Skip to content

Bump flatted from 3.3.3 to 3.4.2 in /cirq-web/cirq_web#7965

Draft
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/cirq-web/cirq_web/flatted-3.4.2
Draft

Bump flatted from 3.3.3 to 3.4.2 in /cirq-web/cirq_web#7965
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/cirq-web/cirq_web/flatted-3.4.2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 20, 2026

Bumps flatted from 3.3.3 to 3.4.2.

Commits
  • 3bf0909 3.4.2
  • 885ddcc fix CWE-1321
  • 0bdba70 added flatted-view to the benchmark
  • 2a02dce 3.4.1
  • fba4e8f Merge pull request #89 from WebReflection/python-fix
  • 5fe8648 added "when in Rome" also a test for PHP
  • 53517ad some minor improvement
  • b3e2a0c Fixing recursion issue in Python too
  • c4b46db Add SECURITY.md for security policy and reporting
  • f86d071 Create dependabot.yml for version updates
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump flatted from 3.3.3 to 3.4.2 in /cirq-web/cirq_web
f998885 
Bumps [flatted](https://github.com/WebReflection/flatted) from 3.3.3 to 3.4.2.
- [Commits](WebReflection/flatted@v3.3.3...v3.4.2)

---
updated-dependencies:
- dependency-name: flatted
  dependency-version: 3.4.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added area/dependencies area/javascript Pull requests that update Javascript code kind/health For CI/testing/release process/refactoring/technical debt items labels Mar 20, 2026
@dependabot dependabot bot requested review from a team and vtomole as code owners March 20, 2026 17:44
@dependabot dependabot bot added kind/health For CI/testing/release process/refactoring/technical debt items area/dependencies area/javascript Pull requests that update Javascript code labels Mar 20, 2026
@dependabot dependabot bot requested a review from dabacon March 20, 2026 17:44
@github-actions github-actions bot added the Size: XS <10 lines changed label Mar 20, 2026
@pavoljuhas pavoljuhas added the status/on-hold dependabot PR to be revisited early next month (remove label when fixed) label Mar 20, 2026
@pavoljuhas pavoljuhas marked this pull request as draft March 20, 2026 18:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vtomole vtomole Awaiting requested review from vtomole vtomole is a code owner

@dabacon dabacon Awaiting requested review from dabacon dabacon is a code owner automatically assigned from quantumlib/cirq-maintainers

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

area/dependencies area/javascript Pull requests that update Javascript code kind/health For CI/testing/release process/refactoring/technical debt items Size: XS <10 lines changed status/on-hold dependabot PR to be revisited early next month (remove label when fixed)

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@pavoljuhas