chore(deps): bump minimatch in /examples/remix-gen2 by dependabot[bot] · Pull Request #4320 · BuilderIO/builder

dependabot · 2026-02-28T06:11:17Z

Bumps and minimatch. These dependencies needed to be updated together.
Updates minimatch from 9.0.5 to 9.0.9

Commits

8a10e47 9.0.9
c6f1806 brace-expansion@2
446cfa3 9.0.8
8fa151a docs: add warning about ReDoS
71b78a2 fix partial matching of globstar patterns
2de496f 9.0.7
0d4616d limit nested extglob recursion, flatten extglobs
7117ef3 9.0.6
2418458 update deps, do not checkin dist
1d1f531 update deps
Additional commits viewable in compare view

Updates minimatch from 3.1.2 to 3.1.5

Commits

8a10e47 9.0.9
c6f1806 brace-expansion@2
446cfa3 9.0.8
8fa151a docs: add warning about ReDoS
71b78a2 fix partial matching of globstar patterns
2de496f 9.0.7
0d4616d limit nested extglob recursion, flatten extglobs
7117ef3 9.0.6
2418458 update deps, do not checkin dist
1d1f531 update deps
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Note

Low Risk
Lockfile-only dependency bumps to minimatch/brace-expansion with no application code changes; risk is limited to potential tooling/build glob-matching behavior changes.

Overview
Updates examples/remix-gen2 dependencies by bumping minimatch from 9.0.5 to 9.0.9 and updating nested minimatch copies from 3.1.2 to 3.1.5, along with brace-expansion from 2.0.1 to 2.0.2 in package-lock.json.

^{Written by Cursor Bugbot for commit 18c4f22. This will update automatically on new commits. Configure here.}

Bumps and [minimatch](https://github.com/isaacs/minimatch). These dependencies needed to be updated together. Updates `minimatch` from 9.0.5 to 9.0.9 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v9.0.5...v9.0.9) Updates `minimatch` from 3.1.2 to 3.1.5 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v9.0.5...v9.0.9) --- updated-dependencies: - dependency-name: minimatch dependency-version: 9.0.9 dependency-type: indirect - dependency-name: minimatch dependency-version: 3.1.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

changeset-bot · 2026-02-28T06:11:21Z

⚠️ No Changeset found

Latest commit: 18c4f22

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

nx-cloud · 2026-02-28T06:14:44Z

🤖 Nx Cloud AI Fix Eligible

An automatically generated fix could have helped fix failing tasks for this run, but Self-healing CI is disabled for this workspace. Visit workspace settings to enable it and get automatic fixes in future runs.

_{To disable these notifications, a workspace admin can disable them in workspace settings.}

View your CI Pipeline Execution ↗ for commit 18c4f22

Command	Status	Duration	Result
`nx test @snippet/react`	❌ Failed	3m 37s	View ↗
`nx test @e2e/qwik-city`	✅ Succeeded	7m 29s	View ↗
`nx test @e2e/nextjs-sdk-next-app`	✅ Succeeded	6m 52s	View ↗
`nx test @e2e/nuxt`	✅ Succeeded	5m 43s	View ↗
`nx test @e2e/angular-17`	✅ Succeeded	6m 9s	View ↗
`nx test @e2e/angular-17-ssr`	✅ Succeeded	5m 17s	View ↗
`nx test @e2e/angular-19-ssr`	✅ Succeeded	5m 16s	View ↗
`nx test @e2e/react-sdk-next-15-app`	✅ Succeeded	5m 7s	View ↗
`Additional runs (37)`	✅ Succeeded	...	View ↗

☁️ Nx Cloud last updated this comment at 2026-02-28 06:29:20 UTC

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 28, 2026

dependabot bot mentioned this pull request Feb 28, 2026

chore(deps): bump minimatch in /examples/remix-gen2 #4288

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump minimatch in /examples/remix-gen2#4320

chore(deps): bump minimatch in /examples/remix-gen2#4320
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/examples/remix-gen2/multi-770cfcd984

dependabot bot commented on behalf of github Feb 28, 2026 •

edited by cursor bot

Loading

changeset-bot bot commented Feb 28, 2026

nx-cloud bot commented Feb 28, 2026 •

edited

Loading

Labels

0 participants

Conversation

dependabot bot commented on behalf of github Feb 28, 2026 • edited by cursor bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!