Skip to content

chore(deps-dev): bump cspell from 9.4.0 to 9.6.0 in the npm-dependencies group#208

Merged
WilliamBerryiii merged 1 commit intomainfrom
dependabot/npm_and_yarn/npm-dependencies-4f1170ecbc
Jan 19, 2026
Merged

chore(deps-dev): bump cspell from 9.4.0 to 9.6.0 in the npm-dependencies group#208
WilliamBerryiii merged 1 commit intomainfrom
dependabot/npm_and_yarn/npm-dependencies-4f1170ecbc

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Jan 19, 2026
edited
Loading

Bumps the npm-dependencies group with 1 update: cspell.

Updates cspell from 9.4.0 to 9.6.0

Release notes

Sourced from cspell's releases.

v9.6.0

Features

feat: ESLint-plugin -- Distinguish between Forbidden, Misspelled, and Unknown words. (#8337)

Pull request overview

This PR updates the eslint-plugin to report different types of spelling issues with improved categorization and messaging. The changes include upgrading ESLint from v8 to v9, introducing new issue severity levels (Forbidden, Misspelled, Unknown, Hint), and adding a report option to control the level of reporting.

Changes:

  • Upgraded ESLint dependency from v8.57.1 to v9.39.2 across all fixtures and packages
  • Introduced new severity level "Misspelled" to distinguish typos with suggestions from truly unknown words
  • Added report option ('all', 'simple', 'typos', 'flagged') to control which types of issues are reported
  • Enhanced error messages to include suggestions directly in the message text

feat: ESLint-plugin -- Add report option to be able to control the reporting level (matching the CLI): "all", "simple", "typos", "flagged". (#8273)

Pull request overview

This PR adds support for unknown word reporting options to the cspell ESLint plugin, allowing users to control which types of spelling issues are reported (all unknown words, simple typos, common typos, or only flagged words).

Changes:

  • Added a new report option to the ESLint plugin configuration with values: 'all', 'simple', 'typos', and 'flagged'
  • Implemented mapping from the report option to CSpell's unknownWords setting
  • Added unit tests for the new report filtering functionality

This PR contains the changes required to resolve cspell ESLint plugin: support typos-only reporting (CLI --report typos / unknownWords report-common-typos) [#8261](https://github.com/streetsidesoftware/cspell/tree/HEAD/packages/cspell/issues/8261)

feat: support storing suggestions in trie (#8228)

Pull request overview

This PR adds support for storing word suggestions directly in trie data structures, enabling dictionaries to provide preferred spelling suggestions for words. The implementation introduces a new suggestionPrefix field (default :) to TrieInfo and a hasPreferredSuggestions characteristic flag.

Key Changes:

... (truncated)

Changelog

Sourced from cspell's changelog.

v9.6.0 (2026-01-12)

Features

feat: ESLint-plugin -- Distinguish between Forbidden, Misspelled, and Unknown words. (#8337)

Pull request overview

This PR updates the eslint-plugin to report different types of spelling issues with improved categorization and messaging. The changes include upgrading ESLint from v8 to v9, introducing new issue severity levels (Forbidden, Misspelled, Unknown, Hint), and adding a report option to control the level of reporting.

Changes:

  • Upgraded ESLint dependency from v8.57.1 to v9.39.2 across all fixtures and packages
  • Introduced new severity level "Misspelled" to distinguish typos with suggestions from truly unknown words
  • Added report option ('all', 'simple', 'typos', 'flagged') to control which types of issues are reported
  • Enhanced error messages to include suggestions directly in the message text

feat: ESLint-plugin -- Add report option to be able to control the reporting level (matching the CLI): "all", "simple", "typos", "flagged". (#8273)

Pull request overview

This PR adds support for unknown word reporting options to the cspell ESLint plugin, allowing users to control which types of spelling issues are reported (all unknown words, simple typos, common typos, or only flagged words).

Changes:

  • Added a new report option to the ESLint plugin configuration with values: 'all', 'simple', 'typos', and 'flagged'
  • Implemented mapping from the report option to CSpell's unknownWords setting
  • Added unit tests for the new report filtering functionality

This PR contains the changes required to resolve cspell ESLint plugin: support typos-only reporting (CLI --report typos / unknownWords report-common-typos) [#8261](https://github.com/streetsidesoftware/cspell/tree/HEAD/packages/cspell/issues/8261)

feat: support storing suggestions in trie (#8228)

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Dependency updates npm NPM package configuration labels Jan 19, 2026
@dependabot dependabot bot requested a review from a team as a code owner January 19, 2026 06:22
@dependabot dependabot bot added dependencies Dependency updates npm NPM package configuration labels Jan 19, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Jan 19, 2026
edited
Loading

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm-dependencies-4f1170ecbc branch from da997d7 to 533019b Compare January 19, 2026 19:18
@WilliamBerryiii
Copy link
Copy Markdown
Member

WilliamBerryiii commented Jan 19, 2026

@dependabot rebase

1 similar comment
@WilliamBerryiii
Copy link
Copy Markdown
Member

WilliamBerryiii commented Jan 19, 2026

@dependabot rebase

@dependabot
chore(deps-dev): bump cspell in the npm-dependencies group
452b209 
Bumps the npm-dependencies group with 1 update: [cspell](https://github.com/streetsidesoftware/cspell/tree/HEAD/packages/cspell).


Updates `cspell` from 9.4.0 to 9.6.0
- [Release notes](https://github.com/streetsidesoftware/cspell/releases)
- [Changelog](https://github.com/streetsidesoftware/cspell/blob/main/packages/cspell/CHANGELOG.md)
- [Commits](https://github.com/streetsidesoftware/cspell/commits/v9.6.0/packages/cspell)

---
updated-dependencies:
- dependency-name: cspell
  dependency-version: 9.6.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm-dependencies-4f1170ecbc branch from 533019b to 452b209 Compare January 19, 2026 19:22
@WilliamBerryiii WilliamBerryiii merged commit 855914b into main Jan 19, 2026
15 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/npm-dependencies-4f1170ecbc branch January 19, 2026 19:29
@hve-core-release-please hve-core-release-please bot mentioned this pull request Jan 19, 2026
Merged
WilliamBerryiii pushed a commit that referenced this pull request Jan 28, 2026
@hve-core-release-please
chore(main): release hve-core 2.0.0 (#212)
672d36b 
🤖 I have created a release *beep* *boop*
---


##
[2.0.0](hve-core-v1.1.0...hve-core-v2.0.0)
(2026-01-28)


### ⚠ BREAKING CHANGES

* **agents:** add Task Reviewer and expand RPI to 4-phase workflow
([#277](#277))

### ✨ Features

* **agents:** add hve-core-installer agent to extension package
([#297](#297))
([c0e48c6](c0e48c6))
* **agents:** add Task Reviewer and expand RPI to 4-phase workflow
([#277](#277))
([ae76cab](ae76cab))
* **build:** add code coverage reporting to Pester workflow
([#230](#230))
([a34822a](a34822a))
* **docs:** add GOVERNANCE.md for OSSF Silver Badge compliance
([#235](#235))
([b0e752c](b0e752c))
* **docs:** add ROADMAP.md for OSSF Silver badge compliance
([#238](#238))
([4a41c16](4a41c16))
* **mcp:** add MCP server configuration guidance and installer
enhancements ([#225](#225))
([0bce418](0bce418))
* **scripts:** add YAML linting with actionlint
([#234](#234))
([d9301f9](d9301f9))
* **security:** add OpenSSF Scorecard workflow and badge
([#271](#271))
([7c6d788](7c6d788))
* **skills:** add video-to-gif conversion skill with FFmpeg two-pass
optimization ([#247](#247))
([8d65c42](8d65c42))
* **tests:** add Pester tests for LintingHelpers and
Validate-MarkdownFrontmatter
([#197](#197),
[#198](#198))
([#205](#205))
([51ae563](51ae563))


### 🐛 Bug Fixes

* **build:** detect table formatting changes via git diff
([#261](#261))
([985eee0](985eee0))
* **build:** disable MD024 lint rule in CHANGELOG for release-please
([#220](#220))
([971df94](971df94))
* **build:** quote shell variables and group redirects in workflow files
([#299](#299))
([3372509](3372509))
* **build:** resolve scorecard badge and workflow security issues
([#301](#301))
([aeaed13](aeaed13))
* **extension:** remove frontmatter from README and exclude from
markdown linting
([#223](#223))
([4272529](4272529))
* **instructions:** quote applyTo glob pattern for YAML compatibility
([#216](#216))
([085199c](085199c))
* **scripts:** add FooterExcludePaths parameter to frontmatter
validation ([#334](#334))
([64db98d](64db98d))
* **scripts:** add GHSA word and logs/ exclusion to cspell config
([#214](#214))
([5c99b3f](5c99b3f))
* **scripts:** correct type assertions in Invoke-YamlLint.Tests.ps1
([#332](#332))
([af7050d](af7050d))
* **scripts:** eliminate false positives in dependency pinning npm
pattern ([#273](#273))
([ccbdfa3](ccbdfa3))
* **security:** add artifact attestation for signed releases
([#257](#257))
([c52d6e2](c52d6e2))
* standardize markdown footers and complete frontmatter
([#217](#217))
([b4e7556](b4e7556))


### 📚 Documentation

* add OpenSSF Best Practices Passing badge to README
([#239](#239))
([91bc529](91bc529))
* **architecture:** add architecture documentation and value proposition
([#252](#252))
([0e4b02f](0e4b02f))
* **contributing:** add testing requirements for OSSF compliance
([#254](#254))
([4db1a18](4db1a18))
* **docs:** add enterprise status badges to README header
([#270](#270))
([ccb68a4](ccb68a4))
* **security:** add security assurance case and threat model for OSSF
Silver ([#259](#259))
([a390e26](a390e26))


### ♻️ Refactoring

* **application:** wrap execution with try blocks, ensure proper …
([#296](#296))
([35c4417](35c4417))
* **scripts:** extract frontmatter validation to testable module
([#293](#293))
([4e8707e](4e8707e))
* **scripts:** extract pure functions for Pester testability
([#221](#221))
([d40e742](d40e742))


### 🔧 Maintenance

* **deps-dev:** bump cspell from 9.4.0 to 9.6.0 in the npm-dependencies
group ([#208](#208))
([855914b](855914b))
* **deps-dev:** bump cspell from 9.6.0 to 9.6.1 in the npm-dependencies
group ([#294](#294))
([1e45ad6](1e45ad6))
* **deps:** bump actions/setup-node from 6.1.0 to 6.2.0 in the
github-actions group
([#209](#209))
([c4c69e2](c4c69e2))
* **deps:** bump the github-actions group with 4 updates
([#295](#295))
([d8337b8](d8337b8))
* remove step-security/harden-runner from workflows
([#246](#246))
([c5708d8](c5708d8))

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).

Co-authored-by: hve-core-release-please[bot] <254602402+hve-core-release-please[bot]@users.noreply.github.com>
This was referenced Jan 28, 2026
Closed
Closed
This was referenced Feb 6, 2026
Closed
Closed
Closed
Closed
This was referenced Feb 13, 2026
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@katriendg katriendg katriendg approved these changes

Assignees

No one assigned

Labels

dependencies Dependency updates npm NPM package configuration

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@WilliamBerryiii @katriendg