Skip to content

chore(deps-dev): bump eslint-plugin-cypress from 5.3.0 to 6.4.2#1632

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/eslint-plugin-cypress-6.4.1
Open

chore(deps-dev): bump eslint-plugin-cypress from 5.3.0 to 6.4.2#1632
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/eslint-plugin-cypress-6.4.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown
Contributor

Bumps eslint-plugin-cypress from 5.3.0 to 6.4.2.

Release notes

Sourced from eslint-plugin-cypress's releases.

v6.4.2

6.4.2 (2026-06-29)

Bug Fixes

  • deps: update dependency globals to ^17.7.0 (#369) (674618e)

v6.4.1

6.4.1 (2026-05-06)

Bug Fixes

  • deps: update dependency globals to ^17.6.0 (#340) (11f8df6)

v6.4.0

6.4.0 (2026-04-28)

Features

  • support chains started of helper functions in unsafe-to-chain-command (#307) (bdf94f2)

v6.3.1

6.3.1 (2026-04-14)

Bug Fixes

  • deps: update dependency globals to ^17.5.0 (#326) (257d0ec)

v6.3.0

6.3.0 (2026-04-09)

Features

  • added no-and rule to ensure .and() follows certain commands (#310) (c0b7e3b)

v6.2.3

6.2.3 (2026-04-06)

Bug Fixes

  • no-unnecessary-waiting flag identifiers defined in object/array patterns (#308) (f5ccf77)

v6.2.2

6.2.2 (2026-04-02)

... (truncated)

Commits

@dependabot dependabot Bot added automated dependencies Pull requests that update a dependency file labels Jul 5, 2026
@dependabot
dependabot Bot requested a review from a team as a code owner July 5, 2026 09:39
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file automated labels Jul 5, 2026
@netlify

netlify Bot commented Jul 5, 2026

Copy link
Copy Markdown

Deploy Preview for endearing-brigadeiros-63f9d0 canceled.

Name Link
🔨 Latest commit 0505483
🔍 Latest deploy log https://app.netlify.com/projects/endearing-brigadeiros-63f9d0/deploys/6a54f954476b5200089d3322

@github-actions

github-actions Bot commented Jul 5, 2026

Copy link
Copy Markdown

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails
npm/eslint-plugin-cypress 6.4.2 🟢 5.4
Details
CheckScoreReason
Packaging⚠️ -1packaging workflow not detected
Maintained🟢 1030 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10
Code-Review🟢 10all changesets reviewed
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Binary-Artifacts🟢 10no binaries found in the repo
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Fuzzing⚠️ 0project is not fuzzed
License🟢 10license file detected
Signed-Releases⚠️ -1no releases found
Branch-Protection⚠️ -1internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
Security-Policy⚠️ 0security policy file not detected
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0
npm/globals 17.7.0 🟢 4.7
Details
CheckScoreReason
Packaging⚠️ -1packaging workflow not detected
Security-Policy🟢 10security policy file detected
Maintained🟢 79 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 7
Code-Review🟢 5Found 12/24 approved changesets -- score normalized to 5
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Binary-Artifacts🟢 10no binaries found in the repo
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Fuzzing⚠️ 0project is not fuzzed
License🟢 10license file detected
Branch-Protection⚠️ 0branch protection not enabled on development/release branches
Signed-Releases⚠️ -1no releases found
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0

Scanned Files

  • package-lock.json

@dependabot dependabot Bot changed the title chore(deps-dev): bump eslint-plugin-cypress from 5.3.0 to 6.4.1 chore(deps-dev): bump eslint-plugin-cypress from 5.3.0 to 6.4.2 Jul 13, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/eslint-plugin-cypress-6.4.1 branch from a359376 to 95f2c35 Compare July 13, 2026 06:10
@kriswest

Copy link
Copy Markdown
Contributor

@dependabot rebase

Bumps [eslint-plugin-cypress](https://github.com/cypress-io/eslint-plugin-cypress) from 5.3.0 to 6.4.2.
- [Release notes](https://github.com/cypress-io/eslint-plugin-cypress/releases)
- [Commits](cypress-io/eslint-plugin-cypress@v5.3.0...v6.4.2)

---
updated-dependencies:
- dependency-name: eslint-plugin-cypress
  dependency-version: 6.4.1
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/eslint-plugin-cypress-6.4.1 branch from 95f2c35 to 0505483 Compare July 13, 2026 14:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

automated dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant