chore: update generated content

build(deps): bump undici from 6.26.0 to 6.27.0
Bumps [undici](https://github.com/nodejs/undici) from 6.26.0 to 6.27.0. - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](https://github.com/nodejs/undici/compare/v6.26.0...v6.27.0) --- updated-dependencies: - dependency-name: undici dependency-version: 6.27.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
2026-06-25 11:28:56 +00:00 · 2026-06-24 00:16:37 +00:00 · 2026-06-24 00:15:48 +00:00 · 2026-06-12 14:08:05 -05:00 · 2026-06-12 18:49:25 +00:00
6 changed files with 86 additions and 86 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -35,12 +35,12 @@ jobs:
          node-version: ${{ env.NODE_VERSION }}
      -
        name: Initialize CodeQL
-        uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
+        uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
        with:
          languages: javascript-typescript
          build-mode: none
      -
        name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
+        uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
        with:
          category: "/language:javascript-typescript"
--- a/dev.Dockerfile
+++ b/dev.Dockerfile
@@ -17,7 +17,7 @@ FROM base AS deps
 RUN --mount=type=bind,target=.,rw \
  --mount=type=cache,target=/src/.yarn/cache \
  --mount=type=cache,target=/src/node_modules \
-  yarn install && mkdir /vendor && cp yarn.lock /vendor
+  yarn install --immutable && mkdir /vendor && cp yarn.lock /vendor

 FROM scratch AS vendor-update
 COPY --from=deps /vendor /
--- a/dist/index.cjs
+++ b/dist/index.cjs
--- a/dist/index.cjs.map
+++ b/dist/index.cjs.map
--- a/dist/licenses.txt
+++ b/dist/licenses.txt
@@ -4124,7 +4124,7 @@ THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLI

 The following npm package may be included in this product:

- - undici@6.26.0
+ - undici@6.27.0

 This package contains the following license:

--- a/yarn.lock
+++ b/yarn.lock
@@ -5879,9 +5879,9 @@ __metadata:
  linkType: hard

 "undici@npm:^6.23.0, undici@npm:^6.25.0":
-  version: 6.26.0
-  resolution: "undici@npm:6.26.0"
-  checksum: 10/a1715ee4304f58fecd61e0a8c3bd7064435cfbc98b3ec1414dba5e89de97d436b7e88dd094b06ff8440428bf36b56163fc88972118890826039865edf58bdfcf
+  version: 6.27.0
+  resolution: "undici@npm:6.27.0"
+  checksum: 10/30c18cdb235edf4dd36f8aa3ace1ffaf44060289a7d62ad44c33180d2d74a224015d25574812f62ce9c625b5beb1b0b766495b650fedf356aca11eed7ce2c816
  languageName: node
  linkType: hard
Author	SHA1	Message	Date
github-actions[bot]	c0020b443e	chore: update generated content	2026-06-24 00:16:37 +00:00
dependabot[bot]	93d57c4524	build(deps): bump undici from 6.26.0 to 6.27.0 Bumps [undici](https://github.com/nodejs/undici) from 6.26.0 to 6.27.0. - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](https://github.com/nodejs/undici/compare/v6.26.0...v6.27.0) --- updated-dependencies: - dependency-name: undici dependency-version: 6.27.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-06-24 00:15:48 +00:00
temenuzhka-thede	eaefd20f59	Merge pull request #303 from docker/sec-cli/npm-ci-20260612-184924 fix: replace npm install with npm ci (20260612-184924)	2026-06-12 14:08:05 -05:00
securityeng-bot[bot]	d1e45353ee	fix: use lockfile-aware install commands	2026-06-12 18:49:25 +00:00