Skip to content

refactor: Bump @semantic-release/npm from 13.1.3 to 13.1.5#545

Merged
mtrezza merged 1 commit intoparse-community:masterfrom
mtrezza:refactor/semantic-release-npm-13.1.5
Mar 31, 2026
Merged

refactor: Bump @semantic-release/npm from 13.1.3 to 13.1.5#545
mtrezza merged 1 commit intoparse-community:masterfrom
mtrezza:refactor/semantic-release-npm-13.1.5

Conversation

@mtrezza
Copy link
Copy Markdown
Member

@mtrezza mtrezza commented Mar 31, 2026
edited by coderabbitai bot
Loading

Closes #540

Changes

  • 13.1.4 – 13.1.5: Bug fixes and maintenance updates

Breaking Changes

None

Code Changes Required

None — the upgrade is a drop-in replacement.

Summary by CodeRabbit

Chores

  • Updated development dependencies to latest versions, including @semantic-release/npm (13.1.3 → 13.1.5), GitHub Actions packages (@actions/core, @actions/exec, @actions/http-client, @actions/io), and normalize-url (8.0.1 → 9.0.0). Updated associated package metadata in the lockfile.

@parse-github-assistant
Copy link
Copy Markdown

parse-github-assistant bot commented Mar 31, 2026

🚀 Thanks for opening this pull request! We appreciate your effort in improving the project. Please let us know once your pull request is ready for review.

Tip

  • Keep pull requests small. Large PRs will be rejected. Break complex features into smaller, incremental PRs.
  • Use Test Driven Development. Write failing tests before implementing functionality. Ensure tests pass.
  • Group code into logical blocks. Add a short comment before each block to explain its purpose.
  • We offer conceptual guidance. Coding is up to you. PRs must be merge-ready for human review.
  • Our review focuses on concept, not quality. PRs with code issues will be rejected. Use an AI agent.
  • Human review time is precious. Avoid review ping-pong. Inspect and test your AI-generated code.

Note

Please respond to review comments from AI agents just like you would to comments from a human reviewer. Let the reviewer resolve their own comments, unless they have reviewed and accepted your commit, or agreed with your explanation for why the feedback was incorrect.

Caution

Pull requests must be written using an AI agent with human supervision. Pull requests written entirely by a human will likely be rejected, because of lower code quality, higher review effort and the higher risk of introducing bugs. Please note that AI review comments on this pull request alone do not satisfy this requirement.

@codecov
Copy link
Copy Markdown

codecov bot commented Mar 31, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 100.00%. Comparing base (4fb5edc) to head (6505ad7).
⚠️ Report is 4 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff            @@
##            master      #545   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            8         8           
  Lines         1172      1172           
=========================================
  Hits          1172      1172

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@mtrezza
Copy link
Copy Markdown
Member Author

mtrezza commented Mar 31, 2026

@coderabbitai review

@coderabbitai
Copy link
Copy Markdown

coderabbitai bot commented Mar 31, 2026

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

@coderabbitai
Copy link
Copy Markdown

coderabbitai bot commented Mar 31, 2026
edited
Loading

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 673b2f04-ee20-42da-8ce9-17bcc193b411

📥 Commits

Reviewing files that changed from the base of the PR and between 4fb5edc and 6505ad7.

📒 Files selected for processing (2)
  • package-lock.json
  • package.json
👮 Files not reviewed due to content moderation or server errors (1)
  • package-lock.json
📝 Walkthrough

Walkthrough

This PR updates the @semantic-release/npm development dependency from version 13.1.3 to 13.1.5, along with transitive dependency upgrades including normalize-url to v9 and multiple @actions/* packages to their latest versions. Lockfile entries and metadata are modified accordingly.

Changes

Cohort / File(s) Summary
Dependency Version Updates
package.json, package-lock.json		 Updated @semantic-release/npm from 13.1.3 to 13.1.5. Upgraded transitive dependencies: @actions/core (2.0.1 → 3.0.0), @actions/exec (2.0.0 → 3.0.0), @actions/http-client (3.0.2 → 4.0.0), @actions/io (2.0.0 → 3.0.2), and normalize-url (8.0.1 → 9.0.0). License metadata fields added/expanded in lockfile.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

🚥 Pre-merge checks | ✅ 6 | ❌ 2

❌ Failed checks (1 warning, 1 inconclusive)

Check name Status Explanation Resolution
Description check ⚠️ Warning The PR description provided by the author does not follow the required template structure with all expected sections like Issue, Approach, and Tasks. Restructure the description to follow the repository's PR template: add Issue section, expand Approach section, and include Tasks section with applicable checklist items.
Engage In Review Feedback ❓ Inconclusive Review feedback comments and discussions are not accessible through git history alone; GitHub PR platform data required. Access the GitHub PR interface to review all comments, feedback, and discussion threads to verify author engagement.
✅ Passed checks (6 passed)
Check name Status Explanation
Title check ✅ Passed The PR title 'refactor: Bump @semantic-release/npm from 13.1.3 to 13.1.5' begins with the 'refactor:' prefix and clearly describes the dependency update.
Linked Issues check ✅ Passed The changes successfully update @semantic-release/npm from 13.1.3 to 13.1.5 with transitive dependency updates (normalize-url v9, @actions/* packages) as required by issue #540.
Out of Scope Changes check ✅ Passed All code changes are scoped to dependency version updates in package.json and package-lock.json, directly aligned with the objective to bump @semantic-release/npm to v13.1.5.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Human Review ✅ Passed PR demonstrates human review before opening with detailed description showing understanding of upstream release notes and version changes.
Security Check ✅ Passed PR contains only dependency version updates with no code changes. All packages from trusted sources with valid SHA512 hashes and no known CVEs.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests

Warning

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

🔧 Checkov (3.2.510)
package.json

2026-03-31 13:51:29,765 [MainThread ] [ERROR] Template file not found: package.json
2026-03-31 13:51:29,771 [MainThread ] [ERROR] Template file not found: package.json
2026-03-31 13:51:29,774 [MainThread ] [ERROR] Template file not found: package.json
2026-03-31 13:51:29,826 [MainThread ] [ERROR] Failed to invoke function /usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner. with package.json
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 88, in func_wrapper
result = original_func(item)
^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner.py", line 74, in
results = parallel_runner.run_function(lambda f: (f, self._parse_file(f)), files_to_load)
^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/ope

... [truncated 2547 characters] ...

[MainThread ] [WARNI] Secret scanning: could not process file package.json
2026-03-31 13:51:29,882 [MainThread ] [ERROR] Exception traceback:
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/main.py", line 647, in run
self.scan_reports = runner_registry.run(
^^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/runner_registry.py", line 177, in run
for result in parallel_runner_results:
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 118, in _run_function_multiprocess_fork
raise v.internal_exception.with_traceback(v.internal_exception.traceback)
FileNotFoundError: [Errno 2] No such file or directory: 'package.json'

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@mtrezza mtrezza merged commit 9dc5c22 into parse-community:master Mar 31, 2026
9 checks passed
@mtrezza mtrezza deleted the refactor/semantic-release-npm-13.1.5 branch March 31, 2026 13:58
@parseplatformorg
Copy link
Copy Markdown
Contributor

parseplatformorg commented Mar 31, 2026

🎉 This change has been released in version 8.4.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] approved these changes

Assignees

No one assigned

Labels

state:released

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mtrezza @parseplatformorg