build(deps): bump minimatch and textlint by dependabot[bot] · Pull Request #389 · techpivot/terraform-module-releaser

dependabot · 2026-02-21T19:04:39Z

Bumps minimatch and textlint. These dependencies needed to be updated together.
Updates minimatch from 10.2.0 to 10.2.2

Commits

f42b239 10.2.2
fa2133b update deps
b9d0153 ci: update action workflows
35d9ee9 expand engines to include node 18
6d7ac34 10.2.1
2e111f3 coalesce consecutive non-globstar * characters
See full diff in compare view

Updates textlint from 15.5.1 to 15.5.2

Commits

7320c69 v15.5.2 (#1937)
59369f8 Upgrade glob to v11 to fix minimatch ReDoS vulnerability (#1936)
9ea2b09 chore(deps): update pnpm to v10.30.0 (#1935)
b4961c1 chore(deps): update github/codeql-action action to v3.32.3 (#1933)
2070986 chore(deps): update eslint to ^8.56.0 (minor) (#1932)
23468fc chore(deps): update dependency rimraf to ^6.1.3 (#1931)
81bdc42 chore(deps): update dependency ajv to ^8.18.0 (#1930)
e61b687 chore(deps): update pnpm to v10.29.3 (#1929)
7005df4 chore(deps): update dependency @types/node to ^24.10.13 (#1925)
1802c08 chore(deps): update dependency lerna to ^9.0.4 (#1926)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [minimatch](https://github.com/isaacs/minimatch) and [textlint](https://github.com/textlint/textlint). These dependencies needed to be updated together. Updates `minimatch` from 10.2.0 to 10.2.2 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v10.2.0...v10.2.2) Updates `textlint` from 15.5.1 to 15.5.2 - [Release notes](https://github.com/textlint/textlint/releases) - [Commits](textlint/textlint@v15.5.1...v15.5.2) --- updated-dependencies: - dependency-name: minimatch dependency-version: 10.2.2 dependency-type: direct:production - dependency-name: textlint dependency-version: 15.5.2 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]>

github-actions · 2026-02-21T19:05:06Z

📋 Release Plan

Module	Type	Latest Version	New Version	Release Details
`tf-modules-kms`	patch		v1.0.0	🆕 Initial Release
`tf-modules-vpc-endpoint`	patch		v1.0.0	🆕 Initial Release

📝 Changelog

`tf-modules-kms-v1.0.0` (2026-02-21)

🔀PR #389 - build(deps): bump minimatch and textlint

`tf-modules-vpc-endpoint-v1.0.0` (2026-02-21)

🔀PR #389 - build(deps): bump minimatch and textlint

_{Wiki Status^ℹ️}

✅ Enabled

_{Automated Tag/Release Cleanup^ℹ️}

⏸️ Existing tags and releases will be preserved as the delete-legacy-tags flag is disabled.

_{Powered by: techpivot/terraform-module-releaser}

sonarqubecloud · 2026-02-21T19:05:49Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 21, 2026

dependabot bot requested a review from virgofx as a code owner February 21, 2026 19:04

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 21, 2026

virgofx approved these changes Feb 21, 2026

View reviewed changes

virgofx merged commit 13d95b9 into main Feb 21, 2026
29 checks passed

virgofx deleted the dependabot/npm_and_yarn/multi-082d390b0e branch February 21, 2026 19:07

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

build(deps): bump minimatch and textlint#389

build(deps): bump minimatch and textlint#389
virgofx merged 1 commit intomainfrom
dependabot/npm_and_yarn/multi-082d390b0e

dependabot bot commented on behalf of github Feb 21, 2026

Uh oh!

github-actions bot commented Feb 21, 2026

Uh oh!

sonarqubecloud bot commented Feb 21, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

dependabot bot commented on behalf of github Feb 21, 2026

Uh oh!

github-actions bot commented Feb 21, 2026

📋 Release Plan

📝 Changelog

tf-modules-kms-v1.0.0 (2026-02-21)

tf-modules-vpc-endpoint-v1.0.0 (2026-02-21)

Wiki Statusℹ️

Automated Tag/Release Cleanupℹ️

Powered by: techpivot/terraform-module-releaser

Uh oh!

sonarqubecloud bot commented Feb 21, 2026

Quality Gate passed

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

`tf-modules-kms-v1.0.0` (2026-02-21)

`tf-modules-vpc-endpoint-v1.0.0` (2026-02-21)

_{Wiki Status^ℹ️}

_{Automated Tag/Release Cleanup^ℹ️}

_{Powered by: techpivot/terraform-module-releaser}