Skip to content

chore(deps-dev): Bump @octokit/auth-app from 8.1.2 to 8.2.0#845

Merged
wrsmith108 merged 2 commits into
mainfrom
dependabot/npm_and_yarn/octokit/auth-app-8.2.0
May 14, 2026
Merged

chore(deps-dev): Bump @octokit/auth-app from 8.1.2 to 8.2.0#845
wrsmith108 merged 2 commits into
mainfrom
dependabot/npm_and_yarn/octokit/auth-app-8.2.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 30, 2026
edited by wrsmith108
Loading

Bumps @octokit/auth-app from 8.1.2 to 8.2.0.

Release notes

Sourced from @​octokit/auth-app's releases.

v8.2.0

8.2.0 (2026-02-03)

Features

  • handling exp is too far in the future (#699) (6201580)
  • Add enterprise installation route to JWT-authenticated routes (#736) (5b218af)
Commits
  • 6201580 feat: handling exp is too far in the future (#699)
  • 5b218af Add enterprise installation route to JWT-authenticated routes (#736)
  • 4486c10 build(deps-dev): bump vite from 7.1.7 to 7.1.11 (#728)
  • e1fecc4 build(deps): bump glob from 10.4.5 to 10.5.0 (#733)
  • See full diff in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​octokit/auth-app since your current version.


[skip-impl-check]

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Apr 30, 2026

Labels

The following labels could not be found: npm. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 006b562 to 958dde2 Compare May 1, 2026 20:05
@vercel
Copy link
Copy Markdown

vercel Bot commented May 1, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
website Ready Ready Preview, Comment May 14, 2026 4:47am

Request Review

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 958dde2 to 7a3b3a6 Compare May 2, 2026 01:59
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 7a3b3a6 to 21ddf71 Compare May 2, 2026 02:58
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 21ddf71 to af01ecb Compare May 2, 2026 03:36
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from af01ecb to caa96e3 Compare May 2, 2026 16:08
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from caa96e3 to b59b791 Compare May 2, 2026 22:55
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from b59b791 to 111f737 Compare May 3, 2026 01:56
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 111f737 to b11483f Compare May 3, 2026 06:01
wrsmith108 added a commit that referenced this pull request May 3, 2026
@wrsmith108
ci(dependabot): SMI-4669 expand npm groups + add docker ecosystem (#897)
bd42c5b 
Adds 10 ecosystem groups under the npm block, mirroring the existing
typescript-eslint group's update-types: [minor, patch] pattern (major
bumps still surface individually for human review):

- aws-sdk    (@aws-sdk/*)
- hono       (@hono/*, hono)
- astro      (astro, @astrojs/*)
- vercel     (@vercel/*, vercel)
- smithy     (@smithy/*)
- supabase   (@supabase/*)
- octokit    (@octokit/*, octokit)
- opentelemetry (@opentelemetry/*)
- vitest     (vitest, @vitest/*)
- types      (@types/*)

Open Dependabot PRs #841, #842, #844, #845 (@octokit/*, @opentelemetry/*)
specifically would have batched into 2 PRs instead of 4 with these groups.

Adds package-ecosystem: 'docker' block on monthly cadence, mirroring the
github-actions block shape. Surfaces base-image CVEs (currently
node:22-slim per Dockerfile:20) as targeted PRs instead of accumulating
silently between manual rebuilds.

Reviewer-fatigue rationale: every Dependabot PR routes to a single named
reviewer (ryansmith108). Batching reduces PR count → reduces rubberstamp
risk on the supply-chain hardening posture established in SMI-3864/3985
(Wave 1) and SMI-4651 (vendor trust tier).

Verification:
- python yaml.safe_load → 3 ecosystem blocks, 11 npm groups, valid
- docker exec skillsmith-dev-1 npm run audit:standards → 51 pass,
  6 warnings, 0 fail (89% compliance, unchanged)
- dependabot.yml is data-only; structural verification via GitHub UI
  after merge will confirm batched PRs land on next Monday run.

Refs: SMI-4666 SMI-4669

Co-authored-by: Ryan Smith <wrsmith108@users.noreply.github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from b11483f to 6f624a7 Compare May 4, 2026 03:17
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 6f624a7 to 6a9e20c Compare May 4, 2026 15:10
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 6a9e20c to 3ab6488 Compare May 5, 2026 15:07
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 3ab6488 to e9e118c Compare May 5, 2026 16:41
@dependabot dependabot Bot changed the title chore(deps-dev): Bump @octokit/auth-app from 8.1.2 to 8.2.0 chore(deps-dev): bump @octokit/auth-app from 8.1.2 to 8.2.0 May 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from e9e118c to 50c6102 Compare May 6, 2026 03:30
@wrsmith108
Copy link
Copy Markdown
Member

wrsmith108 commented May 7, 2026

@dependabot rebase

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from cc13b30 to d418009 Compare May 7, 2026 02:24
@wrsmith108
Copy link
Copy Markdown
Member

wrsmith108 commented May 7, 2026

@dependabot recreate

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from d418009 to 459ac6e Compare May 7, 2026 02:30
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 459ac6e to 7601526 Compare May 7, 2026 21:26
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 7601526 to 055a71f Compare May 8, 2026 19:10
@dependabot dependabot Bot changed the title chore(deps-dev): bump @octokit/auth-app from 8.1.2 to 8.2.0 chore(deps-dev): Bump @octokit/auth-app from 8.1.2 to 8.2.0 May 11, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 055a71f to bd388aa Compare May 11, 2026 03:14
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from bd388aa to 706aa28 Compare May 12, 2026 02:23
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 706aa28 to 1b5f68d Compare May 12, 2026 03:07
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 1b5f68d to 4a61f4e Compare May 13, 2026 17:14
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 4a61f4e to 6cf94b0 Compare May 14, 2026 04:34
@wrsmith108 @ruvnet @claude
chore(deps-dev): Bump @octokit/auth-app from 8.1.2 to 8.2.0
26b7b70 
Re-applied after SMI-4784 lockfile drift on auto-rebase.

Co-Authored-By: claude-flow <ruv@ruv.net>
Co-Authored-By: Claude <noreply@anthropic.com>
@wrsmith108 wrsmith108 force-pushed the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch from 6cf94b0 to 26b7b70 Compare May 14, 2026 04:39
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 14, 2026

E2E Test Results

Phase Status
CLI E2E ❌ cancelled
MCP E2E ❌ cancelled

@wrsmith108 wrsmith108 merged commit 53f64c0 into main May 14, 2026
38 checks passed
@wrsmith108 wrsmith108 deleted the dependabot/npm_and_yarn/octokit/auth-app-8.2.0 branch May 14, 2026 05:01
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 14, 2026

E2E Test Results

E2E Test Results - May 14, 2026

Summary

  • Status: ✅ PASSED
  • Total Duration: 0.00s
  • Generated: 2026-05-14T05:04:50.993Z

Test Results

Phase Status Duration
CLI E2E ⏭️ Skipped -
MCP E2E ⏭️ Skipped -

Generated by skillsmith E2E test suite

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@wrsmith108