Skip to content

chore(deps-dev): bump pa11y from 7.0.0 to 9.1.1 in /frontend#769

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/frontend/pa11y-9.1.1
Closed

chore(deps-dev): bump pa11y from 7.0.0 to 9.1.1 in /frontend#769
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/frontend/pa11y-9.1.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 28, 2026
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps pa11y from 7.0.0 to 9.1.1.

Release notes

Sourced from pa11y's releases.

v9.1.1

  • Fix several issues with loading custom runners, including errors when loading any custom runner on Windows. (#798)
  • Update debug messages related to opening the page and navigating to the target URL. (#701)
  • Update dependencies (no functional changes)

Full diff for pa11y@9.1.1

v9.1.0

Pa11y 9.1 includes updates and improvements to both htmlcs and axe runners, replacement of mockery with quibble in the test suite to resolve security issues, an upgrade to ESLint v9 with flat config, and various other updates.

Changes

  • Update to the new @pa11y/html_codesniffer fork, which incorporates the latest unreleased updates from html_codesniffer and resolves several issues (#698).
  • Incorporate several updates and improvements to the axe runner:
    • Update axe-core to 4.11 from 4.10, which includes fixes for numerous rules that may affect Pa11y results. See the axe-core release notes for complete details.
    • Update the axe runner with a user-specified option to control how issues requiring manual review are handled, which resolves several issues. Added CLI arg --level-cap-when-needs-review <level> (default: error), which caps the severity of any issue that axe reports as requiring manual review. This is not a breaking change as the default behavior remains unchanged. (#685)
  • Replace mockery with quibble for mocking in the test suite, removing the deprecated mockery dependency and resolving critical vulnerability CVE-2022-37614 / GHSA-gmwp-3pwc-3j3g. (#772)
  • Update to ESLint v9 and flat config using eslint-config-pa11y, refactored for ESLint and flat config changes. (#778)
  • Add example JSON and JavaScript config files.
  • Update other dependencies (no functional changes)

Full diff for pa11y@9.1.0

Version 9.0.1

What's Changed

  • Upgrade dependencies
  • AppArmor-related documentation updates (thanks @​d33bs)
  • Requirements documentation updates (thanks @​WilliamCollishaw)
  • Improve security posture

New Contributors

Full Changelog: pa11y/pa11y@9.0.0...9.0.1

v9.0.0

Pa11y 9 requires a stable (even-numbered) Node.js version of 20 or above, updates to the latest version of Puppeteer (24) and Axe (4.10), updates several other dependencies, and includes some GitHub actions and documentation cleanup.

Changes in pa11y@9

  • Breaking: Upgrade Node.js support: Pa11y 9 requires a stable (even-numbered) Node.js version of 20 or above
  • Significant dependency changes (potentially impacting Pa11y results):
    • Upgrade puppeteer to 24 from 22. This updates the underlying Chrome version (to 135).

... (truncated)

Changelog

Sourced from pa11y's changelog.

9.1.1 (2026-02-26)

  • Fix several issues with loading custom runners, including errors when loading any custom runner on Windows. (#798)
  • Update debug messages related to opening the page and navigating to the target URL. (#701)
  • Update dependencies (no functional changes)

Full diff for pa11y@9.1.1

9.1.0 (2026-02-03)

Pa11y 9.1 includes updates and improvements to both htmlcs and axe runners, replacement of mockery with quibble in the test suite to resolve security issues, an upgrade to ESLint v9 with flat config, and various other updates.

Changes

  • Update to the new @pa11y/html_codesniffer fork, which incorporates the latest unreleased updates from html_codesniffer and resolves several issues (#698).
  • Incorporate several updates and improvements to the axe runner:
    • Update axe-core to 4.11 from 4.10, which includes fixes for numerous rules that may affect Pa11y results. See the axe-core release notes for complete details.
    • Update the axe runner with a user-specified option to control how issues requiring manual review are handled, which resolves several issues. Added CLI arg --level-cap-when-needs-review <level> (default: error), which caps the severity of any issue that axe reports as requiring manual review. This is not a breaking change as the default behavior remains unchanged. (#685)
  • Replace mockery with quibble for mocking in the test suite, removing the deprecated mockery dependency and resolving critical vulnerability CVE-2022-37614 / GHSA-gmwp-3pwc-3j3g. (#772)
  • Update to ESLint v9 and flat config using eslint-config-pa11y, refactored for ESLint and flat config changes. (#778)
  • Add example JSON and JavaScript config files.
  • Update other dependencies (no functional changes)

Full diff for pa11y@9.1.0

9.0.1 (2025-09-25)

  • Upgrade dependencies
  • AppArmor-related documentation updates (thanks @​d33bs)
  • Requirements documentation updates (thanks @​WilliamCollishaw)
  • Improve security posture

9.0.0 (2025-05-07)

Pa11y 9 requires a stable (even-numbered) Node.js version of 20 or above, updates to the latest version of Puppeteer (24) and Axe (4.10), updates several other dependencies, and includes some GitHub actions and documentation cleanup.

Changes in pa11y@9

  • Breaking: Upgrade Node.js support: Pa11y 9 requires a stable (even-numbered) Node.js version of 20 or above
  • Significant dependency changes (potentially impacting Pa11y results):
    • Upgrade puppeteer to 24 from 22. This updates the underlying Chrome version (to 135).
    • Upgrade axe-core to 4.10 from 4.8. This includes rule fixes that may change results when using the axe runner. See axe-core releases for complete details.
  • Other dependency changes:
    • Upgrade bfj to 9.1 from 8.0.
    • Upgrade commander to 13.1 from 12.0.
    • Upgrade envinfo to 7.14 from 7.11.

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for pa11y since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps-dev): bump pa11y from 7.0.0 to 9.1.1 in /frontend
dd469e6 
Bumps [pa11y](https://github.com/pa11y/pa11y) from 7.0.0 to 9.1.1.
- [Release notes](https://github.com/pa11y/pa11y/releases)
- [Changelog](https://github.com/pa11y/pa11y/blob/main/CHANGELOG.md)
- [Commits](pa11y/pa11y@7.0.0...9.1.1)

---
updated-dependencies:
- dependency-name: pa11y
  dependency-version: 9.1.1
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 28, 2026
@hman38705 hman38705 mentioned this pull request May 28, 2026
Merged
@hman38705 GitHub Codespaces
Copy link
Copy Markdown
Contributor

hman38705 commented May 28, 2026

Superseded by #799 (consolidated dependabot bumps — all version updates applied and merged).

@hman38705 hman38705 closed this May 28, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 28, 2026

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/frontend/pa11y-9.1.1 branch May 28, 2026 20:49
Happybello365 pushed a commit to Happybello365/predictIQ that referenced this pull request May 29, 2026
@hman38705
chore(deps): consolidate dependabot bumps for frontend and TTS packages
35d13df 
- frontend: pa11y 7→9.1.1, jest 29→30.4.2, @types/jest 29→30, jest-environment-jsdom 29→30.4.1, @testing-library/react 14→16.3.2, typescript 5→6.0.3
- tts: @google-cloud/text-to-speech 5→6.4.1, @opentelemetry/* packages, @types/express 4→5.0.6, ts-jest 29.4.9→29.4.11, jest 30.3→30.4.2, typescript 5→6.0.3

Resolves PRs solutions-plug#767 solutions-plug#769 solutions-plug#770 solutions-plug#773 solutions-plug#775 solutions-plug#776 solutions-plug#778 solutions-plug#780 solutions-plug#782 solutions-plug#784 solutions-plug#785 solutions-plug#786 solutions-plug#787 solutions-plug#788
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@hman38705