Skip to content

refactor: Bump @grpc/grpc-js from 1.14.3 to 1.14.4#10503

Merged
mtrezza merged 1 commit into
alphafrom
dependabot/npm_and_yarn/grpc/grpc-js-1.14.4
Jul 13, 2026
Merged

refactor: Bump @grpc/grpc-js from 1.14.3 to 1.14.4#10503
mtrezza merged 1 commit into
alphafrom
dependabot/npm_and_yarn/grpc/grpc-js-1.14.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 11, 2026

Copy link
Copy Markdown
Contributor

Bumps @grpc/grpc-js from 1.14.3 to 1.14.4.

Release notes

Sourced from @​grpc/grpc-js's releases.

@​grpc/grpc-js 1.14.4

Commits
  • a380735 Merge pull request #3052 from murgatroid99/grpc-js_1.14.4
  • 5b8d37b Merge commit from fork
  • 6a97456 Merge commit from fork
  • e5e0b1d grpc-js: Bump version to 1.14.4
  • 5029a26 Make compression error a static string
  • 2fe55fd Fix crashes when receiving malformed compressed data
  • 234f917 Fix server crash when handling invalid requests
  • acef8d4 Merge pull request #3043 from murgatroid99/rbac_types_change_fix_1.14
  • 4f3c58f grpc-js-xds: Update RBAC code to handle Node type change, pin @​types/node
  • See full diff in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Summary by CodeRabbit

  • Chores
    • Updated the gRPC dependency to version 1.14.4.
    • Refreshed dependency metadata to ensure consistent package installation.

@dependabot dependabot Bot added dependencies Bot label; pull requests that updates a dependency file javascript Pull requests that update javascript code labels Jun 11, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/grpc/grpc-js-1.14.4 branch 4 times, most recently from f5263df to 3ff50ba Compare June 19, 2026 00:23
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/grpc/grpc-js-1.14.4 branch 2 times, most recently from c81528f to bc6f24b Compare June 25, 2026 09:16
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/grpc/grpc-js-1.14.4 branch 4 times, most recently from 7c8cfbd to 2fd7216 Compare July 10, 2026 22:37
Bumps [@grpc/grpc-js](https://github.com/grpc/grpc-node) from 1.14.3 to 1.14.4.
- [Release notes](https://github.com/grpc/grpc-node/releases)
- [Commits](https://github.com/grpc/grpc-node/compare/@grpc/grpc-js@1.14.3...@grpc/grpc-js@1.14.4)

---
updated-dependencies:
- dependency-name: "@grpc/grpc-js"
  dependency-version: 1.14.4
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/grpc/grpc-js-1.14.4 branch from 2fd7216 to ae347ed Compare July 11, 2026 01:49
@mtrezza

mtrezza commented Jul 13, 2026

Copy link
Copy Markdown
Member

@coderabbitai review

@coderabbitai

coderabbitai Bot commented Jul 13, 2026

Copy link
Copy Markdown
✅ Action performed

Review finished.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

@coderabbitai

coderabbitai Bot commented Jul 13, 2026

Copy link
Copy Markdown

Review Change Stack

📝 Walkthrough

Walkthrough

The lockfile updates both @grpc/grpc-js entries from version 1.14.3 to 1.14.4, including their resolved tarball URLs and integrity hashes.

Changes

gRPC dependency lock refresh

Layer / File(s) Summary
Update gRPC lock entries
package-lock.json
Both @grpc/grpc-js lock entries now reference version 1.14.4 with matching resolved URLs and integrity hashes.

Estimated code review effort: 1 (Trivial) | ~2 minutes


Caution

Pre-merge checks failed

Please resolve all errors before merging. Addressing warnings is optional.

  • Ignore

❌ Failed checks (1 error)

Check name Status Explanation Resolution
Description check ❌ Error The description omits the required Issue, Approach, and Tasks sections from the repository template. Add the missing Issue, Approach, and Tasks sections, and mark relevant checklist items such as tests or documentation.
✅ Passed checks (6 passed)
Check name Status Explanation
Title check ✅ Passed The title matches the dependency bump and uses an allowed prefix with a capitalized action word.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
Security Check ✅ Passed Only package-lock.json changed, bumping @grpc/grpc-js to 1.14.4; no application code changed and the update matches the security-fix release.
Engage In Review Feedback ✅ Passed PASS: This is a solitary lockfile bump, and the provided context shows no substantive review-feedback comments to engage or ignore.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch dependabot/npm_and_yarn/grpc/grpc-js-1.14.4

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands.

@mtrezza mtrezza merged commit a972046 into alpha Jul 13, 2026
22 checks passed
@mtrezza mtrezza deleted the dependabot/npm_and_yarn/grpc/grpc-js-1.14.4 branch July 13, 2026 12:05
@parseplatformorg

Copy link
Copy Markdown
Contributor

🎉 This change has been released in version 9.10.1-alpha.1

@parseplatformorg parseplatformorg added the state:released-alpha Released as alpha version label Jul 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Bot label; pull requests that updates a dependency file javascript Pull requests that update javascript code state:released-alpha Released as alpha version

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants