Skip to content
This repository was archived by the owner on May 31, 2026. It is now read-only.

Bump minimatch, gulp-sass and mocha#6

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/multi-5ef0c3ce01
Open

Bump minimatch, gulp-sass and mocha#6
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/multi-5ef0c3ce01

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 31, 2026

Bumps minimatch to 3.1.5 and updates ancestor dependencies minimatch, gulp-sass and mocha. These dependencies need to be updated together.

Updates minimatch from 3.0.4 to 3.1.5

Commits

Updates gulp-sass from 4.0.2 to 6.0.1

Release notes

Sourced from gulp-sass's releases.

v6.0.1

Fixes

v6.0.0

First and foremost a huge shout out to @​wkillerud for making this long awaited release possible <3

Breaking changes

Documentation

Upgrading to v6

gulp-sass version 6 uses the new compile function internally by default. If you use any options, for instance custom importers, please compare the new options with the legacy options in order to migrate. For instance, the outputStyle option is now called style.

  function buildStyles() {
    return gulp.src('./sass/**/*.scss')
-     .pipe(sass({outputStyle: 'compressed'}).on('error', sass.logError))
+     .pipe(sass({style: 'compressed'}).on('error', sass.logError))
      .pipe(gulp.dest('./css'));
  };

If you want to keep using the legacy API while it's available, you can.

const sass = require('gulp-sass/legacy')(require('sass'));

or to continue using node-sass

npm install gulp-sass node-sass
const sass = require('gulp-sass/legacy')(require('node-sass'));

If you use source maps, you may see the result change somewhat. The result will typically be absolute file: URLs, rather than relative ones. The result may also be the source itself, URL encoded. You can optionally add custom importers to adjust the source maps according to your own needs.

New Contributors

Full Changelog: dlmanning/gulp-sass@v5.1.0...v6.0.0

... (truncated)

Changelog

Sourced from gulp-sass's changelog.

v6.0.1

March 5, 2025

https://github.com/dlmanning/gulp-sass/releases/tag/v6.0.1

v6.0.0

November 27, 2024

https://github.com/dlmanning/gulp-sass/releases/tag/v6.0.0

v5.0.0

June 25, 2021

https://github.com/dlmanning/gulp-sass/releases/tag/v5.0.0

v4.1.1

June 24, 2021

https://github.com/dlmanning/gulp-sass/releases/tag/v4.1.1

v4.1.0

April 23, 2020

https://github.com/dlmanning/gulp-sass/releases/tag/v4.1.0

Commits

Updates mocha from 6.2.2 to 11.7.6

Release notes

Sourced from mocha's releases.

v11.7.6

11.7.6 (2026-02-14)

🩹 Fixes

  • make describe().timeout() work (aafe6fd)
  • test: replace wmic usage with native Windows API (#5694) (73ebdfa)

🧹 Chores

v11.7.5

11.7.5 (2025-11-04)

🩹 Fixes

  • swallow more require errors from *ts files (#5498) (d89dbaf)

🧹 Chores

v11.7.4

11.7.4 (2025-10-01)

🩹 Fixes

📚 Documentation

  • migrate remaining legacy wiki pages to main documentation (#5465) (bff9166)

🧹 Chores

v11.7.3

11.7.3 (2025-09-30)

... (truncated)

Changelog

Sourced from mocha's changelog.

11.7.6 (2026-02-14)

🩹 Fixes

  • make describe().timeout() work (aafe6fd)
  • test: replace wmic usage with native Windows API (#5694) (73ebdfa)

🧹 Chores

11.7.5 (2025-11-04)

🩹 Fixes

  • swallow more require errors from *ts files (#5498) (d89dbaf)

🧹 Chores

11.7.4 (2025-10-01)

🩹 Fixes

📚 Documentation

  • migrate remaining legacy wiki pages to main documentation (#5465) (bff9166)

🧹 Chores

11.7.3 (2025-09-30)

🩹 Fixes

  • use original require() error for TS files if ERR_UNKNOWN_FILE_EXTENSION (#5408) (ebdbc48)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by joshuakgoldberg, a new releaser for mocha since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump minimatch, gulp-sass and mocha
be83f59 
Bumps [minimatch](https://github.com/isaacs/minimatch) to 3.1.5 and updates ancestor dependencies [minimatch](https://github.com/isaacs/minimatch), [gulp-sass](https://github.com/dlmanning/gulp-sass) and [mocha](https://github.com/mochajs/mocha). These dependencies need to be updated together.


Updates `minimatch` from 3.0.4 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v3.0.4...v3.1.5)

Updates `gulp-sass` from 4.0.2 to 6.0.1
- [Release notes](https://github.com/dlmanning/gulp-sass/releases)
- [Changelog](https://github.com/dlmanning/gulp-sass/blob/master/CHANGELOG.md)
- [Commits](dlmanning/gulp-sass@v4.0.2...v6.0.1)

Updates `mocha` from 6.2.2 to 11.7.6
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/v11.7.6/CHANGELOG.md)
- [Commits](mochajs/mocha@v6.2.2...v11.7.6)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
- dependency-name: gulp-sass
  dependency-version: 6.0.1
  dependency-type: direct:development
- dependency-name: mocha
  dependency-version: 11.7.6
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 31, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants