Skip to content

chore(deps-dev): bump @types/jsdom from 27.0.0 to 28.0.0 in /src/microsoft-trydotnet#136

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/src/microsoft-trydotnet/types/jsdom-28.0.0
Open

chore(deps-dev): bump @types/jsdom from 27.0.0 to 28.0.0 in /src/microsoft-trydotnet#136
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/src/microsoft-trydotnet/types/jsdom-28.0.0

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Mar 9, 2026

Bumps @types/jsdom from 27.0.0 to 28.0.0.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps-dev): bump @types/jsdom in /src/microsoft-trydotnet
03a0df4 
Bumps [@types/jsdom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jsdom) from 27.0.0 to 28.0.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jsdom)

---
updated-dependencies:
- dependency-name: "@types/jsdom"
  dependency-version: 28.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file npm labels Mar 9, 2026
@dependabot dependabot bot temporarily deployed to BuildAndUploadImage March 9, 2026 17:10 Inactive
@github-actions
Copy link

github-actions bot commented Mar 10, 2026

🤖 Automated Major Version Review — APPROVED

Package: @types/jsdom
Ecosystem: npm
Version change: 27.0.0 → 28.0.0 (major bump)

Research Summary

Breaking Changes Analysis

@types/jsdom 28.0.0 adds undici-types as a peer dependency (to reflect jsdom 28's new dependency on undici types for fetch/WebSocket). The type package version bump corresponds to jsdom 28.x's API. The repository's microsoft-trydotnet package already depends on jsdom 28.1.0 at runtime (confirmed from package-lock.json), so upgrading the type definitions to match is the correct and necessary step. The test code uses only JSDOM constructor (with url and runScripts options) and the DOMWindow type — neither changed in v28.

Security Check

The GitHub Advisory Database shows 2 advisories for jsdom, both affecting older versions. No advisories affect jsdom 28.x. Upgrading the type definitions does not introduce any security risk.

Decision

✅ This major version update is safe to merge. CI checks pass, the diff contains only version file changes (package.json, package-lock.json), and no breaking changes affect this repository's usage of the package.

Generated by Dependabot Major Version Reviewer ·

@github-actions github-actions bot added the ai-approved-major-update AI-reviewed major dependency update safe to merge label Mar 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

ai-approved-major-update AI-reviewed major dependency update safe to merge dependencies Pull requests that update a dependency file npm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants