Dependabot group update by Thomas-Boyle · Pull Request #1360 · NHSDigital/immunisation-fhir-api

Thomas-Boyle · 2026-03-30T09:03:00Z

This branch groups six Dependabot dependency updates into one PR to reduce review overhead and merge them together safely.

Included updates
#1358 — Bump aws-actions/amazon-ecr-login from 2.0.1 to 2.1.1 in github-actions-minor-patch
#1357 — Bump @redocly/cli from 2.25.1 to 2.25.2 in npm-minor-patch
#1356 — Bump cryptography from 46.0.5 to 46.0.6 in tests/perf_tests
#1355 — Bump cryptography from 46.0.5 to 46.0.6 in lambdas/mns_publisher
#1354 — Bump cryptography from 46.0.5 to 46.0.6 in lambdas/filenameprocessor
#1353 — Bump cryptography from 46.0.5 to 46.0.6 in lambdas/batch_processor_filter
#1362 — Bump pygments from 2.19.2 to 2.20.0
#1363 — Bump redocly/cli from 2.25.1 to 2.25.3
#1364 — Bump aws-actions/amazon-ecr-login from 2.0.1 to 2.1.1

Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.5 to 46.0.6. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@46.0.5...46.0.6) --- updated-dependencies: - dependency-name: cryptography dependency-version: 46.0.6 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps the npm-minor-patch group with 1 update: [@redocly/cli](https://github.com/Redocly/redocly-cli). Updates `@redocly/cli` from 2.25.1 to 2.25.2 - [Release notes](https://github.com/Redocly/redocly-cli/releases) - [Commits](https://github.com/Redocly/redocly-cli/compare/@redocly/cli@2.25.1...@redocly/cli@2.25.2) --- updated-dependencies: - dependency-name: "@redocly/cli" dependency-version: 2.25.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps the github-actions-minor-patch group with 1 update: [aws-actions/amazon-ecr-login](https://github.com/aws-actions/amazon-ecr-login). Updates `aws-actions/amazon-ecr-login` from 2.0.1 to 2.1.1 - [Release notes](https://github.com/aws-actions/amazon-ecr-login/releases) - [Changelog](https://github.com/aws-actions/amazon-ecr-login/blob/main/CHANGELOG.md) - [Commits](aws-actions/amazon-ecr-login@062b18b...183a144) --- updated-dependencies: - dependency-name: aws-actions/amazon-ecr-login dependency-version: 2.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [pygments](https://github.com/pygments/pygments) from 2.19.2 to 2.20.0. - [Release notes](https://github.com/pygments/pygments/releases) - [Changelog](https://github.com/pygments/pygments/blob/master/CHANGES) - [Commits](pygments/pygments@2.19.2...2.20.0) --- updated-dependencies: - dependency-name: pygments dependency-version: 2.20.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps the npm-minor-patch group with 1 update: [@redocly/cli](https://github.com/Redocly/redocly-cli). Updates `@redocly/cli` from 2.25.1 to 2.25.3 - [Release notes](https://github.com/Redocly/redocly-cli/releases) - [Commits](https://github.com/Redocly/redocly-cli/compare/@redocly/cli@2.25.1...@redocly/cli@2.25.3) --- updated-dependencies: - dependency-name: "@redocly/cli" dependency-version: 2.25.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps the github-actions-minor-patch group with 1 update: [aws-actions/amazon-ecr-login](https://github.com/aws-actions/amazon-ecr-login). Updates `aws-actions/amazon-ecr-login` from 2.0.1 to 2.1.1 - [Release notes](https://github.com/aws-actions/amazon-ecr-login/releases) - [Changelog](https://github.com/aws-actions/amazon-ecr-login/blob/main/CHANGELOG.md) - [Commits](aws-actions/amazon-ecr-login@062b18b...183a144) --- updated-dependencies: - dependency-name: aws-actions/amazon-ecr-login dependency-version: 2.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Made-with: Cursor # Conflicts: # package-lock.json # package.json

sonarqubecloud · 2026-03-31T21:00:56Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

dependabot bot added 6 commits March 30, 2026 10:01

Thomas-Boyle requested a review from Akol125 March 30, 2026 09:05

Thomas-Boyle temporarily deployed to dev March 30, 2026 09:07 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to dev March 30, 2026 09:08 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to dev March 30, 2026 09:09 — with GitHub Actions Inactive

Akol125 previously approved these changes Mar 30, 2026

View reviewed changes

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 09:15 — with GitHub Actions Failure

Thomas-Boyle temporarily deployed to internal-dev March 30, 2026 09:15 — with GitHub Actions Inactive

Thomas-Boyle had a problem deploying to internal-dev March 30, 2026 09:23 — with GitHub Actions Error

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 09:32 — with GitHub Actions Failure

Thomas-Boyle had a problem deploying to internal-dev March 30, 2026 09:33 — with GitHub Actions Failure

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 09:37 — with GitHub Actions Failure

Thomas-Boyle temporarily deployed to internal-dev March 30, 2026 09:37 — with GitHub Actions Inactive

Thomas-Boyle added the dependencies Pull requests that update a dependency file label Mar 30, 2026

Thomas-Boyle temporarily deployed to internal-dev March 30, 2026 09:49 — with GitHub Actions Inactive

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 09:54 — with GitHub Actions Failure

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 10:08 — with GitHub Actions Failure

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 10:24 — with GitHub Actions Failure

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 12:03 — with GitHub Actions Failure

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 30, 2026 12:20 — with GitHub Actions Failure

dependabot bot and others added 5 commits March 30, 2026 20:29

Merge branch 'pr-1364' into dependabot-group-update

4a079d5

Merge branch 'pr-1363' into dependabot-group-update

1d6e65c

Made-with: Cursor # Conflicts: # package-lock.json # package.json

Thomas-Boyle temporarily deployed to dev March 31, 2026 08:26 — with GitHub Actions Inactive

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 31, 2026 08:28 — with GitHub Actions Failure

Thomas-Boyle temporarily deployed to internal-dev March 31, 2026 08:28 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev March 31, 2026 08:41 — with GitHub Actions Inactive

Thomas-Boyle had a problem deploying to internal-dev-sandbox March 31, 2026 08:45 — with GitHub Actions Failure

Merge branch 'master' into dependabot-group-update

1bef65f

Thomas-Boyle temporarily deployed to dev March 31, 2026 12:33 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to dev March 31, 2026 12:34 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev March 31, 2026 12:36 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev-sandbox March 31, 2026 12:36 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev March 31, 2026 12:36 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev-sandbox March 31, 2026 12:39 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev-sandbox March 31, 2026 12:40 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev March 31, 2026 12:48 — with GitHub Actions Inactive

amarauzoma approved these changes Mar 31, 2026

View reviewed changes

avshetty1980 self-requested a review March 31, 2026 13:30

avshetty1980 approved these changes Mar 31, 2026

View reviewed changes

Merge branch 'master' into dependabot-group-update

9c93258

Thomas-Boyle temporarily deployed to dev March 31, 2026 21:00 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to dev March 31, 2026 21:01 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev-sandbox March 31, 2026 21:04 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev March 31, 2026 21:04 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev-sandbox March 31, 2026 21:06 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev-sandbox March 31, 2026 21:07 — with GitHub Actions Inactive

Thomas-Boyle temporarily deployed to internal-dev March 31, 2026 21:21 — with GitHub Actions Inactive

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dependabot group update#1360

Dependabot group update#1360
Thomas-Boyle wants to merge 14 commits intomasterfrom
dependabot-group-update

Thomas-Boyle commented Mar 30, 2026 •

edited

Loading

Uh oh!

sonarqubecloud bot commented Mar 31, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Conversation

Thomas-Boyle commented Mar 30, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

sonarqubecloud bot commented Mar 31, 2026

Quality Gate passed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Thomas-Boyle commented Mar 30, 2026 •

edited

Loading