Skip to content

⬆️ Bump yaml from 2.3.1 to 2.8.3#2161

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/yaml-2.8.3
Open

⬆️ Bump yaml from 2.3.1 to 2.8.3#2161
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/yaml-2.8.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 25, 2026
edited
Loading

Bumps yaml from 2.3.1 to 2.8.3.

Release notes

Sourced from yaml's releases.

v2.8.3

  • Add trailingComma ToString option for multiline flow formatting (#670)
  • Catch stack overflow during node composition (1e84ebb)

v2.8.2

  • Serialize -0 as -0 (#638)
  • Do not double newlines for empty map values (#642)

v2.8.1

  • Preserve empty block literals (#634)

v2.8.0

  • Add node cache for faster alias resolution (#612)
  • Re-introduce compatibility with Node.js 14.6 (#614)
  • Add --merge option to CLI tool (#611)
  • Improve error for tag resolution error on null value (#616)
  • Allow empty string as plain scalar representation, for failsafe schema (#616)
  • docs: include cli example (#617)

v2.7.1

  • Do not allow seq with single-line collection value on same line with map key (#603)
  • Improve warning & avoid TypeError on bad YAML 1.1 nodes (#610)

v2.7.0

The library is now available on JSR as @​eemeli/yaml and on deno.land/x as yaml. In addition to Node.js and browsers, it should work in Deno, Bun, and Cloudflare Workers.

  • Use .ts extension in all relative imports (#591)
  • Ignore newline after block seq indicator as space before value (#590)
  • Require Node.js 14.18 or later (was 14.6) (#598)

v2.6.1

  • Do not strip :00 seconds from !!timestamp values (#578, with thanks to @​qraynaud)
  • Tighten regexp for JSON !!bool (#587, with thanks to @​vra5107)
  • Default to literal block scalar if folded would overflow (#585)

v2.6.0

  • Use a proper tag for !!merge << keys (#580)
  • Add stringKeys parse option (#581)
  • Stringify a Document as a Document (#576)
  • Add sponsorship by Manifest

v2.5.1

  • Include range in flow sequence pair maps (#573)

v2.5.0

  • Add --indent option to CLI tool (#559, with thanks to @​danielbayley)
  • Require newline in all cases for props on block sequence (#557)
  • Always reset indentation in lexer on ... (#558)
  • Ignore minContentWidth if greater than lineWidth (#562)
  • Drop unused Collection.maxFlowStringSingleLineLength (#522, #421)

... (truncated)

Commits
  • ce14587 2.8.3
  • 1e84ebb fix: Catch stack overflow during node composition
  • 6b24090 ci: Include Prettier check in lint action
  • 9424dee chore: Refresh lockfile
  • d1aca82 Add trailingComma ToString option for multiline flow formatting (#670)
  • 4321509 ci: Drop the branch filter from GitHub PR actions
  • 47207d0 chore: Update docs-slate
  • 5212fae chore: Update docs-slate
  • 086fa6b 2.8.2
  • 95f01e9 chore: Add funding to package.json
  • Additional commits viewable in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added the ⬆️⬇️ dependencies Pull requests that update a dependency file label Mar 25, 2026
@dependabot dependabot Bot requested a review from a team as a code owner March 25, 2026 23:10
@dependabot dependabot Bot requested review from Shivanshu-07 and prklm10 March 25, 2026 23:10
@dependabot dependabot Bot added the ⬆️⬇️ dependencies Pull requests that update a dependency file label Mar 25, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/yaml-2.8.3 branch 2 times, most recently from 807cd9a to c82dd0a Compare April 1, 2026 04:31
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/yaml-2.8.3 branch from c82dd0a to 3c6e2e6 Compare April 20, 2026 12:38
@dependabot
⬆️ Bump yaml from 2.3.1 to 2.8.3
1ae5d5b 
Bumps [yaml](https://github.com/eemeli/yaml) from 2.3.1 to 2.8.3.
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v2.3.1...v2.8.3)

---
updated-dependencies:
- dependency-name: yaml
  dependency-version: 2.8.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/yaml-2.8.3 branch from 3c6e2e6 to 1ae5d5b Compare April 21, 2026 10:04
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 19, 2026

This PR is stale because it has been open for more than 14 days with no activity. Remove stale label or comment or this will be closed in 14 days.

@github-actions github-actions Bot added the 🍞 stale Closed due to inactivity label May 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@prklm10 prklm10 Awaiting requested review from prklm10 prklm10 is a code owner automatically assigned from percy/percy-product-reviewers

@Shivanshu-07 Shivanshu-07 Awaiting requested review from Shivanshu-07 Shivanshu-07 is a code owner automatically assigned from percy/percy-product-reviewers

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

⬆️⬇️ dependencies Pull requests that update a dependency file 🍞 stale Closed due to inactivity

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants