Skip to content

chore(deps-dev): bump eslint from 8.57.1 to 9.26.0 #8769

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps-dev): bump eslint from 8.57.1 to 9.26.0 #8769

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 30, 2026

Bumps eslint from 8.57.1 to 9.26.0.

Release notes

Sourced from eslint's releases.

v9.26.0

Features

  • e9754e7 feat: add reportGlobalThis to no-shadow-restricted-names (#19670) (sethamus)
  • 0fa2b7a feat: add suggestions for eqeqeq rule (#19640) (Nitin Kumar)
  • dcbdcc9 feat: Add MCP server (#19592) (Nicholas C. Zakas)
  • 2dfd83e feat: add ignoreDirectives option in no-unused-expressions (#19645) (sethamus)

Bug Fixes

  • 96e84de fix: check cache file existence before deletion (#19648) (sethamus)
  • d683aeb fix: don't crash on tests with circular references in RuleTester (#19664) (Milos Djermanovic)
  • 9736d5d fix: add namespace to Plugin.meta type (#19661) (Milos Djermanovic)
  • 17bae69 fix: update RuleTester.run() type (#19634) (Nitin Kumar)

Documentation

  • dd98d63 docs: Update README (GitHub Actions Bot)
  • c25e858 docs: Update README (GitHub Actions Bot)
  • b2397e9 docs: Update README (GitHub Actions Bot)
  • addd0a6 docs: fix formatting of unordered lists in Markdown (#19660) (Milos Djermanovic)
  • a21b38d docs: Update README (GitHub Actions Bot)
  • c0721a7 docs: fix double space in command (#19657) (CamWass)

Chores

  • 5b247c8 chore: upgrade to @eslint/js@9.26.0 (#19681) (Francesco Trotta)
  • d6fa4ac chore: package.json update for @​eslint/js release (Jenkins)
  • 0958690 chore: disambiguate internal types LanguageOptions and Rule (#19669) (Francesco Trotta)
  • f1c858e chore: fix internal type references to Plugin and Rule (#19665) (Francesco Trotta)
  • 40dd299 refactor: One-shot ESQuery selector analysis (#19652) (Nicholas C. Zakas)
  • 1cfd702 chore: update dependency @​eslint/json to ^0.12.0 (#19656) (renovate[bot])

v9.25.1

Bug Fixes

  • cdc8e8c fix: revert directive detection in no-unused-expressions (#19639) (sethamus)

Chores

  • 1f2b057 chore: upgrade @​eslint/js@​9.25.1 (#19642) (Milos Djermanovic)
  • 771317f chore: package.json update for @​eslint/js release (Jenkins)

v9.25.0

Features

  • dcd95aa feat: support TypeScript syntax in no-empty-function rule (#19551) (sethamus)
  • 77d6d5b feat: support TS syntax in no-unused-expressions (#19564) (Sweta Tanwar)
  • 90228e5 feat: support JSRuleDefinition type (#19604) (루밀LuMir)
  • 59ba6b7 feat: add allowObjects option to no-restricted-properties (#19607) (sethamus)
  • db650a0 feat: support TypeScript syntax in no-invalid-this rule (#19532) (Tanuj Kanti)
  • 9535cff feat: support TS syntax in no-loop-func (#19559) (Nitin Kumar)

Bug Fixes

  • 910bd13 fix: nodeTypeKey not being used in NodeEventGenerator (#19631) (StyleShit)

Documentation

... (truncated)

Changelog

Sourced from eslint's changelog.

v9.26.0 - May 2, 2025

  • 5b247c8 chore: upgrade to @eslint/js@9.26.0 (#19681) (Francesco Trotta)
  • d6fa4ac chore: package.json update for @​eslint/js release (Jenkins)
  • e9754e7 feat: add reportGlobalThis to no-shadow-restricted-names (#19670) (sethamus)
  • 0fa2b7a feat: add suggestions for eqeqeq rule (#19640) (Nitin Kumar)
  • dd98d63 docs: Update README (GitHub Actions Bot)
  • 96e84de fix: check cache file existence before deletion (#19648) (sethamus)
  • c25e858 docs: Update README (GitHub Actions Bot)
  • 0958690 chore: disambiguate internal types LanguageOptions and Rule (#19669) (Francesco Trotta)
  • dcbdcc9 feat: Add MCP server (#19592) (Nicholas C. Zakas)
  • b2397e9 docs: Update README (GitHub Actions Bot)
  • d683aeb fix: don't crash on tests with circular references in RuleTester (#19664) (Milos Djermanovic)
  • f1c858e chore: fix internal type references to Plugin and Rule (#19665) (Francesco Trotta)
  • 9736d5d fix: add namespace to Plugin.meta type (#19661) (Milos Djermanovic)
  • 40dd299 refactor: One-shot ESQuery selector analysis (#19652) (Nicholas C. Zakas)
  • addd0a6 docs: fix formatting of unordered lists in Markdown (#19660) (Milos Djermanovic)
  • a21b38d docs: Update README (GitHub Actions Bot)
  • c0721a7 docs: fix double space in command (#19657) (CamWass)
  • 1cfd702 chore: update dependency @​eslint/json to ^0.12.0 (#19656) (renovate[bot])
  • 2dfd83e feat: add ignoreDirectives option in no-unused-expressions (#19645) (sethamus)
  • 17bae69 fix: update RuleTester.run() type (#19634) (Nitin Kumar)

v9.25.1 - April 21, 2025

  • 1f2b057 chore: upgrade @​eslint/js@​9.25.1 (#19642) (Milos Djermanovic)
  • 771317f chore: package.json update for @​eslint/js release (Jenkins)
  • cdc8e8c fix: revert directive detection in no-unused-expressions (#19639) (sethamus)

v9.25.0 - April 18, 2025

  • 88dc196 chore: upgrade @​eslint/js@​9.25.0 (#19636) (Milos Djermanovic)
  • 345288d chore: package.json update for @​eslint/js release (Jenkins)
  • 910bd13 fix: nodeTypeKey not being used in NodeEventGenerator (#19631) (StyleShit)
  • ca7a735 docs: update no-undef-init when not to use section (#19624) (Tanuj Kanti)
  • affe6be chore: upgrade trunk (#19628) (sethamus)
  • 1b870c9 docs: use eslint-config-xo in the getting started guide (#19629) (Nitin Kumar)
  • 5d4af16 docs: add types for multiple rule options (#19616) (Tanuj Kanti)
  • e8f8d57 docs: Update README (GitHub Actions Bot)
  • a40348f docs: no-use-before-define tweaks (#19622) (Kirk Waiblinger)
  • 0ba3ae3 docs: Update README (GitHub Actions Bot)
  • 865dbfe docs: ensure "learn more" deprecation links point to useful resource (#19590) (Kirk Waiblinger)
  • dcd95aa feat: support TypeScript syntax in no-empty-function rule (#19551) (sethamus)
  • 77d6d5b feat: support TS syntax in no-unused-expressions (#19564) (Sweta Tanwar)
  • 90228e5 feat: support JSRuleDefinition type (#19604) (루밀LuMir)
  • f80b746 docs: add known limitations for no-self-compare (#19612) (Nitin Kumar)
  • 59ba6b7 feat: add allowObjects option to no-restricted-properties (#19607) (sethamus)
  • db650a0 feat: support TypeScript syntax in no-invalid-this rule (#19532) (Tanuj Kanti)
  • dd20cf2 test: fix no-loop-func test with duplicate variable reports (#19610) (Milos Djermanovic)
  • 9535cff feat: support TS syntax in no-loop-func (#19559) (Nitin Kumar)

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps-dev): bump eslint from 8.57.1 to 9.26.0
63d31cc 
Bumps [eslint](https://github.com/eslint/eslint) from 8.57.1 to 9.26.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/v9.26.0/CHANGELOG.md)
- [Commits](eslint/eslint@v8.57.1...v9.26.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-version: 9.26.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 30, 2026
@github-actions
Copy link

github-actions bot commented Jan 30, 2026
edited
Loading

🤖 AI PR Validation Report

PR Review Results

Thank you for your submission! Here's detailed feedback on your PR title and body compliance:

PR Title

  • Current: chore(deps-dev): bump eslint from 8.57.1 to 9.26.0
  • Issue: Title is clear and follows conventional commits. Good.
  • Recommendation: No change required — this title is concise and descriptive.

Commit Type

  • Properly selected (chore) in the title and matches the change (dependency bump).
  • Note: Keep the single commit type convention for this PR.

Risk Level

  • Assessment: The PR does not include a risk selection in the required PR template and there is no "risk:*" label on the PR. Every PR needs one of risk:low, risk:medium, or risk:high labels and the Risk Level section in the body must reflect that.
  • Advised risk (from diff): risk:medium — explanation below.
    • Why: this is a major version upgrade of a core dev tool (ESLint 8 -> 9). The lockfile shows many transitive changes and several packages now require node >= 18.18.0 (or similarly newer engine versions) for some eslint-related packages. That can break CI or local developer setups if they run older Node versions. ESLint rule behaviors/formatters may also change, which can cause lint failures across the repo and require changes/fixes.
  • Recommendation: Add a risk:medium label to the PR and add the same selection under the PR body Risk Level section with the rationale above.

What & Why

  • Current: (Dependabot autogenerated release notes and changelog are present in the body, but the PR does not include the short required "What & Why" section from the repo template.)
  • Issue: The template requires a short, plain-language "What & Why" summary. The long release notes are useful, but the PR template expects a brief statement of intent and reason.
  • Recommendation: Add a short paragraph like:
    • What & Why: Bump dev dependency eslint from 8.57.1 to 9.26.0 to pick up bug fixes, TypeScript/TS-syntax improvements and new linting features. This change updates the lockfile and related ESLint plugins. We are upgrading to a newer ESLint major release; please verify CI and local Node version compatibility and update the codebase if lint rule behavior requires it.

Impact of Change

  • Issue: The template's Impact of Change section is missing.
  • Recommendation: Add a short Impact section with explicit bullets. Example content tailored to this diff:
    • Users: No runtime user-facing changes expected — ESLint is a dev dependency.
    • Developers: Linting may show new or changed rule errors. Developers must run lint and resolve any new issues. Local dev environment Node versions <18 may need updating.
    • System: CI may fail if it runs Node <18 or if lint errors are introduced; some toolchain packages in the lockfile now require Node >= 18.18.0. Update CI image(s) or document compatibility.

Test Plan

  • Assessment: No Test Plan section present and no tests were added. The code diff only updates package.json/pnpm-lock. For dependency updates this is acceptable only if a clear test plan is provided.

  • Recommendation (must do before merging): Add a Test Plan describing exactly what was run and the results. Example steps to include:

    • pnpm install --frozen-lockfile (or your repo's install command) was run successfully.
    • Run CI (link to latest green CI or a run-id) and confirm all checks pass.
    • Run the linter locally and/or via CI: pnpm lint (or equivalent). If linting fails, document the failures and intended fixes or follow-up PRs.
    • Run unit tests: pnpm test (all unit/E2E tests should pass). If tests require Node upgrade, document that and the steps taken to upgrade CI images.
    • If only manual testing is possible, explain why and provide the manual verification steps.

    If you cannot run CI yet, at minimum include a note: CI must pass before merge.

⚠️ Contributors

  • Assessment: No contributors listed in the PR body. Dependabot PRs often omit this.
  • Recommendation: Optional — Add any humans who reviewed or helped (e.g., reviewers, PM/Design if applicable). If none, you can leave blank; consider adding @maintainers or who to ping for review.

⚠️ Screenshots/Videos

  • Assessment: Not applicable for this PR (dev dependency update). No action required.

Summary Table

Section Status Recommendation
Title Keep as-is.
Commit Type Correct (chore).
Risk Level Add risk:medium label and Risk Level section in body with rationale.
What & Why Add a 1–2 sentence summary of what changed and why (see example above).
Impact of Change Add Impact bullets for Users / Developers / System mentioning Node/CI impact and lint changes.
Test Plan Add explicit test steps (install, lint, unit/E2E, CI), and link to CI run(s). CI must pass before merge.
Contributors ⚠️ Optional: add reviewers/credits if applicable.
Screenshots/Videos ⚠️ N/A for this PR.

Final notes & next steps

  • Advised risk level: risk:medium. The PR currently lacks a risk label and the required template sections; please add the risk:medium label and update the PR body to include the the "What & Why", "Impact of Change", and "Test Plan" fields from the repo template.
  • Verify CI Node version: the lockfile changes include packages with Node engine constraints >=18.18.0 for many ESLint-related packages. Ensure CI is running a compatible Node version (or explicitly document that you tested compatibility and what changed). If CI uses Node 16 or 18 lower than required, update the CI image or provide a compatibility mitigation.
  • Run and document the following before merging:
    • pnpm install --frozen-lockfile (or repo's package manager command) — ensure it succeeds.
    • pnpm lint and fix or document lint rule changes (or schedule a follow-up to fix lint failures). Attach output or link to a successful CI run.
    • pnpm test (unit tests) and link to passing results.
  • If this PR is intended to be auto-merged after CI, note that in the body (Dependabot instructions are present but still include your test expectations).

Please update the PR body using the template fields and add the risk:medium label. After updating, run CI and paste the relevant successful CI run link or logs into the Test Plan section. Once those are present and CI is green, this PR should be safe to merge.

Thank you!

Last updated: Fri, 30 Jan 2026 23:28:28 GMT

@github-actions
Copy link

github-actions bot commented Jan 30, 2026

📊 Coverage check completed. See workflow run for details.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code needs-pr-update

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants