Skip to content

deps(npm)(deps-dev): bump eslint from 10.6.0 to 10.7.0#51

Merged
Coding-Dev-Tools merged 1 commit into
mainfrom
dependabot/npm_and_yarn/eslint-10.7.0
Jul 14, 2026
Merged

deps(npm)(deps-dev): bump eslint from 10.6.0 to 10.7.0#51
Coding-Dev-Tools merged 1 commit into
mainfrom
dependabot/npm_and_yarn/eslint-10.7.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps eslint from 10.6.0 to 10.7.0.

Release notes

Sourced from eslint's releases.

v10.7.0

Features

  • cf2a9bf feat: add errorClassNames option to preserve-caught-error rule (#21032) (sethamus)
  • f8b873a feat: max-nested-callbacks option for constructor callbacks (#21063) (fnx)
  • 557fde8 feat: support computed Number.parseInt member access in radix rule (#21041) (Pixel)
  • 0b4a73b feat: add suggestions to no-compare-neg-zero (#21034) (den$)
  • 96cdd42 feat: report invalid signed numeric radix values in radix rule (#21030) (Pixel)

Bug Fixes

  • 3e7bf15 fix: apply ignoreClassesWithImplements to class expressions (#21069) (Pixel)
  • 0d7d70c fix: insert cause outside wrapping parens in preserve-caught-error (#21062) (Mahin Anowar)
  • 75ec753 fix: handle static template literals in eqeqeq rule (#21058) (Pixel)
  • b717a22 fix: prevent eqeqeq null option from reporting non-equality operators (#21057) (Pixel)
  • e35b05f fix: avoid no-invalid-regexp false positive for shadowed RegExp (#21051) (Pixel)
  • a3172b6 fix: avoid no-control-regex false positive for shadowed RegExp (#21050) (Pixel)
  • d1f637e fix: parenthesize sequence expression operands in no-implicit-coercion (#21045) (spokodev)
  • 8859baf fix: avoid prefer-numeric-literals false positive for shadowed globals (#21047) (한국)
  • a9e5961 fix: use-isnan false positive on shadowed NaN/Number (#20958) (sethamus)
  • 8a240a7 fix: avoid false positives in radix rule for spread arguments (#21044) (Pixel)

Documentation

  • c30d808 docs: Update README (GitHub Actions Bot)
  • 5139800 docs: document ESLint migration codemods in v9 and v10 guides (#20980) (Alex Bit)
  • 04174cb docs: Update README (GitHub Actions Bot)
  • 026e130 docs: update semver policy for bug fixes (#21048) (Milos Djermanovic)
  • 9d42fef docs: Update README (GitHub Actions Bot)
  • b230159 docs: Update README (GitHub Actions Bot)
  • 0129972 docs: correct **/.js glob to **/*.js in config files guide (#21036) (EduardF1)

Chores

  • 9489379 chore: update dependency @​eslint/eslintrc to ^3.3.6 (#21076) (renovate[bot])
  • 81a4774 chore: updates for v9.39.5 release (Jenkins)
  • 9835414 chore: enable $ExpectType annotations in all TypeScript files (#21071) (Francesco Trotta)
  • 72adf6b chore: restrict markdownlint-cli2 updates in renovate (#21067) (lumir)
  • 833ec10 chore: update dependency prettier to v3.9.4 (#21061) (renovate[bot])
  • 7ea106d chore: update ecosystem plugins (#21059) (ESLint Bot)
  • 8fb550e chore: add prettier update commit to .git-blame-ignore-revs (#21056) (lumir)
  • e4e1166 chore: update dependency prettier to v3.9.1 (#21055) (renovate[bot])
  • 0493f53 chore: update prettier to v3.9.0 (#21054) (Pixel)
  • 1056a99 chore: update dependency prettier to v3.8.5 (#21049) (renovate[bot])
  • 4d4155d ci: run ecosystem tests on pull requests (#21027) (sethamus)
  • 993539f chore: update dependency @​eslint/json to ^2.0.1 (#21042) (renovate[bot])
  • 53f8b69 test: add error locations to no-constant-binary-expression (#21039) (lumir)
  • 5ab71d5 refactor: clean up radix rule internals (#21015) (Pixel)
  • a80a9a4 chore: update ecosystem plugins (#21035) (ESLint Bot)
  • 7c9a029 ci: add Node.js 26 to CI (#20847) (lumir)
Commits
  • fabd99b 10.7.0
  • 37c5e75 Build: changelog update for 10.7.0
  • 9489379 chore: update dependency @​eslint/eslintrc to ^3.3.6 (#21076)
  • 81a4774 chore: updates for v9.39.5 release
  • 3e7bf15 fix: apply ignoreClassesWithImplements to class expressions (#21069)
  • 9835414 chore: enable $ExpectType annotations in all TypeScript files (#21071)
  • cf2a9bf feat: add errorClassNames option to preserve-caught-error rule (#21032)
  • c30d808 docs: Update README
  • f8b873a feat: max-nested-callbacks option for constructor callbacks (#21063)
  • 72adf6b chore: restrict markdownlint-cli2 updates in renovate (#21067)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [eslint](https://github.com/eslint/eslint) from 10.6.0 to 10.7.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](eslint/eslint@v10.6.0...v10.7.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-version: 10.7.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 13, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor Author

Assignees

The following users could not be added as assignees: Coding-Dev-Tools/engineers. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: npm. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@github-actions

Copy link
Copy Markdown

🤖 Automated Code Review

✅ Ruff Lint — No issues

⚠️ Ruff Format — Formatting needed

Would reformat: src/api_contract_guardian/cli.py
Would reformat: src/api_contract_guardian/diff.py
Would reformat: src/api_contract_guardian/gate.py
Would reformat: src/api_contract_guardian/loader.py
Would reformat: src/api_contract_guardian/migration.py
Would reformat: tests/test_diff.py
Would reformat: tests/test_edge_cases.py
Would reformat: tests/test_gate.py
Would reformat: tests/test_migration.py
9 files would be reformatted, 6 files already formatted

✅ Secret Detection — Clean

✅ Large Files — Within limits

📊 Diff Stats — 2 file(s) changed

 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

Verdict: ⚠️ Warnings — Lint/format issues found. Recommend fixing before merge.

Automated by Coding-Dev-Tools/.github reusable workflow.

@Coding-Dev-Tools Coding-Dev-Tools left a comment

Copy link
Copy Markdown
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pre-PR Review (Reviewer: Pre-PR Code Analyzer) — Verdict: APPROVE (pending 6h / 3-reviewer gate)

Routine dependabot bump: eslint 10.6.0 → 10.7.0 in package.json + package-lock.json (integrity hash rotated). No source/config logic change.

Low risk. Confirm CI (lint/test) is green before merge — eslint minor bumps occasionally shift rule defaults. Single author → approval withheld per policy.

@Coding-Dev-Tools

Copy link
Copy Markdown
Owner

⚖️ Council Gate Verdict: APPROVE

Risk level: high
Agreement / confidence: 1.0
Council session: council-61a554e6-e2d8-4bee-8448-6dd959bfa235

Per-model scores

Model Recommendation Correctness Safety Style Tests Complexity Peer overall
nvidia/nemotron-3-ultra-550b-a55b approve 5.0 5.0 5.0 5.0 1.0 4.2

Rationales

  • nvidia/nemotron-3-ultra-550b-a55b (approve): Minor version bump (10.6.0 -> 10.7.0) with bug fixes, new features, and documentation updates only. No breaking changes. Standard dependabot dependency update.

Engraphis ref: not persisted (hook unavailable)


Automated multi-model council review. APPROVE/APPROVE_WITH_NITS → council-approved; REWORK/REJECT → needs-rework.

@Coding-Dev-Tools

Copy link
Copy Markdown
Owner

🤖 Council Merge Gate — APPROVE (merge blocked by branch protection)

The model council review gate returned APPROVE for this merge (session council-a4fc5209-79fb-4d41-a49d-49e72093b612), so the change is council-cleared.

However, gh pr merge was rejected by GitHub branch protection: the base branch policy prohibits the merge. This repo requires passing status checks and/or an approving review before merge, and those requirements are not currently satisfied (e.g. failing required CI checks).

Action needed (human): resolve the failing required checks / obtain the required review, then merge. A maintainer with admin rights may also merge explicitly. The PR is left OPEN.

Posted automatically by the council_gate_merge cron job.

@Coding-Dev-Tools

Coding-Dev-Tools commented Jul 14, 2026

Copy link
Copy Markdown
Owner

⚖️ Council Gate Verdict: APPROVE

Risk level: high
Agreement / confidence: 1.0
Council session: council-fe70ce43-ac1e-421d-beba-ab263b3313e9
Models in council: nvidia/nemotron-3-super-120b-a12b, nvidia/nemotron-3-ultra-550b-a55b, nvidia/llama-3.3-nemotron-super-49b-v1.5

Per-model scores

Model Recommendation Correctness Safety Style Tests Complexity Peer overall
nvidia/nemotron-3-ultra-550b-a55b approve - - - - - 4.2
nvidia/nemotron-3-super-120b-a12b approve_with_nits - - - - - 4.4
nvidia/llama-3.3-nemotron-super-49b-v1.5 approve - - - - - 5.0

Rationales

  • nvidia/nemotron-3-ultra-550b-a55b (approve): Routine minor version bump of eslint dev dependency (10.6.0 -> 10.7.0) with only package.json and package-lock.json changes. Release notes show new features, bug fixes, and docs only — no breaking changes. Low risk, correctly applied.
  • nvidia/nemotron-3-super-120b-a12b (approve_with_nits): The PR correctly updates eslint to v10.7.0 with no breaking changes, posing low safety risk and maintaining style. However, no test updates or verification steps are included, which is a missed opportunity to ensure the update does not break linting.
  • nvidia/llama-3.3-nemotron-super-49b-v1.5 (approve): Minor version bump with bug fixes, features, and documentation updates. No breaking changes indicated. Tests and safety addressed in release notes.

Engraphis ref: mem_01KXHD3GK81JWRWNAG2TYKAFWH (workspace Coding-Dev-Tools, kind council_pr_review)


Automated multi-model council review (NVIDIA Nemotron/LLaMA). APPROVE / APPROVE_WITH_NITS → council-approved; REWORK / REJECT → needs-rework.

@Coding-Dev-Tools

Coding-Dev-Tools commented Jul 14, 2026

Copy link
Copy Markdown
Owner

@C:/Users/jomie/Documents/Github_ref_51.md

@Coding-Dev-Tools Coding-Dev-Tools added the council-approved Council gate approved this PR (APPROVE / APPROVE_WITH_NITS) label Jul 14, 2026
@Coding-Dev-Tools

Copy link
Copy Markdown
Owner

Pre-PR Code Review — Hermes Agent (Pre-PR Analyzer)

Verdict: APPROVE — routine dependabot dev-dependency bump, CI green.

Assessment

CI: All green

  • ✅ test (3.10–3.13): SUCCESS
  • ✅ code-review (Auto Code Review): SUCCESS
  • ❌ ensure-pr: FAILURE (known fleet createPullRequest token-scope denial — non-code)
  • mergeStateStatus: BLOCKED (only due to ensure-pr failure, which is non-code)

Change: Standard npm dev-dependency bump

  • eslint: ^10.6.0^10.7.0 (package.json + package-lock.json with updated integrity hash)

Notes:

  • eslint 10.7.0 is a minor bump with bug fixes and features (no breaking changes per release notes).
  • No source code changes, no security concerns.
  • Pinned package-lock.json integrity hash is correctly updated.
  • Standard dependabot PR — low risk. Posting as COMMENT (dependabot cannot self-approve).

Pre-PR Code Reviewer — Hermes Agent cron job

@Coding-Dev-Tools Coding-Dev-Tools merged commit bdd501d into main Jul 14, 2026
5 checks passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/eslint-10.7.0 branch July 14, 2026 23:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

council-approved Council gate approved this PR (APPROVE / APPROVE_WITH_NITS) dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant