Skip to content

chore: bump marked from 15.0.12 to 17.0.6 in the marked group across 1 directory#1770

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/marked-b39174fb80
Open

chore: bump marked from 15.0.12 to 17.0.6 in the marked group across 1 directory#1770
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/marked-b39174fb80

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 14, 2026
edited
Loading

Bumps the marked group with 1 update in the / directory: marked.

Updates marked from 15.0.12 to 17.0.6

Release notes

Sourced from marked's releases.

v17.0.6

17.0.6 (2026-04-05)

Bug Fixes

  • avoid race condition in async parallel parse/parseInline with hooks (#3924) (6e96fa7)
  • cli: honor positional input file (#3922) (a1c2617)
  • cli: use file URL for config import (#3923) (73e1f3f)

v17.0.5

17.0.5 (2026-03-20)

Bug Fixes

  • Fix catastrophic backtracking (ReDoS) in link/reflink label regex (#3918) (4625980)
  • prevent quadratic complexity in emStrongLDelim regex (#3906) (c732dd2)
  • prevent single-tilde strikethrough false positives (#3910) (5e03369)
  • re-assign tokenizer.lexer and renderer.parser at start of each parse call (#3907) (f3a3ec0)
  • trim trailing whitespace from lheading text (#3920) (3ea7e88)

v17.0.4

17.0.4 (2026-03-04)

Bug Fixes

  • prevent ReDoS in inline link regex title group (#3902) (46fb9b8)

v17.0.3

17.0.3 (2026-02-17)

Bug Fixes

v17.0.2

17.0.2 (2026-02-11)

Bug Fixes

... (truncated)

Commits
  • e07037e chore(release): 17.0.6 [skip ci]
  • 6e96fa7 fix: avoid race condition in async parallel parse/parseInline with hooks (#3924)
  • 73e1f3f fix(cli): use file URL for config import (#3923)
  • a1c2617 fix(cli): honor positional input file (#3922)
  • 3b59e81 refactor: use strict equality in RegExp exec checks (#3935)
  • e6b37f2 chore(deps-dev): Bump lodash from 4.17.23 to 4.18.1 (#3937)
  • abb5667 chore(deps-dev): Bump lodash-es from 4.17.23 to 4.18.1 (#3936)
  • 4969cf2 chore(deps-dev): Bump handlebars from 4.7.8 to 4.7.9 (#3931)
  • d44cafc chore(deps-dev): Bump picomatch from 2.3.1 to 2.3.2 (#3929)
  • 59386ad chore(deps-dev): Bump eslint from 10.0.3 to 10.1.0 (#3928)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for marked since your current version.


Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
marked [>= 18.a, < 19]

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 14, 2026
@dependabot dependabot bot changed the title chore: bump marked from 15.0.12 to 17.0.6 in the marked group chore: bump marked from 15.0.12 to 17.0.6 in the marked group across 1 directory Apr 15, 2026
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/marked-b39174fb80 branch from 32ca77d to 31c62b8 Compare April 15, 2026 20:24
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/marked-b39174fb80 branch from 31c62b8 to 64d44e5 Compare April 16, 2026 20:24
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/marked-b39174fb80 branch from 64d44e5 to 2262cea Compare April 17, 2026 20:24
@dependabot
chore: bump marked from 15.0.12 to 17.0.6 in the marked group
8354338 
Bumps the marked group with 1 update: [marked](https://github.com/markedjs/marked).


Updates `marked` from 15.0.12 to 17.0.6
- [Release notes](https://github.com/markedjs/marked/releases)
- [Commits](markedjs/marked@v15.0.12...v17.0.6)

---
updated-dependencies:
- dependency-name: marked
  dependency-version: 17.0.6
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: marked
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/marked-b39174fb80 branch from 2262cea to 8354338 Compare April 20, 2026 22:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants