chore(deps): bump the patch-deps-updates-main group with 4 updates by dependabot[bot] · Pull Request #550 · webdriverio-community/node-edgedriver

dependabot · 2026-02-16T19:32:18Z

Bumps the patch-deps-updates-main group with 4 updates: @zip.js/zip.js, fast-xml-parser, which and @types/node.

Updates @zip.js/zip.js from 2.8.17 to 2.8.20

Release notes

Sourced from @zip.js/zip.js's releases.

v2.8.20

Fixed inadvertently removed createTempStream option into ZipWriter

Added transferStreams support in ZipWriter

v2.8.19

Removed unwanted web-worker dependency inadvertently added in the package.json file of version 2.8.17

v2.8.18

Added createTempStream option to ZipWriter, used when adding entries in parallel, for custom temporary buffered write storage (e.g. filesystem, OPFS, network) instead of the default in-memory TransformStream (see this test for a usage example)

Improved buffering implementation in ZipWriter by removing the Blob/Response usage

Fixed minor regression introduced in version 2.8.16 when the web worker URI is not a data or blob URI (workers were not working with code using ES6 import) (see related test)

Commits

cfd7020 update markdown doc
59561e3 bump up version
d75a91b update built files
05c26b6 re-add createTempStream support
b994ab5 add transferStreams support in ZipWriter
a16cd8c bump up version
68014fd add INFINITY_VALUE constant
ec36a04 use existing constants
6c0ae12 bump up version
aa6a84c update doc
Additional commits viewable in compare view

Updates fast-xml-parser from 5.3.5 to 5.3.6

Release notes

Sourced from fast-xml-parser's releases.

Entity security and performance

Improve security and performance of entity processing

new options maxEntitySize, maxExpansionDepth, maxTotalExpansions, maxExpandedLength, allowedTags,tagFilter

fast return when no edtity is present

improvement replacement logic to reduce number of calls

Full Changelog: NaturalIntelligence/fast-xml-parser@v5.3.5...v5.3.6

Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

5.3.6 / 2026-02-14

Improve security and performance of entity processing

new options maxEntitySize, maxExpansionDepth, maxTotalExpansions, maxExpandedLength, allowedTags,tagFilter

fast return when no edtity is present

improvement replacement logic to reduce number of calls

5.3.5 / 2026-02-08

fix: Escape regex char in entity name

update strnum to 2.1.2

add missing exports in CJS typings

5.3.4 / 2026-01-30

fix: handle HTML numeric and hex entities when out of range

5.3.3 / 2025-12-12

fix #775: transformTagName with allowBooleanAttributes adds an unnecessary attribute

5.3.2 / 2025-11-14

fix for import statement for v6

5.3.1 / 2025-11-03

Performance improvement for stopNodes (By Maciek Lamberski)

5.3.0 / 2025-10-03

Use Uint8Array in place of Buffer in Parser

5.2.5 / 2025-06-08

Inform user to use fxp-cli instead of in-built CLI feature

Export typings for direct use

5.2.4 / 2025-06-06

fix (#747): fix EMPTY and ANY with ELEMENT in DOCTYPE

5.2.3 / 2025-05-11

fix (#747): support EMPTY and ANY with ELEMENT in DOCTYPE

5.2.2 / 2025-05-05

fix (#746): update strnum to fix parsing issues related to enotations

5.2.1 / 2025-04-22

fix: read DOCTYPE entity value correctly

read DOCTYPE NOTATION, ELEMENT exp but not using read values

5.2.0 / 2025-04-03

... (truncated)

Commits

ecb2ca1 update release info
910dae5 fix entities performance & security issues
See full diff in compare view

Updates which from 6.0.0 to 6.0.1

Release notes

Sourced from which's releases.

v6.0.1

6.0.1 (2026-02-10)

Dependencies

bd22353 #168 bump isexe from 3.1.5 to 4.0.0 (#168) (@dependabot[bot])

Chores

fc4c209 #163 bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#163) (@dependabot[bot])

46b25d7 #165 bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#165) (@dependabot[bot], @npm-cli-bot)

Changelog

Sourced from which's changelog.

6.0.1 (2026-02-10)

Dependencies

bd22353 #168 bump isexe from 3.1.5 to 4.0.0 (#168) (@dependabot[bot])

Chores

fc4c209 #163 bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#163) (@dependabot[bot])

46b25d7 #165 bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#165) (@dependabot[bot], @npm-cli-bot)

Commits

bbc63ba chore: release 6.0.1 (#169)
bd22353 deps: bump isexe from 3.1.5 to 4.0.0 (#168)
46b25d7 chore: bump @npmcli/template-oss from 4.28.0 to 4.28.1 (#165)
af2ddb4 chore: bump @npmcli/template-oss from 4.27.1 to 4.28.0 (#164)
fc4c209 chore: bump @npmcli/eslint-config from 5.1.0 to 6.0.0 (#163)
See full diff in compare view

Updates @types/node from 25.2.2 to 25.2.3

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the patch-deps-updates-main group with 4 updates: [@zip.js/zip.js](https://github.com/gildas-lormeau/zip.js), [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser), [which](https://github.com/npm/node-which) and [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node). Updates `@zip.js/zip.js` from 2.8.17 to 2.8.20 - [Release notes](https://github.com/gildas-lormeau/zip.js/releases) - [Commits](gildas-lormeau/zip.js@v2.8.17...v2.8.20) Updates `fast-xml-parser` from 5.3.5 to 5.3.6 - [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases) - [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md) - [Commits](NaturalIntelligence/fast-xml-parser@v5.3.5...v5.3.6) Updates `which` from 6.0.0 to 6.0.1 - [Release notes](https://github.com/npm/node-which/releases) - [Changelog](https://github.com/npm/node-which/blob/main/CHANGELOG.md) - [Commits](npm/node-which@v6.0.0...v6.0.1) Updates `@types/node` from 25.2.2 to 25.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@zip.js/zip.js" dependency-version: 2.8.20 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-deps-updates-main - dependency-name: fast-xml-parser dependency-version: 5.3.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-deps-updates-main - dependency-name: which dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-deps-updates-main - dependency-name: "@types/node" dependency-version: 25.2.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-deps-updates-main ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 16, 2026

github-actions bot merged commit 3216d8c into main Feb 16, 2026
5 checks passed

dependabot bot deleted the dependabot/npm_and_yarn/patch-deps-updates-main-b9dcfa269e branch February 16, 2026 19:34

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Comments

chore(deps): bump the patch-deps-updates-main group with 4 updates#550

chore(deps): bump the patch-deps-updates-main group with 4 updates#550
github-actions[bot] merged 1 commit intomainfrom
dependabot/npm_and_yarn/patch-deps-updates-main-b9dcfa269e

dependabot bot commented on behalf of github Feb 16, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Comments

Conversation

dependabot bot commented on behalf of github Feb 16, 2026

v2.8.20

v2.8.19

v2.8.18

Entity security and performance

v6.0.1

6.0.1 (2026-02-10)

Dependencies

Chores

6.0.1 (2026-02-10)

Dependencies

Chores

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants