Bump @eslint/js from 9.39.4 to 10.0.1 in /src/vscode-bicep by dependabot[bot] · Pull Request #19366 · Azure/bicep

dependabot · 2026-04-05T23:33:40Z

Bumps @eslint/js from 9.39.4 to 10.0.1.

Release notes

Sourced from @eslint/js's releases.

v10.0.1

Bug Fixes

c87d5bd fix: update eslint (#20531) (renovate[bot])

d841001 fix: update minimatch to 10.2.1 to address security vulnerabilities (#20519) (루밀LuMir)

04c2147 fix: update error message for unused suppressions (#20496) (fnx)

38b089c fix: update dependency @eslint/config-array to ^0.23.1 (#20484) (renovate[bot])

Documentation

5b3dbce docs: add AI acknowledgement section to templates (#20431) (루밀LuMir)

6f23076 docs: toggle nav in no-JS mode (#20476) (Tanuj Kanti)

b69cfb3 docs: Update README (GitHub Actions Bot)

Chores

e5c281f chore: updates for v9.39.3 release (Jenkins)

8c3832a chore: update @typescript-eslint/parser to ^8.56.0 (#20514) (Milos Djermanovic)

8330d23 test: add tests for config-api (#20493) (Milos Djermanovic)

37d6e91 chore: remove eslint v10 prereleases from eslint-config-eslint deps (#20494) (Milos Djermanovic)

da7cd0e refactor: cleanup error message templates (#20479) (Francesco Trotta)

84fb885 chore: package.json update for @eslint/js release (Jenkins)

1f66734 chore: add eslint to peerDependencies of @eslint/js (#20467) (Milos Djermanovic)

v10.0.0

Breaking Changes

f9e54f4 feat!: estimate rule-tester failure location (#20420) (ST-DDT)

a176319 feat!: replace chalk with styleText and add color to ResultsMeta (#20227) (루밀LuMir)

c7046e6 feat!: enable JSX reference tracking (#20152) (Pixel998)

fa31a60 feat!: add name to configs (#20015) (Kirk Waiblinger)

3383e7e fix!: remove deprecated SourceCode methods (#20137) (Pixel998)

501abd0 feat!: update dependency minimatch to v10 (#20246) (renovate[bot])

ca4d3b4 fix!: stricter rule tester assertions for valid test cases (#20125) (唯然)

96512a6 fix!: Remove deprecated rule context methods (#20086) (Nicholas C. Zakas)

c69fdac feat!: remove eslintrc support (#20037) (Francesco Trotta)

208b5cc feat!: Use ScopeManager#addGlobals() (#20132) (Milos Djermanovic)

a2ee188 fix!: add uniqueItems: true in no-invalid-regexp option (#20155) (Tanuj Kanti)

a89059d feat!: Program range span entire source text (#20133) (Pixel998)

39a6424 fix!: assert 'text' is a string across all RuleFixer methods (#20082) (Pixel998)

f28fbf8 fix!: Deprecate "always" and "as-needed" options of the radix rule (#20223) (Milos Djermanovic)

aa3fb2b fix!: tighten func-names schema (#20119) (Pixel998)

f6c0ed0 feat!: report eslint-env comments as errors (#20128) (Francesco Trotta)

4bf739f fix!: remove deprecated LintMessage#nodeType and TestCaseError#type (#20096) (Pixel998)

523c076 feat!: drop support for jiti < 2.2.0 (#20016) (michael faith)

454a292 feat!: update eslint:recommended configuration (#20210) (Pixel998)

4f880ee feat!: remove v10_* and inactive unstable_* flags (#20225) (sethamus)

f18115c feat!: no-shadow-restricted-names report globalThis by default (#20027) (sethamus)

c6358c3 feat!: Require Node.js ^20.19.0 || ^22.13.0 || >=24 (#20160) (Milos Djermanovic)

Features

bff9091 feat: handle Array.fromAsync in array-callback-return (#20457) (Francesco Trotta)

290c594 feat: add self to no-implied-eval rule (#20468) (sethamus)

43677de feat: fix handling of function and class expression names in no-shadow (#20432) (Milos Djermanovic)

... (truncated)

