Skip to content

build(deps): bump @snyk/protect from 1.1300.0 to 1.1301.2 #387

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

build(deps): bump @snyk/protect from 1.1300.0 to 1.1301.2 #387

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 22, 2025
edited
Loading

Bumps @snyk/protect from 1.1300.0 to 1.1301.2.

Release notes

Sourced from @​snyk/protect's releases.

v1.1301.2

1.1301.2 (2025-12-16)

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

  • mcp: Fix MCP compliance issue (51d3f8d)

v1.1301.1

1.1301.1 (2025-12-08)

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

  • test: Rendering of fix advice for multiple dependency paths when using the reachability flag (eaf50bb)
  • monitor: snyk monitor --reachability=true command should now work even if double dashed arguments are provided (e8bdac6)
  • test, monitor: Code upload speed will be improved when running snyk test --reachability/snyk monitor --reachability (d0bdba1)
  • language-server: Multiple Snyk Language Server related fixes (485ae55)
  • dependencies: Upgrade dependencies to address multiple issues. (e185c92)

v1.1301.0

1.1301.0 (2025-11-12)

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

  • container: The Snyk CLI now supports scanning Ubuntu Chisel images for vulnerabilities (9328757)
  • container: The Snyk CLI now supports scanning container images with zstd-compressed layers (5080e42)
  • container: Added a new parameter, --include-system-jars, to support scanning of usr/lib JARs (57078b6)
  • test(maven): Initial maven 4 support, testing against the most recent release candidate (88cf47e)
  • test(maven): A new experimental flag --include-provenance that will produce DepGraphs containing purls with checksum qualifiers for each package. Primarily to be used via --print-graph, not yet used in the main testing flow (5b8fe0a)
  • sbom(maven): A new experimental flag --include-provenance that will produce an SBOM with checksum qualifiers in each purl (5b8fe0a)
  • language-server: Automatic selection of the organization for IDEs based on workspace folder (EA). (2cc554e)
  • language-server: Analytics for configuration and folder trust (2cc554e)
  • mcp: Support for writing scan output into a file (2cc554e)
  • mcp: Service Account support (2cc554e)

Bug Fixes

  • general: Fix incorrect error mapping for varying status codes (5829500)
  • general: Some invalid flag combinations are now correctly handled (ca5903b)
  • test: The Snyk CLI now correctly handles optional dependencies without separate package entries (bfcbda7)
  • test: The Snyk CLI now correctly handles aliased packages with nested dependencies (bfcbda7)
  • test: The Snyk CLI now correctly handles bundled dependencies with non-hoisted bundle owners (bfcbda7)
  • test: Fixes issue where sub packages were getting grouped incorrectly, leading to deps getting marked as missing. (b904e8c)

... (truncated)

Commits
  • a637a59 Merge pull request #6382 from snyk/release-candidate
  • 9a6e031 Merge pull request #6377 from snyk/hotfix/v1.1301.2-mcp-spec-fix
  • 78f8e3e chore: Update release notes
  • 51d3f8d fix: [AG-99] mcp spec compliance fix
  • 71519b8 Merge pull request #6359 from snyk/release/1.1301
  • b2f69c4 Merge pull request #6355 from snyk/release-candidate
  • cdd9729 Merge pull request #6351 from snyk/hotfix/v1.1301.1
  • 8001ba6 Merge pull request #6354 from snyk/docs/automatic-gitbook-update-cli-help-hot...
  • 5f15f0a docs: synchronizing help from snyk/user-docs
  • 78a306c chore: update release notes
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Dec 22, 2025
@dependabot dependabot bot mentioned this pull request Dec 22, 2025
Closed
@dependabot
build(deps): bump @snyk/protect from 1.1300.0 to 1.1301.2
6c73848 
Bumps [@snyk/protect](https://github.com/snyk/snyk) from 1.1300.0 to 1.1301.2.
- [Release notes](https://github.com/snyk/snyk/releases)
- [Commits](snyk/cli@v1.1300.0...v1.1301.2)

---
updated-dependencies:
- dependency-name: "@snyk/protect"
  dependency-version: 1.1301.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/snyk/protect-1.1301.2 branch from b72cf65 to 6c73848 Compare January 1, 2026 07:29
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 19, 2026

Superseded by #389.

@dependabot dependabot bot closed this Jan 19, 2026
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/snyk/protect-1.1301.2 branch January 19, 2026 04:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants