fix(deps): update website by renovate-bot · Pull Request #5545 · google/osv.dev

renovate-bot · 2026-06-16T17:01:24Z

This PR contains the following updates:

Package	Change	Age	Confidence
@github/clipboard-copy-element	`1.3.0` → `1.3.2`
google-auth (source)	`==2.53.0` → `==2.55.0`
google-cloud-logging (source)	`==3.15.0` → `==3.16.0`
google-cloud-storage (source)	`==3.10.1` → `==3.12.0`
pylint (changelog)	`4.0.5` → `4.0.6`
sass	`1.100.0` → `1.101.0`

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

github/clipboard-copy-element (@github/clipboard-copy-element)

`v1.3.2`

Compare Source

What's Changed

Normalize invisible and whitespace characters on copy by @jonrohan in #88

New Contributors

@jonrohan made their first contribution in #88

Full Changelog: github/clipboard-copy-element@v1.3.1...v1.3.2

`v1.3.1`

Compare Source

What's Changed

Bump follow-redirects from 1.14.9 to 1.15.4 by @dependabot[bot] in #72
Bump ip from 1.1.8 to 1.1.9 by @dependabot[bot] in #73
Bump follow-redirects from 1.15.4 to 1.15.6 by @dependabot[bot] in #74
Bump braces from 3.0.2 to 3.0.3 by @dependabot[bot] in #75
Bump the npm_and_yarn group with 7 updates by @dependabot[bot] in #76
Bump the npm_and_yarn group with 2 updates by @dependabot[bot] in #77
Bump the npm_and_yarn group with 4 updates by @dependabot[bot] in #79
Bump the npm_and_yarn group with 2 updates by @dependabot[bot] in #80
Bump the npm_and_yarn group across 1 directory with 2 updates by @dependabot[bot] in #81
Bump the npm_and_yarn group across 1 directory with 2 updates by @dependabot[bot] in #82
Potential fixes for 2 code scanning alerts by @cinderellasecure in #85
Modify publish workflow to include id-token permission by @gracepark in #86
Normalize non-breaking spaces when copying to clipboard by @Copilot in #87

New Contributors

@cinderellasecure made their first contribution in #85
@gracepark made their first contribution in #86
@Copilot made their first contribution in #87

Full Changelog: github/clipboard-copy-element@v1.3.0...v1.3.1

googleapis/google-cloud-python (google-auth)

`v2.55.0`: google-auth: v2.55.0

Compare Source

Features

make RAB feature production ready (#17390) (af193931)

Bug Fixes

run async background boundary refresh on detached session (#17441) (56cbea85)

`v2.54.0`

Compare Source

pylint-dev/pylint (pylint)

`v4.0.6`

Compare Source

What's new in Pylint 4.0.6?

Release date: 2026-06-14

False Positives Fixed

implicit-str-concat is no longer emitted for an implicit concatenation of
a raw string with a non-raw one (e.g. r"\d" "\n"). Such literals cannot be
merged into a single string, so the concatenation is intentional rather than a
forgotten comma.

Closes #6663
Fix a false positive for invalid-name (C0103) where the default
typevar-rgx rejected TypeVar names containing digits, such as
Ec2T.

Closes #8499
Fix a false positive for too-many-arguments in (non-static) methods and classmethods.

Closes #8675
Fix a false positive for no-member when a value is inferred to several
possible types and at least one of them defines a dynamic __getattr__.

Closes #9833
Fix a false positive for function-redefined (E0102) when reusing names that
match dummy-variables-rgx (such as _), which is common for
pytest-bdd step definitions. This restores the behavior from before pylint
4.0.0; as a consequence the false negative fixed in #9894 is reintroduced for
functions whose name matches dummy-variables-rgx.

Closes #10665
Fix undefined-variable false positive when a name used as a metaclass
argument in a nested class is referenced again later in the module.

Closes #10823
Fix a false positive for unused-variable where global variables matching
dummy-variables-rgx were still reported as unused when
allow-global-unused-variables was disabled.

Closes #10890
Fix a false positive for bad-dunder-name when there is a user-defined __suppress_context__ attribute on exception subclasses.

Closes #10960
Fix used-before-assignment false positive for names bound by from X import * in every branch of an if/elif/else chain.

Refs #10980
Check for metaclass call signature when evaluating arguments of a class call.

Closes #11032
Fix false positive method-hidden when cached_property is imported directly with from functools import cached_property.

Refs #11037

Other Bug Fixes

Fix the suggestion of unnecessary-comprehension for a dict comprehension
that iterates a dict directly, e.g. {a: b for a, b in d}. Iterating a dict
yields its keys, so the suggestion is now dict(d.keys()) instead of the
incorrect dict(d), which would simply copy d.

Closes #8256
Fix a crash in consider-using-enumerate when the for loop target is an attribute (e.g. for self.idx in range(len(x))) rather than a simple variable name.

Closes #10099
Fix crash when checking attribute-defined-outside-init on classes that inherit from a base class pylint cannot fully analyze.

Closes #10892
Fix add_message silently overwriting an explicit col_offset=0 (or any other zero-valued line/end_lineno/end_col_offset) with the AST node's value. The internal _add_one_message helper used a falsey check (if not col_offset:) to detect an omitted argument, which incorrectly treated a legitimate 0 the same as None. It now uses an identity check against None.

Refs #11020
Fix a crash in the name checker when a non-constant value is passed as the covariant or contravariant argument of a TypeVar.

Closes #11022
Fix a crash in the variable checker when a name resolves to a dataclass-synthesized __init__, which has no line number.

Closes #11023
Fix a crash in the variables checker when NotImplemented is used as the test of an if statement, which raised a TypeError in a boolean context on Python 3.14.

Closes #11025
Avoided a crash from the implicit booleaness checker for len() calls without arguments.

Closes #11028
Fix a crash in the variables checker when a class declares a metaclass whose
attribute-access chain does not bottom out at a name (e.g.
class C(metaclass=None._)).
Originally reported as pylint-dev/astroid#3066.

Refs #11031
Fix a crash in the name checker when a chained assignment of a TypeAlias
value has a non-name target such as a Subscript (for example
a[0] = b = TypeAlias).

Closes #11056
Fix a crash in the deprecated checker when __import__ is called with a
non-string constant argument (for example __import__(1)).

Closes #11059
Avoid crashing when enum member inference fails while checking enum subclasses.

Closes #11069
Prevent a crash in unexpected-keyword-arg analysis when
infer_call_result() raises InferenceError while inspecting
decorator return signatures.

Closes #11070
Fix a crash in the typecheck checker when a class uses a non-class object
(for example a function) as its metaclass= argument.

Closes #11071
Allow digits in ParamSpec and TypeVarTuple names for invalid-name check.

The default paramspec-rgx and typevartuple-rgx patterns rejected names
containing digits (e.g. Ec2P, S3Ts), emitting a false invalid-name
(C0103). Allow digits in the lowercase segments, consistent with the
typevar and typealias patterns.

Closes #11090

Performance Improvements

The duplicate-code checker no longer runs when its message (R0801) is disabled, even if reports=yes is set. Previously, the checker's report (RP0801) would cause the expensive similarity computation to run regardless.

Closes #3443

sass/dart-sass (sass)

`v1.101.0`

Compare Source

Potentially breaking bug fix: The Node package importer now properly
supports resolving import-only variants of Sass files declared in the
exports, sass, and style fields of package.json. Previously, these
files were ignored even when loaded via @import, so any code relying on
loading module-system-only files this way may break.

Configuration

📅 Schedule: (in timezone Australia/Sydney)

Branch creation
- "before 6am on wednesday"
Automerge
- At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

forking-renovate Bot added the dependencies Pull requests that update a dependency file label Jun 16, 2026

renovate-bot force-pushed the renovate/website branch 9 times, most recently from 5681b64 to 5e96cef Compare June 23, 2026 21:12

renovate-bot force-pushed the renovate/website branch 2 times, most recently from 7928a6d to b570fbd Compare June 25, 2026 10:51

fix(deps): update website

4db71c9

renovate-bot force-pushed the renovate/website branch from b570fbd to 4db71c9 Compare June 27, 2026 01:28

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

fix(deps): update website#5545

fix(deps): update website#5545
renovate-bot wants to merge 1 commit into
google:masterfrom
renovate-bot:renovate/website

renovate-bot commented Jun 16, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

renovate-bot commented Jun 16, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v1.3.2

What's Changed

New Contributors

v1.3.1

What's Changed

New Contributors

v2.55.0: google-auth: v2.55.0

Features

Bug Fixes

v2.54.0

v4.0.6

What's new in Pylint 4.0.6?

False Positives Fixed

Other Bug Fixes

Performance Improvements

v1.101.0

Configuration

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

renovate-bot commented Jun 16, 2026 •

edited

Loading

`v1.3.2`

`v1.3.1`

`v2.55.0`: google-auth: v2.55.0

`v2.54.0`

`v4.0.6`

`v1.101.0`