Skip to content

chore(deps-dev): bump @vscode/vsce from 3.7.1 to 3.8.1#519

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/vscode/vsce-3.8.1
Closed

chore(deps-dev): bump @vscode/vsce from 3.7.1 to 3.8.1#519
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/vscode/vsce-3.8.1

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Apr 15, 2026

Bumps @vscode/vsce from 3.7.1 to 3.8.1.

Release notes

Sourced from @​vscode/vsce's releases.

v3.8.1

Changes:

  • #1259: chore: update @​azure/identity to 4.13.1 and modernize TypeScript/Node.js configuration

This list of changes was auto generated.

v3.8.1-0

Changes:

  • #1259: chore: update @​azure/identity to 4.13.1 and modernize TypeScript/Node.js configuration

This list of changes was auto generated.

v3.8.0

Changes:

  • #1258: fix: run npm audit fix
  • #1255: Bump brace-expansion
  • #1253: Bump picomatch from 2.3.1 to 2.3.2
  • #1252: Bump yauzl from 2.10.0 to 3.2.1
  • #1250: Bump underscore from 1.13.1 to 1.13.8
  • #1249: Bump minimatch
  • #1243: Bump markdown-it from 14.1.0 to 14.1.1
  • #1244: Bump qs from 6.14.1 to 6.14.2
  • #1239: Bump @​isaacs/brace-expansion from 5.0.0 to 5.0.1
  • #1238: Bump lodash from 4.17.21 to 4.17.23
  • #1234: Bump qs from 6.11.0 to 6.14.1
  • #1233: Return non-zero exit code when signature verification fails
  • #1232: Audit npm package
  • #1228: Bump jws

This list of changes was auto generated.

v3.7.2-13

Changes:

  • #1258: fix: run npm audit fix

This list of changes was auto generated.

... (truncated)

Commits
  • 7d124ab chore: update @​azure/identity to 4.13.1 and modernize TypeScript/Node.js conf...
  • cbdd401 fix: run npm audit fix to update package-lock.json (#1258)
  • 13c5fa8 Merge pull request #1255 from microsoft/dependabot/npm_and_yarn/multi-580a7c2f10
  • c6f98dc Bump brace-expansion
  • 01da009 Bump picomatch from 2.3.1 to 2.3.2 (#1253)
  • bb899fa Merge pull request #1252 from microsoft/dependabot/npm_and_yarn/yauzl-3.2.1
  • 3f4fa96 Bump yauzl from 2.10.0 to 3.2.1
  • 72f3196 Merge pull request #1250 from microsoft/dependabot/npm_and_yarn/underscore-1....
  • c651312 Bump underscore from 1.13.1 to 1.13.8
  • 82cd05b Merge pull request #1249 from microsoft/dependabot/npm_and_yarn/multi-3189fdc835
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps-dev): bump @vscode/vsce from 3.7.1 to 3.8.1
24db51d 
Bumps [@vscode/vsce](https://github.com/Microsoft/vsce) from 3.7.1 to 3.8.1.
- [Release notes](https://github.com/Microsoft/vsce/releases)
- [Commits](microsoft/vscode-vsce@v3.7.1...v3.8.1)

---
updated-dependencies:
- dependency-name: "@vscode/vsce"
  dependency-version: 3.8.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 15, 2026
@dependabot dependabot Bot requested a review from JackRobards as a code owner April 15, 2026 22:54
@dependabot dependabot Bot added the javascript Pull requests that update javascript code label Apr 15, 2026
@dependabot dependabot Bot mentioned this pull request Apr 15, 2026
Closed
@changeset-bot
Copy link
Copy Markdown

changeset-bot Bot commented Apr 15, 2026

⚠️ No Changeset found

Latest commit: 24db51d

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github Apr 16, 2026

Superseded by #520.

@dependabot dependabot Bot closed this Apr 16, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/vscode/vsce-3.8.1 branch April 16, 2026 22:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JackRobards JackRobards Awaiting requested review from JackRobards JackRobards is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants