Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Warning

These dependencies are deprecated:

Datasource	Name	Replacement PR?
npm	passport-azure-ad

Awaiting Schedule

These updates are awaiting their schedule. Click on a checkbox to get an update now.

• Update Node.js to v20.18.2
• Update babel monorepo (@babel/core, @babel/eslint-parser, @babel/preset-env)
• Update dependency @evilmartians/lefthook to v1.10.10
• Update dependency @ministryofjustice/frontend to v3.3.1
• Update dependency @types/lodash to v4.17.14
• Update dependency i18next to v24.2.2
• Update dependency i18next-http-middleware to v3.7.1
• Update dependency sass to v1.83.4
• Update dependency ts-loader to v9.5.2
• Update dependency typescript to v5.7.3
• Update dependency uuid to v11.0.5
• Update dependency @types/node to v20.17.16
• Update dependency core-js to v3.40.0
• Update dependency govuk-frontend to v5.8.0
• Update dependency jscodeshift to v17.1.2
• Update dependency postcss to v8.5.1
• Update dependency react-native to v0.77.0
• Update dependency stylelint to v16.14.0
• Update dependency typescript-eslint to v8.21.0
• Update eslint monorepo to v9.19.0 (@eslint/js, eslint)
• Update playwright monorepo to v1.50.0 (@playwright/browser-chromium, @playwright/browser-firefox, @playwright/browser-webkit, playwright)
• Update dependency @azure/msal-node to v3
• Update dependency @types/express to v5
• Update dependency applicationinsights to v3
• Update dependency eslint-config-prettier to v10
• Update dependency jsdom to v26
• Update dependency stylelint-config-standard to v37
• Update dependency uuid to v11

Ignored or Blocked

These are blocked by an existing closed PR and will not be recreated unless you click a checkbox below.

• Update dependency @types/cookie-parser to v1.4.8
• Update Yarn to v4.6.0
• Update Node.js to v22 (node, @types/node)

Detected dependencies

docker-compose

docker-compose.yml

dockerfile

Dockerfile

• hmctspublic.azurecr.io/base/node 20-alpine

github-actions

.github/workflows/build.yml

• actions/checkout v4

.github/workflows/close-pr.yml

• azure/login v2
• Azure/get-keyvault-secrets v1

.github/workflows/main.yml

• actions/checkout v4

.github/workflows/on-pr.yml

• azure/login v2
• Azure/get-keyvault-secrets v1

.github/workflows/update-pr.yml

helm-values

charts/pip-frontend/values.yaml

helmv3

charts/pip-frontend/Chart.yaml

• nodejs 3.1.1

npm

package.json

• @azure/msal-node ^2.16.2
• @hmcts/cookie-manager ^1.0.0
• @hmcts/info-provider ^1.2.2
• @hmcts/nodejs-healthcheck ^1.8.5
• @hmcts/nodejs-logging ^4.0.4
• @hmcts/properties-volume ^1.2.0
• @ministryofjustice/frontend ^3.3.0
• @types/config ^3.3.5
• @types/cookie-parser ^1.4.7
• @types/es6-promisify ^6.0.4
• @types/express ^4.17.21
• @types/lodash ^4.17.13
• @types/node ^20.14.15
• @types/nunjucks ^3.2.6
• @types/require-directory ^2.1.6
• @types/serve-favicon ^2.5.7
• applicationinsights 2.9.6
• awilix ^12.0.4
• axios ^1.7.9
• axios-oauth-client ^2.2.0
• axios-token-interceptor ^0.2.0
• config ^3.3.12
• connect-redis 8.0.1
• core-js 3.39.0
• cors ^2.8.5
• depcheck ^1.4.7
• express ^4.21.2
• express-session ^1.18.1
• govuk-frontend 5.7.1
• helmet ^8.0.0
• http-status-codes ^2.3.0
• i18next ^24.2.0
• i18next-http-middleware ^3.7.0
• ioredis ^5.4.2
• jquery ^3.7.1
• jwt-decode ^4.0.0
• lodash ^4.17.21
• luxon ^3.5.0
• mark.js ^8.11.1
• multer ^1.4.5-lts.1
• node-blob ^0.0.2
• npm-run-all2 ^7.0.2
• nunjucks ^3.2.4
• nunjucks-date-filter ^0.1.1
• passport-azure-ad 4.3.5
• passport-custom ^1.1.1
• postcss ^8.4.49
• require-directory ^2.1.1
• serve-favicon ^2.5.0
• stylelint ^16.12.0
• stylelint-config-standard ^36.0.1
• stylelint-config-standard-scss ^14.0.0
• ts-node ^10.9.2
• tsconfig-paths ^4.2.0
• typescript 5.7.2
• typescript-eslint ^8.18.1
• uuid ^11.0.3
• validator ^13.12.0
• @axe-core/playwright ^4.10.1
• @babel/core ^7.26.0
• @babel/eslint-parser 7.25.9
• @babel/preset-env ^7.26.0
• @codeceptjs/allure-legacy ^1.0.2
• @codeceptjs/helper ^2.0.4
• @eslint/js ^9.17.0
• @evilmartians/lefthook ^1.10.0
• @playwright/browser-chromium 1.49.1
• @playwright/browser-firefox 1.49.1
• @playwright/browser-webkit 1.49.1
• @types/axios-token-interceptor ^0.2.8
• @types/chai-as-promised ^8.0.1
• @types/jest ^29.5.14
• @types/supertest ^6.0.2
• allure-commandline ^2.32.0
• axe-playwright ^2.0.3
• babel-loader ^9.2.1
• chai ^5.1.2
• chai-as-promised ^8.0.1
• codeceptjs 3.6.10
• codeceptjs-a11y-helper ^1.5.3
• cookie-parser 1.4.7
• copy-webpack-plugin ^12.0.2
• css-loader ^7.1.2
• csv ^6.3.11
• eslint ^9.17.0
• eslint-config-prettier 9.1.0
• globals ^15.14.0
• html-webpack-plugin ^5.6.3
• jest ^29.7.0
• jest-environment-jsdom ^29.7.0
• mini-css-extract-plugin ^2.9.2
• nodemon ^3.1.9
• pa11y 8.0.0
• playwright ^1.49.1
• prettier ^3.4.2
• redis-mock 0.56.3
• sass ^1.83.0
• sass-loader ^16.0.4
• sinon ^19.0.2
• sinon-chai ^4.0.0
• sinon-express-mock ^2.2.1
• sonar-scanner ^3.1.0
• style-loader ^4.0.0
• supertest ^7.0.0
• ts-jest ^29.2.5
• ts-loader ^9.5.1
• webpack ^5.97.1
• webpack-cli ^6.0.1
• webpack-dev-middleware ^7.4.2
• webpack-node-externals ^3.0.0
• node >=20.16.0
• uuid 10.0.0
• uuid 10.0.0
• react-native 0.75.2
• jscodeshift 17.0.0
• jsdom ^25.0.0
• ws 8.18.0
• yarn 4.5.3

nvm

.nvmrc

• node 20.18.1

---

• Check this box to trigger a request for Renovate to run again on this repository