Skip to content

chore(deps-dev): bump liquidjs from 10.25.0 to 10.25.5 in the npm_and_yarn group across 1 directory#69

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm_and_yarn-b2a22a1311
Open

chore(deps-dev): bump liquidjs from 10.25.0 to 10.25.5 in the npm_and_yarn group across 1 directory#69
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm_and_yarn-b2a22a1311

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 8, 2026

Bumps the npm_and_yarn group with 1 update in the / directory: liquidjs.

Updates liquidjs from 10.25.0 to 10.25.5

Release notes

Sourced from liquidjs's releases.

v10.25.5

10.25.5 (2026-04-07)

Bug Fixes

  • enforce root containment for renderFile/parseFile lookups (#870) (f41c1fc)
  • null date should return empty (#868) (#872) (4f9a499)
  • rounding negative away from zero when half (#873) (1cdf10b)

v10.25.4

10.25.4 (2026-04-07)

Bug Fixes

  • sort and sort_natural filters bypass ownPropertyOnly (#869) (e743da0)

v10.25.3

10.25.3 (2026-04-06)

Bug Fixes

  • precise memoryLimit for string replace (abc058b)
  • use realpath for fs.contains (#867) (529dd67)

v10.25.2

10.25.2 (2026-03-25)

Bug Fixes

  • handle undefined replacement argument in replace filter (#864) (0ad2b11)

v10.25.1

10.25.1 (2026-03-22)

Bug Fixes

  • mem limiter for invalid ranges (95ddefc)
  • treat args for replace_first as literal (35d5230)
Changelog

Sourced from liquidjs's changelog.

10.25.5 (2026-04-07)

Bug Fixes

  • enforce root containment for renderFile/parseFile lookups (#870) (f41c1fc)
  • null date should return empty (#868) (#872) (4f9a499)
  • rounding negative away from zero when half (#873) (1cdf10b)

10.25.4 (2026-04-07)

Bug Fixes

  • sort and sort_natural filters bypass ownPropertyOnly (#869) (e743da0)

10.25.3 (2026-04-06)

Bug Fixes

  • precise memoryLimit for string replace (abc058b)
  • use realpath for fs.contains (#867) (529dd67)

10.25.2 (2026-03-25)

Bug Fixes

  • handle undefined replacement argument in replace filter (#864) (0ad2b11)

10.25.1 (2026-03-22)

Bug Fixes

  • mem limiter for invalid ranges (95ddefc)
  • treat args for replace_first as literal (35d5230)
Commits
  • 4af7be6 chore(release): 10.25.5 [skip ci]
  • 05c47da refactor: replace shell scripts with JS for cross-platform support (#875)
  • 66011d1 docs: add timbze as a contributor for code (#874)
  • 1cdf10b fix: rounding negative away from zero when half (#873)
  • 4f9a499 fix: null date should return empty (#868) (#872)
  • f41c1fc fix: enforce root containment for renderFile/parseFile lookups (#870)
  • db43485 chore(release): 10.25.4 [skip ci]
  • e743da0 fix: sort and sort_natural filters bypass ownPropertyOnly (#869)
  • 8f69a08 chore(release): 10.25.3 [skip ci]
  • 529dd67 fix: use realpath for fs.contains (#867)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps-dev): bump liquidjs
19653ad 
Bumps the npm_and_yarn group with 1 update in the / directory: [liquidjs](https://github.com/harttle/liquidjs).


Updates `liquidjs` from 10.25.0 to 10.25.5
- [Release notes](https://github.com/harttle/liquidjs/releases)
- [Changelog](https://github.com/harttle/liquidjs/blob/master/CHANGELOG.md)
- [Commits](harttle/liquidjs@v10.25.0...v10.25.5)

---
updated-dependencies:
- dependency-name: liquidjs
  dependency-version: 10.25.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 8, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants