Skip to content

Bump eslint from 8.57.1 to 10.6.0#90

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/eslint-10.6.0
Open

Bump eslint from 8.57.1 to 10.6.0#90
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/eslint-10.6.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown

Bumps eslint from 8.57.1 to 10.6.0.

Release notes

Sourced from eslint's releases.

v10.6.0

Features

  • b1f9106 feat: detect Symbol() and BigInt() in no-constant-binary-expression (#20981) (Taejin Kim)
  • f291007 feat: add checkRelationalComparisons to no-constant-binary-expression (#20948) (sethamus)

Bug Fixes

  • 6b05784 fix: prefer-exponentiation-operator invalid autofix at statement start (#20997) (Milos Djermanovic)
  • bb9eb2a fix: account for shadowed Boolean in no-extra-boolean-cast (#21013) (den$)
  • 8fd8741 fix: don't report shadowed undefined in radix rule (#21011) (Pixel)
  • 5784980 fix: don't report shadowed undefined in no-throw-literal (#21010) (Pixel)
  • 9cd1e6d fix: suppress invalid class suggestion in no-promise-executor-return (#21008) (Pixel)
  • d4eb2dc fix: don't report shadowed undefined in prefer-promise-reject-errors (#21006) (Pixel)
  • 2360464 fix: prefer-promise-reject-errors false positives for shadowed Promise (#21003) (den$)
  • 63d52d2 fix: restore max-classes-per-file report range (#21002) (Pixel)
  • 7feaff0 fix: callback detection logic for IIFEs in max-nested-callbacks (#20979) (fnx)
  • 399a2ec fix: don't report inner non-callbacks in max-nested-callbacks (#20995) (Milos Djermanovic)

Documentation

  • a83683d docs: Update README (GitHub Actions Bot)
  • f5449f9 docs: document userland patterns for global assertionOptions in RuleT… (#20986) (playgirl)
  • bea49f7 docs: Update README (GitHub Actions Bot)
  • e5f70f9 docs: update code-path diagrams (#20984) (Tanuj Kanti)
  • 8890c2d docs: add TypeScript config guidance for MCP server (#20796) (Pierluigi Lenoci)
  • 3eb3d9b docs: Update README (GitHub Actions Bot)
  • c5bb59c docs: Update README (GitHub Actions Bot)
  • eb3c97c docs: fix grammar in prefer-const rule description (#20983) (lumir)

Chores

  • 6a42034 ci: run ecosystem tests on main branch (#20891) (sethamus)
  • 3dbacdb ci: bump actions/checkout from 6 to 7 (#21014) (dependabot[bot])
  • c3abfca chore: correct JSDoc param types in html formatter (#21018) (Minseon Kim)
  • a832320 ci: split ecosystem tests into separate jobs (#21001) (xbinaryx)
  • 27166e7 chore: update ecosystem plugins (#21005) (ESLint Bot)
  • 865d76e ci: bump pnpm/action-setup from 6.0.8 to 6.0.9 (#20989) (dependabot[bot])
  • 27a88c9 chore: update dependency markdown-it to v14 in root (#20994) (Milos Djermanovic)
  • 970cea6 chore: update dependency markdown-it to v14 (#20993) (Milos Djermanovic)
  • b482120 chore: update dependency prettier to v3.8.4 (#20990) (renovate[bot])
  • 6993fb3 chore: update ecosystem plugins (#20985) (ESLint Bot)

v10.5.0

Features

  • 5ca8c52 feat: correct stack tracking in max-nested-callbacks (#20973) (Pixel998)
  • b565783 feat: report no-with violations at the with keyword (#20971) (Pixel998)
  • 2ce032f feat: report max-lines-per-function violations at function head (#20966) (Pixel998)
  • 732cb3e feat: report max-nested-callbacks violations at function head (#20967) (Pixel998)
  • f9c138a feat: report max-depth violations on keywords (#20943) (Pixel998)
  • bdb496c feat: correct max-depth handling for else-if chains (#20944) (Pixel998)
  • c296873 feat: update error loc in max-statements to function header (#20907) (Taejin Kim)

Documentation

... (truncated)

Commits
  • 5d12a04 10.6.0
  • f7ca54b Build: changelog update for 10.6.0
  • 6a42034 ci: run ecosystem tests on main branch (#20891)
  • b1f9106 feat: detect Symbol() and BigInt() in no-constant-binary-expression (#20981)
  • 3dbacdb ci: bump actions/checkout from 6 to 7 (#21014)
  • c3abfca chore: correct JSDoc param types in html formatter (#21018)
  • a83683d docs: Update README
  • a832320 ci: split ecosystem tests into separate jobs (#21001)
  • 6b05784 fix: prefer-exponentiation-operator invalid autofix at statement start (#20997)
  • bb9eb2a fix: account for shadowed Boolean in no-extra-boolean-cast (#21013)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [eslint](https://github.com/eslint/eslint) from 8.57.1 to 10.6.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](eslint/eslint@v8.57.1...v10.6.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-version: 10.6.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added major PR will bump major semver skip-release Merging PR will not trigger release labels Jun 29, 2026
@dependabot dependabot Bot requested a review from kibertoad as a code owner June 29, 2026 04:22
@dependabot dependabot Bot added the skip-release Merging PR will not trigger release label Jun 29, 2026
@coderabbitai

coderabbitai Bot commented Jun 29, 2026

Copy link
Copy Markdown

Review Change Stack

📝 Walkthrough

Summary by CodeRabbit

  • Chores
    • Updated the ESLint development dependency to a newer major version.