Commits

84fb885 chore: package.json update for @eslint/js release
1f66734 chore: add eslint to peerDependencies of @eslint/js (#20467)
f3fbc2f chore: set @eslint/js version to 10.0.0 to skip releasing it (#20466)
b4b3127 chore: package.json update for @eslint/js release
0b14059 chore: package.json update for @eslint/js release
fa31a60 feat!: add name to configs (#20015)
1e2cad5 chore: package.json update for @eslint/js release
454a292 feat!: update eslint:recommended configuration (#20210)
c6358c3 feat!: Require Node.js ^20.19.0 || ^22.13.0 || >=24 (#20160)
See full diff in compare view

microsoft-github-policy-service

github-actions · 2026-04-05T23:36:24Z

Test this change out locally with the following install scripts (Action run 24013192518)

VSCode

Mac/Linux

bash <(curl -Ls https://aka.ms/bicep/nightly-vsix.sh) --run-id 24013192518

Windows

iex "& { $(irm https://aka.ms/bicep/nightly-vsix.ps1) } -RunId 24013192518"

Azure CLI

Mac/Linux

bash <(curl -Ls https://aka.ms/bicep/nightly-cli.sh) --run-id 24013192518

Windows

iex "& { $(irm https://aka.ms/bicep/nightly-cli.ps1) } -RunId 24013192518"

Bumps [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) from 9.39.4 to 10.0.1. - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](https://github.com/eslint/eslint/commits/v10.0.1/packages/js) --- updated-dependencies: - dependency-name: "@eslint/js" dependency-version: 10.0.1 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

brendandburns · 2026-04-07T17:57:11Z

@copilot rebase and fix failing tests

Updated [Grpc.Tools](https://github.com/grpc/grpc) from 2.78.0 to 2.80.0. <details> <summary>Release notes</summary> _Sourced from [Grpc.Tools's releases](https://github.com/grpc/grpc/releases)._ No release notes found for this version range. Commits viewable in [compare view](https://github.com/grpc/grpc/commits). </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=Grpc.Tools&package-manager=nuget&previous-version=2.78.0&new-version=2.80.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19369) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Updated [Markdig](https://github.com/xoofx/markdig) from 1.1.1 to 1.1.2. <details> <summary>Release notes</summary> _Sourced from [Markdig's releases](https://github.com/xoofx/markdig/releases)._ ## 1.1.2 # Changes ## 🐛 Bug Fixes - Fix to calculate LinkReferenceDefinition span positions from StringLineGroup.Lines (PR #931) by @prozolic **Full Changelog**: [1.1.1...1.1.2](xoofx/markdig@1.1.1...1.1.2) <sub>Published with [dotnet-releaser](https://github.com/xoofx/dotnet-releaser/)</sub> Commits viewable in [compare view](xoofx/markdig@1.1.1...1.1.2). </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=Markdig&package-manager=nuget&previous-version=1.1.1&new-version=1.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19370) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

…iguration.Binder (#19372) Updated [Microsoft.Extensions.Configuration](https://github.com/dotnet/dotnet) from 10.0.3 to 10.0.5. <details> <summary>Release notes</summary> _Sourced from [Microsoft.Extensions.Configuration's releases](https://github.com/dotnet/dotnet/releases)._ No release notes found for this version range. Commits viewable in [compare view](https://github.com/dotnet/dotnet/commits). </details> Updated [Microsoft.Extensions.Configuration.Binder](https://github.com/dotnet/dotnet) from 10.0.3 to 10.0.5. <details> <summary>Release notes</summary> _Sourced from [Microsoft.Extensions.Configuration.Binder's releases](https://github.com/dotnet/dotnet/releases)._ No release notes found for this version range. Commits viewable in [compare view](https://github.com/dotnet/dotnet/commits). </details> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19372) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 25.5.0 to 25.5.2. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node">compare view</a></li> </ul> </details> <br /> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 8.57.1 to 8.58.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases">typescript-eslint's releases</a>.</em></p> <blockquote> <h2>v8.58.0</h2> <h2>8.58.0 (2026-03-30)</h2> <h3>🚀 Features</h3> <ul> <li>support TypeScript 6 (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12124">#12124</a>)</li> </ul> <h3>🩹 Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> crash in <code>no-unnecessary-type-arguments</code> (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12163">#12163</a>)</li> <li><strong>eslint-plugin:</strong> [no-extraneous-class] handle index signatures (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12142">#12142</a>)</li> <li><strong>eslint-plugin:</strong> [prefer-regexp-exec] avoid fixing unknown RegExp flags (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12161">#12161</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>ej shafran <a href="https://github.com/ej-shafran"><code>@ej-shafran</code></a></li> <li>Evyatar Daud <a href="https://github.com/StyleShit"><code>@StyleShit</code></a></li> <li>GG ZIBLAKING</li> <li>milkboy2564 <a href="https://github.com/SeolJaeHyeok"><code>@SeolJaeHyeok</code></a></li> <li>teee32 <a href="https://github.com/teee32"><code>@teee32</code></a></li> </ul> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.58.0">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> <h2>v8.57.2</h2> <h2>8.57.2 (2026-03-23)</h2> <h3>🩹 Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [prefer-optional-chain] remove dangling closing parenthesis (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11865">#11865</a>)</li> <li><strong>eslint-plugin:</strong> [array-type] ignore Array and ReadonlyArray without type arguments (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11971">#11971</a>)</li> <li><strong>eslint-plugin:</strong> [no-restricted-types] flag banned generics in extends or implements (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12120">#12120</a>)</li> <li><strong>eslint-plugin:</strong> [no-unsafe-return] false positive on unwrapping generic (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12125">#12125</a>)</li> <li><strong>eslint-plugin:</strong> [no-unsafe-return] false positive on unwrapping generic (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12125">#12125</a>)</li> <li><strong>eslint-plugin:</strong> [no-useless-default-assignment] skip reporting false positives for unresolved type parameters (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12127">#12127</a>)</li> <li><strong>eslint-plugin:</strong> [prefer-readonly-parameter-types] preserve type alias infomation (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11954">#11954</a>)</li> <li><strong>typescript-estree:</strong> skip createIsolatedProgram fallback for projectService (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12066">#12066</a>, <a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/12065">#12065</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Kirk Waiblinger <a href="https://github.com/kirkwaiblinger"><code>@kirkwaiblinger</code></a></li> <li>Konv Suu</li> <li>mdm317</li> <li>Newton Yuan <a href="https://github.com/NewtonYuan"><code>@NewtonYuan</code></a></li> <li>RyoheiYamamoto</li> <li>SungHyun627 <a href="https://github.com/SungHyun627"><code>@SungHyun627</code></a></li> <li>Tamashoo <a href="https://github.com/Tamashoo"><code>@Tamashoo</code></a></li> </ul> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.2">GitHub Releases</a> for more information.</p>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md">typescript-eslint's changelog</a>.</em></p> <blockquote> <h2>8.58.0 (2026-03-30)</h2> <h3>🚀 Features</h3> <ul> <li>support TypeScript 6 (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12124">#12124</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Evyatar Daud <a href="https://github.com/StyleShit"><code>@StyleShit</code></a></li> </ul> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.58.0">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> <h2>8.57.2 (2026-03-23)</h2> <p>This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.</p> <p>See <a href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.57.2">GitHub Releases</a> for more information.</p> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/493341709fe7d1d6433332b7bd2724e3332c7cdf"><code>4933417</code></a> chore(release): publish 8.58.0</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/8cde2d06fb9bc591a4c93452509ddbd600c76a35"><code>8cde2d0</code></a> feat: support TypeScript 6 (<a href="https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint/issues/12124">#12124</a>)</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/be4d54d26e695cc93605ffcca67dd75848e95c6f"><code>be4d54d</code></a> chore(release): publish 8.57.2</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v8.58.0/packages/typescript-eslint">compare view</a></li> </ul> </details> <br /> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Updated [System.Memory.Data](https://github.com/dotnet/dotnet) from 10.0.3 to 10.0.5. <details> <summary>Release notes</summary> _Sourced from [System.Memory.Data's releases](https://github.com/dotnet/dotnet/releases)._ No release notes found for this version range. Commits viewable in [compare view](https://github.com/dotnet/dotnet/commits). </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=System.Memory.Data&package-manager=nuget&previous-version=10.0.3&new-version=10.0.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19377) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

@ShpendKe

…ground" (#19380) Reverts #19360 This commit broke the playground test suite, but we hadn't marked it as a required CI check, so the PR was merged anyway. I've since updated this test suite to be required. @ShpendKe kudos for adding the test suite - it helped catch an issue that would have broken the playground in the next Bicep release. ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19380) Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 7.3.1 to 7.3.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite/releases">vite's releases</a>.</em></p> <blockquote> <h2>v7.3.2</h2> <p>Please refer to <a href="https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md">CHANGELOG.md</a> for details.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md">vite's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2">7.3.2</a> (2026-04-06)</h2> <h3>Bug Fixes</h3> <ul> <li>avoid path traversal with optimize deps sourcemap handler (<a href="https://redirect.github.com/vitejs/vite/issues/22161">#22161</a>) (<a href="https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7">09d8c90</a>)</li> <li>backport <a href="https://redirect.github.com/vitejs/vite/issues/22159">#22159</a>, apply server.fs check to env transport (<a href="https://redirect.github.com/vitejs/vite/issues/22162">#22162</a>) (<a href="https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1">19db0f2</a>)</li> <li>check <code>server.fs</code> after stripping query as well (<a href="https://redirect.github.com/vitejs/vite/issues/22160">#22160</a>) (<a href="https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6">f8103cc</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999"><code>cc383e0</code></a> release: v7.3.2</li> <li><a href="https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7"><code>09d8c90</code></a> fix: avoid path traversal with optimize deps sourcemap handler (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161">#22161</a>)</li> <li><a href="https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6"><code>f8103cc</code></a> fix: check <code>server.fs</code> after stripping query as well (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160">#22160</a>)</li> <li><a href="https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1"><code>19db0f2</code></a> fix: backport <a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159">#22159</a>, apply server.fs check to env transport (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162">#22162</a>)</li> <li>See full diff in <a href="https://github.com/vitejs/vite/commits/v7.3.2/packages/vite">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=vite&package-manager=npm_and_yarn&previous-version=7.3.1&new-version=7.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Azure/bicep/network/alerts). </details> ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19386) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 7.3.1 to 7.3.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite/releases">vite's releases</a>.</em></p> <blockquote> <h2>v7.3.2</h2> <p>Please refer to <a href="https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md">CHANGELOG.md</a> for details.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md">vite's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2">7.3.2</a> (2026-04-06)</h2> <h3>Bug Fixes</h3> <ul> <li>avoid path traversal with optimize deps sourcemap handler (<a href="https://redirect.github.com/vitejs/vite/issues/22161">#22161</a>) (<a href="https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7">09d8c90</a>)</li> <li>backport <a href="https://redirect.github.com/vitejs/vite/issues/22159">#22159</a>, apply server.fs check to env transport (<a href="https://redirect.github.com/vitejs/vite/issues/22162">#22162</a>) (<a href="https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1">19db0f2</a>)</li> <li>check <code>server.fs</code> after stripping query as well (<a href="https://redirect.github.com/vitejs/vite/issues/22160">#22160</a>) (<a href="https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6">f8103cc</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999"><code>cc383e0</code></a> release: v7.3.2</li> <li><a href="https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7"><code>09d8c90</code></a> fix: avoid path traversal with optimize deps sourcemap handler (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161">#22161</a>)</li> <li><a href="https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6"><code>f8103cc</code></a> fix: check <code>server.fs</code> after stripping query as well (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160">#22160</a>)</li> <li><a href="https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1"><code>19db0f2</code></a> fix: backport <a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159">#22159</a>, apply server.fs check to env transport (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162">#22162</a>)</li> <li>See full diff in <a href="https://github.com/vitejs/vite/commits/v7.3.2/packages/vite">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=vite&package-manager=npm_and_yarn&previous-version=7.3.1&new-version=7.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Azure/bicep/network/alerts). </details> ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19387) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Closes #19089 Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Closes #19319 ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19378) Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

## Summary - fix [#5025](#5025) by short-circuiting resource type analysis when the resource type syntax is skipped - prevent emitting a secondary generic resource-type diagnostic in that scenario - add unit test coverage for the desired behavior: - `Missing_resource_type_in_resource_declaration_emits_only_first_type_diagnostic` - include formatter-driven whitespace updates in touched C# files - include related lockfile updates ## Issue Fixes #5025 ## Key Changes - `src/Bicep.Core/TypeSystem/DeclaredTypeManager.cs` - early return in `GetDeclaredResourceType(ResourceDeclarationSyntax resource)` when `resource.Type.IsSkipped` - `src/Bicep.Core.UnitTests/Semantics/ResourceDeclarationDiagnosticTests.cs` - adds regression test asserting only `BCP068` is emitted for `resource trailingSpace` ## Validation - `dotnet test src/Bicep.Core.UnitTests/Bicep.Core.UnitTests.csproj --filter "FullyQualifiedName~ResourceDeclarationDiagnosticTests"` - `dotnet format --verify-no-changes` - `dotnet format style --diagnostics IDE0005 --severity info --verify-no-changes` ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/19273) Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

- Rebase on top of origin/main - Fix no-useless-assignment in deploy.ts (use type annotation instead of undefined init) - Fix preserve-caught-error in generateParams.ts, testScope.ts, AzurePickers.ts (add { cause: err }) - Add ES2022.Error to tsconfig.json lib to support Error cause option - Add eslint-disable comment for surveys.ts where initial value is needed by TypeScript Agent-Logs-Url: https://github.com/Azure/bicep/sessions/bb75d777-8f37-41c4-bbff-172b7632226a Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Copilot · 2026-04-07T18:42:33Z

@copilot rebase and fix failing tests

Rebased on latest main and fixed the lint failures introduced by the new @eslint/js 10.x rules (no-useless-assignment and preserve-caught-error). Changes in commit 6468b07:

Fixed no-useless-assignment in deploy.ts
Fixed preserve-caught-error in generateParams.ts, testScope.ts, and AzurePickers.ts by adding { cause: err } to re-thrown errors
Added ES2022.Error to tsconfig.json lib to support the Error cause option
Added eslint-disable comment in surveys.ts where the initial "unknown" value is needed for TypeScript's control flow analysis

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 5, 2026

microsoft-github-policy-service bot enabled auto-merge (squash) April 5, 2026 23:34

microsoft-github-policy-service bot approved these changes Apr 5, 2026

View reviewed changes

microsoft-github-policy-service bot added the auto-merge Automatically merge this PR label Apr 5, 2026

dependabot bot force-pushed the dependabot/npm_and_yarn/src/vscode-bicep/eslint/js-10.0.1 branch from bddfa8c to f240cb4 Compare April 5, 2026 23:48

Copilot started work on behalf of brendandburns April 7, 2026 18:21 View session

dependabot bot and others added 17 commits April 7, 2026 18:42

Add outputs to snapshot (#19379)

b1f9c5b

Closes #19089 Co-authored-by: brendandburns <5751682+brendandburns@users.noreply.github.com>

Copilot finished work on behalf of brendandburns April 7, 2026 18:43

Copilot AI requested a review from brendandburns April 7, 2026 18:43

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump @eslint/js from 9.39.4 to 10.0.1 in /src/vscode-bicep#19366

Bump @eslint/js from 9.39.4 to 10.0.1 in /src/vscode-bicep#19366
dependabot[bot] wants to merge 18 commits intomainfrom
dependabot/npm_and_yarn/src/vscode-bicep/eslint/js-10.0.1

dependabot bot commented on behalf of github Apr 5, 2026 •

edited

Loading

Uh oh!

microsoft-github-policy-service bot left a comment

Uh oh!

github-actions bot commented Apr 5, 2026 •

edited

Loading

Uh oh!

brendandburns commented Apr 7, 2026

Uh oh!

Copilot AI commented Apr 7, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

dependabot bot commented on behalf of github Apr 5, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v10.0.1

Bug Fixes

Documentation

Chores

v10.0.0

Breaking Changes

Features

Uh oh!

microsoft-github-policy-service bot left a comment

Choose a reason for hiding this comment

Uh oh!

github-actions bot commented Apr 5, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

brendandburns commented Apr 7, 2026

Uh oh!

Copilot AI commented Apr 7, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

dependabot bot commented on behalf of github Apr 5, 2026 •

edited

Loading

github-actions bot commented Apr 5, 2026 •

edited

Loading