Skip to content

chore(deps-dev): bump tmp from 0.2.3 to 0.2.7#7677

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/tmp-0.2.6
Open

chore(deps-dev): bump tmp from 0.2.3 to 0.2.7#7677
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/tmp-0.2.6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 27, 2026

Copy link
Copy Markdown
Contributor

Bumps tmp from 0.2.3 to 0.2.7.

Commits

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies javascript Pull requests that update javascript code labels May 27, 2026

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

https://github.com/open-condo-software/condo/blob/c69ac50604930ac7670414a9f5c2bcfa60c7737d/yarn.lock#L532
P1 Badge Regenerate lockfile with submodules checked out

This lockfile update drops many @app/*@workspace:apps/* entries (starting with @app/accruals-gateway) while the repo still treats apps/* as workspaces (package.json lines 8-10) and CI checks out submodules recursively before running yarn install --immutable (.github/workflows/nodejs.condo.ci.yml lines 266-281). Because those app paths are declared submodules in .gitmodules, a full checkout will reintroduce these workspace sections, causing lockfile drift and immutable-install failures in CI/developer environments with submodules initialized.

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

@dependabot @github

dependabot Bot commented on behalf of github Jun 3, 2026

Copy link
Copy Markdown
Contributor Author

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.

1 similar comment
@dependabot @github

dependabot Bot commented on behalf of github Jun 3, 2026

Copy link
Copy Markdown
Contributor Author

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/tmp-0.2.6 branch from c69ac50 to f747ebe Compare June 10, 2026 13:32
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/tmp-0.2.6 branch from f747ebe to 31d49f1 Compare June 15, 2026 08:37
@dependabot dependabot Bot changed the title chore(deps-dev): bump tmp from 0.2.3 to 0.2.6 chore(deps-dev): bump tmp from 0.2.3 to 0.2.7 Jun 22, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/tmp-0.2.6 branch from 31d49f1 to 13fa1e6 Compare June 22, 2026 07:45
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/tmp-0.2.6 branch from 13fa1e6 to 5879a97 Compare June 23, 2026 10:17
Bumps [tmp](https://github.com/raszi/node-tmp) from 0.2.3 to 0.2.7.
- [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md)
- [Commits](raszi/node-tmp@v0.2.3...v0.2.7)

---
updated-dependencies:
- dependency-name: tmp
  dependency-version: 0.2.6
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/tmp-0.2.6 branch from 5879a97 to 8ef4b5d Compare June 23, 2026 11:15
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies javascript Pull requests that update javascript code

Development

Successfully merging this pull request may close these issues.

0 participants