Skip to content

chore(loop-init): bump @cobusgreyling/loop-audit from 1.5.3 to 1.6.0 in /tools/loop-init#279

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/tools/loop-init/cobusgreyling/loop-audit-1.6.0
Open

chore(loop-init): bump @cobusgreyling/loop-audit from 1.5.3 to 1.6.0 in /tools/loop-init#279
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/tools/loop-init/cobusgreyling/loop-audit-1.6.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor

Bumps @cobusgreyling/loop-audit from 1.5.3 to 1.6.0.

Changelog

Sourced from @​cobusgreyling/loop-audit's changelog.

[1.6.0] - 2026-07-09

Added

  • Governance scoring signals: least-privilege tool scope, stall / no-progress detection, human-escalation path
  • allowed-tools frontmatter in SKILL.md detected as a least-privilege signal
  • --suggest recommendations when governance signals are missing
Commits
  • ea1d4ce feat(loop-audit): score least-privilege, stall detection, and escalation sign...
  • af673c7 chore(audit): bump @​types/node in /tools/loop-audit (#211)
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@cobusgreyling/loop-audit](https://github.com/cobusgreyling/loop-engineering/tree/HEAD/tools/loop-audit) from 1.5.3 to 1.6.0.
- [Release notes](https://github.com/cobusgreyling/loop-engineering/releases)
- [Changelog](https://github.com/cobusgreyling/loop-engineering/blob/main/tools/loop-audit/CHANGELOG.md)
- [Commits](https://github.com/cobusgreyling/loop-engineering/commits/loop-audit-v1.6.0/tools/loop-audit)

---
updated-dependencies:
- dependency-name: "@cobusgreyling/loop-audit"
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 14, 2026
@dependabot dependabot Bot requested a review from cobusgreyling as a code owner July 14, 2026 19:54
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 14, 2026
@github-actions

Copy link
Copy Markdown
Contributor

Loop Readiness Audit

Score: 100/100 (L3)

Strong loop readiness — good candidate for L3 with explicit gates.

No suggestions — looking good.

Posted by audit.yml · loop-audit docs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants