Skip to content

Bump fast-equals from 6.0.0 to 6.0.2#122

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/fast-equals-6.0.2
Open

Bump fast-equals from 6.0.0 to 6.0.2#122
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/fast-equals-6.0.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 16, 2026

Copy link
Copy Markdown
Contributor

Bumps fast-equals from 6.0.0 to 6.0.2.

Release notes

Sourced from fast-equals's releases.

Release 6.0.2

  • [Security] Remove vulnerable packages (#197) (6fe1d04)
  • [Maintenance] Add es-toolkit to benchmarks (#196) (75e6b28)

Release 6.0.1

  • [Enhancement] Micro-optimizations (#195) (fa586eb)
  • update to latest (#194) (23e8e11)
  • Bump the npm_and_yarn group across 1 directory with 4 updates (#193) (bad66ff)
  • Bump esbuild in the npm_and_yarn group across 1 directory (#192) (69b3729)
  • Bump vitest in the npm_and_yarn group across 1 directory (#191) (bd97422)
  • Bump postcss in the npm_and_yarn group across 1 directory (#190) (f911b02)
  • Bump ip-address in the npm_and_yarn group across 1 directory (#189) (2a9e023)
  • Bump the npm_and_yarn group across 1 directory with 2 updates (#187) (7388913)
  • Bump lodash in the npm_and_yarn group across 1 directory (#186) (9f1a52f)
  • Bump defu in the npm_and_yarn group across 1 directory (#185) (fdcbd17)
  • Bump picomatch in the npm_and_yarn group across 1 directory (#184) (0a26ef6)
  • Bump flatted in the npm_and_yarn group across 1 directory (#183) (6988992)
  • Bump tar in the npm_and_yarn group across 1 directory (#182) (711996d)
  • Bump tar in the npm_and_yarn group across 1 directory (#181) (2e1878a)
  • Bump rollup in the npm_and_yarn group across 1 directory (#180) (80b68a5)
  • Bump basic-ftp in the npm_and_yarn group across 1 directory (#179) (8b9cdc3)
  • Bump minimatch in the npm_and_yarn group across 1 directory (#178) (e82513c)
  • Bump tar from 7.5.7 to 7.5.9 (#177) (d29f6aa)
  • Bump @​isaacs/brace-expansion from 5.0.0 to 5.0.1 (#176) (88d77b6)
  • Bump tar from 7.5.6 to 7.5.7 (#175) (81b87ab)
  • Bump lodash from 4.17.21 to 4.17.23 (#174) (c4a53c1)
  • Bump tar from 7.5.3 to 7.5.6 (#173) (6462210)
  • Bump tar from 7.5.2 to 7.5.3 (#172) (46d04a4)
Changelog

Sourced from fast-equals's changelog.

6.0.2

  • #197 - Remove transitive dependencies with security vulnerabilities

6.0.1

  • #195 - Use .length instead of byteLength for TypedArrays, which avoids V8 slow path on non-8-bit arrays
  • #195 - Use Uint8Array instead of Array for matchedIndices storage for denser uninitialized loads
  • #195 - Avoid unnecessary concat when no symbols exist on strict comparisons
Commits
  • b80385f Release 6.0.2
  • 6fe1d04 [Security] Remove vulnerable packages (#197)
  • 75e6b28 [Maintenance] Add es-toolkit to benchmarks (#196)
  • 5699879 Release 6.0.1
  • fa586eb [Enhancement] Micro-optimizations (#195)
  • 23e8e11 update to latest (#194)
  • bad66ff Bump the npm_and_yarn group across 1 directory with 4 updates (#193)
  • 69b3729 Bump esbuild in the npm_and_yarn group across 1 directory (#192)
  • bd97422 Bump vitest in the npm_and_yarn group across 1 directory (#191)
  • f911b02 Bump postcss in the npm_and_yarn group across 1 directory (#190)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [fast-equals](https://github.com/planttheidea/fast-equals) from 6.0.0 to 6.0.2.
- [Release notes](https://github.com/planttheidea/fast-equals/releases)
- [Changelog](https://github.com/planttheidea/fast-equals/blob/main/CHANGELOG.md)
- [Commits](planttheidea/fast-equals@v6.0.0...v6.0.2)

---
updated-dependencies:
- dependency-name: fast-equals
  dependency-version: 6.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 16, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants