Skip to content

Bump org.yaml:snakeyaml from 2.5 to 2.6#527

Open
dependabot[bot] wants to merge 1 commit intodependenciesfrom
dependabot/maven/dependencies/org.yaml-snakeyaml-2.6
Open

Bump org.yaml:snakeyaml from 2.5 to 2.6#527
dependabot[bot] wants to merge 1 commit intodependenciesfrom
dependabot/maven/dependencies/org.yaml-snakeyaml-2.6

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 27, 2026

Bumps org.yaml:snakeyaml from 2.5 to 2.6.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump org.yaml:snakeyaml from 2.5 to 2.6
c79efe0 
Bumps [org.yaml:snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml) from 2.5 to 2.6.
- [Commits](https://bitbucket.org/snakeyaml/snakeyaml/branches/compare/snakeyaml-2.6..snakeyaml-2.5)

---
updated-dependencies:
- dependency-name: org.yaml:snakeyaml
  dependency-version: '2.6'
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Feb 27, 2026
@github-actions
Copy link

github-actions bot commented Feb 27, 2026

MegaLinter analysis: Success

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ ACTION actionlint 3 0 0 0.04s
✅ JAVA checkstyle 111 0 0 11.72s
✅ MARKDOWN markdownlint 5 0 0 2.57s
✅ MARKDOWN markdown-table-formatter 5 0 0 0.77s
✅ REPOSITORY checkov yes no no 23.03s
✅ REPOSITORY gitleaks yes no no 2.77s
✅ REPOSITORY git_diff yes no no 0.03s
✅ REPOSITORY grype yes no no 44.37s
✅ REPOSITORY secretlint yes no no 2.39s
✅ REPOSITORY syft yes no no 2.36s
✅ REPOSITORY trivy yes no no 11.71s
✅ REPOSITORY trivy-sbom yes no no 0.34s
✅ REPOSITORY trufflehog yes no no 3.97s
✅ YAML v8r 6 0 0 6.79s
✅ YAML yamllint 6 0 0 0.37s

See detailed reports in MegaLinter artifacts

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

  • Documentation: Custom Flavors
  • Command: npx mega-linter-runner@9.3.0 --custom-flavor-setup --custom-flavor-linters ACTION_ACTIONLINT,JAVA_CHECKSTYLE,MARKDOWN_MARKDOWNLINT,MARKDOWN_MARKDOWN_TABLE_FORMATTER,REPOSITORY_CHECKOV,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,YAML_YAMLLINT,YAML_V8R

MegaLinter is graciously provided by OX Security

@ljacqu ljacqu self-assigned this Mar 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@ljacqu ljacqu

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ljacqu