chore(deps): bump minimatch and npm in /plugins/kibo-commerce by dependabot[bot] · Pull Request #4316

chore(deps): bump minimatch and npm in /plugins/kibo-commerce by dependabot[bot] · Pull Request #4316 · BuilderIO/builder

Bumps minimatch and npm. These dependencies needed to be updated together.
Updates minimatch from 3.1.2 to 3.1.5

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Note

Low Risk
Low risk lockfile-only dependency update, but it changes the bundled npm toolchain and a large set of transitive packages, which could affect install/build behavior in CI.

Overview
Updates plugins/kibo-commerce/package-lock.json to bump minimatch from 3.1.2 to 3.1.5 and npm from 9.6.5 to 9.9.4.

The lockfile refresh pulls in a broad set of updated transitive dependencies (notably glob, minipass, sigstore, tar, chalk, and related @npmcli/* packages) reflecting the newer npm bundle contents.

^{Written by Cursor Bugbot for commit 2bd0daa. This will update automatically on new commits. Configure here.}