030f Update sinon to v17.0.0.1
Additional commits viewable in compare view

Updates node-red from 0.20.8 to 4.1.5

Release notes

Sourced from node-red's releases.

4.1.5: Maintenance Release

What's Changed

chore: bump tar to 7.5.7 by @bryopsida in node-red/node-red#5472

Update for 4.1.5 release by @knolleary in node-red/node-red#5479

Fix package versions by @knolleary in node-red/node-red#5480

Full Changelog: node-red/node-red@4.1.4...4.1.5

4.1.4

What's Changed

fix: prevent uncaught exceptions in core node event handlers by @Dennis-SEG in node-red/node-red#5438

fix: prevent incorrect array modification in delay node by @Dennis-SEG in node-red/node-red#5457

fix: prevent double resolve in node close callback by @Dennis-SEG in node-red/node-red#5461

fix: prevent race condition in localfilesystem context store during shutdown by @Dennis-SEG in node-red/node-red#5462

registry: fix importModule base dir for exports subpaths by @yuan-cloud in node-red/node-red#5465

Revert overflow fix in editableList by @knolleary in node-red/node-red#5467

Bump for 4.1.4 release by @knolleary in node-red/node-red#5468

New Contributors

@yuan-cloud made their first contribution in node-red/node-red#5465

Full Changelog: node-red/node-red@4.1.3...4.1.4

4.1.3: Maintenance Release

What's Changed

Reveal node in search results via mouseover by @gorenje in node-red/node-red#5368

Fix size and scrolling in Git config UI by @kazuhitoyokoi in node-red/node-red#5396

Stricter validator for flow file name in project feature by @kazuhitoyokoi in node-red/node-red#5398

Expand folder to avoid error in library by @kazuhitoyokoi in node-red/node-red#5399

Fix debug tab to copy displayed value by @kazuhitoyokoi in node-red/node-red#5400

Fix invalid node size in quick add dialog by @kazuhitoyokoi in node-red/node-red#5403

Decrement count of http requests after error by @kazuhitoyokoi in node-red/node-red#5409

Add tooltip to delete button in node property UI by @kazuhitoyokoi in node-red/node-red#5410

5404/Editor/Bug: Junction error in Quick Add dialog by @piotrbogun in node-red/node-red#5407

Fix status node to retrieve status from all nodes by @kazuhitoyokoi in node-red/node-red#5412

Support source information in complete node by @kazuhitoyokoi in node-red/node-red#5414

Use TextDecoder() to decode UTF-8 characters by @kazuhitoyokoi in node-red/node-red#5416

Update body-parser by @knolleary in node-red/node-red#5418

Allow actions show-next-tab and previous to loop by @GogoVega in node-red/node-red#5355

Editor: Flow & subflow names are changed to all lowercase in search dialog #5348 by @n-lark in node-red/node-red#5401

File node TypedInput width fix by @knolleary in node-red/node-red#5425

Fix flushing when in variable delay mode by @dceejay in node-red/node-red#5382

fix(http-request): prevent uncaught exceptions in async hooks by @Dennis-SEG in node-red/node-red#5392

TreeList: Fix widget treeList keyboard navigation scroll behavior by @piotrbogun in node-red/node-red#5421

Ensure quick-add filter is applied properly when retriggering add by @knolleary in node-red/node-red#5427

Readme markdown refactor for legibility in IDE's by @dimitrieh in node-red/node-red#5423

5343/Editor/Bug: Node help tab resets focus when arrow keys are used to switch between nodes by @piotrbogun in node-red/node-red#5406

Add package-lock.json for reproducible dependency chains by @dimitrieh in node-red/node-red#5426

Bump for 4.1.3 by @knolleary in node-red/node-red#5428

... (truncated)

Changelog

Sourced from node-red's changelog.

4.1.5: Maintenance Release

chore: bump tar to 7.5.7 (#5472) @bryopsida

Update node-red-admin dependency @knolleary

4.1.4: Maintenance Release

Update tar dependency @knolleary

Revert overflow fix in editableList (#5467) @knolleary

registry: fix importModule base dir for exports subpaths (#5465) @yuan-cloud

fix: prevent race condition in localfilesystem context store during shutdown (#5462) @Dennis-SEG

fix: prevent double resolve in node close callback (#5461) @Dennis-SEG

fix: prevent incorrect array modification in delay node (#5457) @Dennis-SEG

fix: prevent uncaught exceptions in core node event handlers (#5438) @Dennis-SEG

4.1.3: Maintenance Release

Editor

5343/Editor/Bug: Node help tab resets focus when arrow keys are used to switch between nodes (#5406) @piotrbogun

Ensure quick-add filter is applied properly when retriggering add (#5427) @knolleary

TreeList: Fix widget treeList keyboard navigation scroll behavior (#5421) @piotrbogun

Editor: Flow & subflow names are changed to all lowercase in search dialog #5348 (#5401) @n-lark

Allow actions show-next-tab and previous to loop (#5355) @GogoVega

5404/Editor/Bug: Junction error in Quick Add dialog (#5407) @piotrbogun

Add tooltip to delete button in node property UI (#5410) @kazuhitoyokoi

Fix invalid node size in quick add dialog (#5403) @kazuhitoyokoi

Expand folder to avoid error in library (#5399) @kazuhitoyokoi

Stricter validator for flow file name in project feature (#5398) @kazuhitoyokoi

Fix size and scrolling in Git config UI (#5396) @kazuhitoyokoi

Reveal node in search results via mouseover (#5368) @gorenje

Runtime

Add package-lock.json for reproducible dependency chains (#5426) @dimitrieh

Readme markdown refactor for legibility in IDE's (#5423) @dimitrieh

Update body-parser (#5418) @knolleary

Nodes

fix(http-request): prevent uncaught exceptions in async hooks (#5392) @Dennis-SEG

Fix flushing when in variable delay mode (#5382) @dceejay

File node TypedInput width fix (#5425) @knolleary

Use TextDecoder() to decode UTF-8 characters (#5416) @kazuhitoyokoi

Support source information in complete node (#5414) @kazuhitoyokoi

Fix status node to retrieve status from all nodes (#5412) @kazuhitoyokoi

Decrement count of http requests after error (#5409) @kazuhitoyokoi

Fix debug tab to copy displayed value (#5400) @kazuhitoyokoi

4.1.2: Maintenance Release

... (truncated)

Commits

661828b Merge pull request #5480 from node-red/rel415-2
df96cfa Fix package versions
ce91d5d Merge pull request #5479 from node-red/rel415
dadf7a3 Update for 4.1.5 release
dc6a86d Merge pull request #5472 from bryopsida/patch-tar
c2f2e57 chore: bump tar to 7.5.7
56c641f Merge pull request #5468 from node-red/rel414
866d2b0 Update changelog
12c575b Bump dependencies and version
2151592 Merge pull request #5467 from node-red/5463-fix-editablelist-overflow
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [ajv](https://github.com/ajv-validator/ajv) to 6.14.0 and updates ancestor dependencies [ajv](https://github.com/ajv-validator/ajv), [grunt-jsonlint](https://github.com/brandonramirez/grunt-jsonlint) and [node-red](https://github.com/node-red/node-red). These dependencies need to be updated together. Updates `ajv` from 6.10.2 to 6.14.0 - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](ajv-validator/ajv@v6.10.2...v6.14.0) Updates `grunt-jsonlint` from 2.0.0 to 3.0.0 - [Commits](brandonramirez/grunt-jsonlint@v2.0.0...v3.0.0) Updates `node-red` from 0.20.8 to 4.1.5 - [Release notes](https://github.com/node-red/node-red/releases) - [Changelog](https://github.com/node-red/node-red/blob/master/CHANGELOG.md) - [Commits](node-red/node-red@0.20.8...4.1.5) --- updated-dependencies: - dependency-name: ajv dependency-version: 6.14.0 dependency-type: indirect - dependency-name: grunt-jsonlint dependency-version: 3.0.0 dependency-type: direct:development - dependency-name: node-red dependency-version: 4.1.5 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 22, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump ajv, grunt-jsonlint and node-red#31

Bump ajv, grunt-jsonlint and node-red#31
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-ad6b1230fc

dependabot bot commented on behalf of github Feb 22, 2026

Uh oh!

Reviewers

Assignees

Labels

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Feb 22, 2026

v6.12.6

v6.12.5

v6.12.4

v6.12.3

v6.12.2

v6.12.1

v6.12.0

v6.11.0

4.1.5: Maintenance Release

What's Changed

4.1.4

What's Changed

New Contributors

4.1.3: Maintenance Release

What's Changed

4.1.5: Maintenance Release

4.1.4: Maintenance Release

4.1.3: Maintenance Release

4.1.2: Maintenance Release

Uh oh!

Reviewers

Assignees

Labels

Milestone

Development

Uh oh!

0 participants