Walkthrough

The eslint development dependency in package.json is updated from ^8.55.0 to ^10.6.0. No other changes are made.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name Status Explanation Resolution
Description check ⚠️ Warning The PR explains the change, but it misses the template's required Changes and Checklist sections. Add a ## Changes section and complete the ## Checklist items for labels, documentation, and tests.
✅ Passed checks (4 passed)
Check name Status Explanation
Title check ✅ Passed The title clearly states the exact dependency bump reflected in the diff.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch dependabot/npm_and_yarn/eslint-10.6.0

Comment @coderabbitai help to get the list of available commands.

@coderabbitai coderabbitai Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@package.json`:
- Line 50: The dependency bump to eslint@^10.6.0 is blocked by the repo still
using .eslintrc.json and by plugin versions that are not ESLint 10 compatible.
Update the lint configuration to the new ESLint 10 config format and adjust the
related package versions in package.json for `@typescript-eslint/`*,
eslint-plugin-import, and eslint-plugin-vitest so they are compatible before
landing the eslint upgrade.
🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

  • Push a commit to this branch (recommended)
  • Create a new PR with the fixes

ℹ️ Review info
⚙️ Run configuration

Configuration used: Repository: lokalise/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: bd6659eb-d92c-478b-9d65-762b0432623e

📥 Commits

Reviewing files that changed from the base of the PR and between e6d6b13 and cf65a8c.

📒 Files selected for processing (1)
  • package.json

Comment thread package.json
"@vitest/coverage-v8": "^1.5.3",
"auto-changelog": "^2.4.0",
"eslint": "^8.55.0",
"eslint": "^10.6.0",

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

📐 Maintainability & Code Quality | 🟠 Major | 🏗️ Heavy lift

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "== Candidate manifests and ESLint config files =="
fd -HI '^(package\.json|package-lock\.json|yarn\.lock|pnpm-lock\.yaml|\.eslintrc(\..+)?|eslint\.config\..+)$' .

echo
echo "== ESLint-related dependencies and config references =="
rg -n -C2 --glob 'package.json' --glob '.eslintrc*' --glob 'eslint.config.*' \
  '"eslint"|"`@typescript-eslint/`|eslint-plugin-|eslint-config-|eslint-import-resolver-|parser"|extends|plugins' .

echo
echo "== If present, inspect package manager constraints =="
fd -HI '^(package\.json|package-lock\.json|yarn\.lock|pnpm-lock\.yaml)$' . | xargs -r sed -n '1,220p'

Repository: lokalise/zod-extras

Length of output: 3973


🌐 Web query:

ESLint 10 legacy eslintrc support compatibility plugin parser @typescript-eslint/eslint-plugin 7 eslint-plugin-import 2.29.0 eslint-plugin-vitest 0.4.1

💡 Result:

As of June 2026, ESLint v10.0.0 (released February 2026) has completely removed support for the legacy eslintrc configuration system [1][2][3]. There is no way to enable legacy eslintrc support in ESLint 10 [1][4]. Regarding your specific dependencies and their compatibility: 1. @typescript-eslint/eslint-plugin 7: This version is not compatible with ESLint 10 [5][6]. Support for ESLint 10 was introduced in later versions of the @typescript-eslint/eslint-plugin package [6][7]. You must upgrade to a version that explicitly supports ESLint 10 [6]. 2. eslint-plugin-import 2.29.0: This version is incompatible with ESLint 10 [8]. You should migrate to eslint-plugin-import-x, which is a modern, performant, and compatible alternative for ESLint 10 [8]. 3. eslint-plugin-vitest 0.4.1: Similar to the other plugins, older versions of ecosystem plugins often lack compatibility with the architectural changes in ESLint 10. You should check for the latest release of eslint-plugin-vitest and upgrade accordingly. General Guidance for ESLint 10: - You must migrate your configuration to the Flat Config (eslint.config.js) format [1][9]. - If you rely on legacy plugins or configs that have not been updated, you may temporarily use the @eslint/compat utility, which provides functions like fixupPluginRules and fixupConfigRules to wrap older plugins for use in the Flat Config system [5]. Note, however, that this is a bridge and not a guarantee of full functionality for all plugins [5]. - Always ensure your plugins and parsers are updated to versions that support ESLint 10 to avoid runtime errors, as peer dependencies will often explicitly block installation or usage with incompatible ESLint versions [8].

Citations:


🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "== package.json and .eslintrc.json =="
cat -n package.json | sed -n '40,60p'
echo
cat -n .eslintrc.json

echo
echo "== peerDependencies and supported ESLint ranges from installed metadata, if available in lockfile =="
python3 - <<'PY'
import json, os
for path in ['package-lock.json','pnpm-lock.yaml','yarn.lock']:
    if os.path.exists(path):
        print(f'FOUND {path}')
PY

Repository: lokalise/zod-extras

Length of output: 2690


Migrate the ESLint config before landing eslint@^10.6.0
ESLint 10 no longer supports .eslintrc.json, and this repo still relies on it. The current @typescript-eslint/*, eslint-plugin-import, and eslint-plugin-vitest versions also need to be moved to ESLint 10–compatible releases or the lint task will fail.

🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@package.json` at line 50, The dependency bump to eslint@^10.6.0 is blocked by
the repo still using .eslintrc.json and by plugin versions that are not ESLint
10 compatible. Update the lint configuration to the new ESLint 10 config format
and adjust the related package versions in package.json for
`@typescript-eslint/`*, eslint-plugin-import, and eslint-plugin-vitest so they are
compatible before landing the eslint upgrade.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

major PR will bump major semver skip-release Merging PR will not trigger release

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants