build(deps): bump nodemailer from 8.0.4 to 8.0.5 by dependabot[bot] · Pull Request #3076 · inkeep/agents

dependabot · 2026-04-08T18:49:49Z

Bumps nodemailer from 8.0.4 to 8.0.5.

Release notes

v8.0.5

8.0.5 (2026-04-07)

Bug Fixes

decode SMTP server responses as UTF-8 at line boundary (95876b1)

sanitize CRLF in transport name option to prevent SMTP command injection (GHSA-vvjj-xcjg-gr5g) (0a43876)

Changelog

Sourced from nodemailer's changelog.

8.0.5 (2026-04-07)

Bug Fixes

decode SMTP server responses as UTF-8 at line boundary (95876b1)

sanitize CRLF in transport name option to prevent SMTP command injection (GHSA-vvjj-xcjg-gr5g) (0a43876)

Commits

202cfb3 chore(master): release 8.0.5 (#1809)
b634abf docs: add CLAUDE.md with project conventions and release process
95876b1 fix: decode SMTP server responses as UTF-8 at line boundary
0a43876 fix: sanitize CRLF in transport name option to prevent SMTP command injection...
08e59e6 chore: update dev dependencies
See full diff in compare view

vercel · 2026-04-08T18:49:58Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
agents-api	Ready	Preview, Comment	Apr 15, 2026 3:40pm
agents-docs	Ready	Preview, Comment	Apr 15, 2026 3:40pm
agents-manage-ui	Ready	Preview, Comment	Apr 15, 2026 3:40pm

changeset-bot · 2026-04-08T18:50:16Z

⚠️ No Changeset found

Latest commit: a651472

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

socket-security · 2026-04-08T18:51:50Z

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

github-actions · 2026-04-14T18:13:43Z

A matching internal PR is ready in inkeep/agents-private#96 for canonical review and merge.

Original author attribution is preserved as @dependabot[bot]
The internal PR is the authoritative merge surface
The public repo will pick up the merged change through the normal mirror sync

This comment will be updated as the bridge state changes.

socket-security · 2026-04-22T23:18:06Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	next@16.2.4
	@opentelemetry/sdk-trace-node@2.1.0
	@opentelemetry/context-async-hooks@2.1.0
	@langfuse/tracing@4.0.1
	@types/node@22.18.4
	tsx@4.20.5
	langfuse@3.38.5
	zustand@5.0.9
	typescript@5.9.2
	@opentelemetry/core@2.1.0
	dotenv@16.6.1

View full report

Bumps [nodemailer](https://github.com/nodemailer/nodemailer) from 8.0.4 to 8.0.5. - [Release notes](https://github.com/nodemailer/nodemailer/releases) - [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md) - [Commits](nodemailer/nodemailer@v8.0.4...v8.0.5) --- updated-dependencies: - dependency-name: nodemailer dependency-version: 8.0.5 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 8, 2026

vercel Bot deployed to Preview – agents-manage-ui April 8, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-docs April 8, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-api April 8, 2026 18:53 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from b0ced4a to 303e12d Compare April 8, 2026 20:32

vercel Bot deployed to Preview – agents-manage-ui April 8, 2026 20:34 View deployment

vercel Bot deployed to Preview – agents-docs April 8, 2026 20:35 View deployment

vercel Bot deployed to Preview – agents-api April 8, 2026 20:36 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from 303e12d to ee35eea Compare April 9, 2026 02:37

vercel Bot deployed to Preview – agents-manage-ui April 9, 2026 02:39 View deployment

vercel Bot deployed to Preview – agents-docs April 9, 2026 02:40 View deployment

vercel Bot deployed to Preview – agents-api April 9, 2026 02:41 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from ee35eea to 988265c Compare April 9, 2026 19:49

vercel Bot deployed to Preview – agents-manage-ui April 9, 2026 19:51 View deployment

vercel Bot deployed to Preview – agents-docs April 9, 2026 19:52 View deployment

vercel Bot deployed to Preview – agents-api April 9, 2026 19:53 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from 988265c to 0d1812e Compare April 10, 2026 15:01

vercel Bot deployed to Preview – agents-manage-ui April 10, 2026 15:03 View deployment

vercel Bot deployed to Preview – agents-docs April 10, 2026 15:05 View deployment

vercel Bot deployed to Preview – agents-api April 10, 2026 15:06 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from 0d1812e to f1a319e Compare April 10, 2026 21:40

vercel Bot deployed to Preview – agents-manage-ui April 10, 2026 21:42 View deployment

vercel Bot deployed to Preview – agents-docs April 10, 2026 21:43 View deployment

vercel Bot deployed to Preview – agents-api April 10, 2026 21:44 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from f1a319e to 2073ec5 Compare April 14, 2026 18:15

vercel Bot deployed to Preview – agents-manage-ui April 14, 2026 18:17 View deployment

vercel Bot deployed to Preview – agents-docs April 14, 2026 18:18 View deployment

vercel Bot deployed to Preview – agents-api April 14, 2026 18:19 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from 2073ec5 to 206c58c Compare April 15, 2026 00:54

vercel Bot deployed to Preview – agents-manage-ui April 15, 2026 00:56 View deployment

vercel Bot deployed to Preview – agents-docs April 15, 2026 00:57 View deployment

vercel Bot deployed to Preview – agents-api April 15, 2026 00:58 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from 206c58c to 8e24017 Compare April 15, 2026 13:29

vercel Bot deployed to Preview – agents-manage-ui April 15, 2026 13:31 View deployment

vercel Bot deployed to Preview – agents-docs April 15, 2026 13:32 View deployment

vercel Bot deployed to Preview – agents-api April 15, 2026 13:33 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from 8e24017 to 7bc0b98 Compare April 15, 2026 15:36

vercel Bot deployed to Preview – agents-manage-ui April 15, 2026 15:38 View deployment

vercel Bot deployed to Preview – agents-docs April 15, 2026 15:39 View deployment

vercel Bot deployed to Preview – agents-api April 15, 2026 15:40 View deployment

dependabot Bot changed the title ~~chore(deps): bump nodemailer from 8.0.4 to 8.0.5~~ build(deps): bump nodemailer from 8.0.4 to 8.0.5 Apr 16, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch 6 times, most recently from d2767b3 to 64ffb6d Compare April 22, 2026 23:16

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from 64ffb6d to dee8d44 Compare April 23, 2026 00:44

dependabot Bot force-pushed the dependabot/npm_and_yarn/nodemailer-8.0.5 branch from dee8d44 to a651472 Compare April 25, 2026 02:00

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump nodemailer from 8.0.4 to 8.0.5#3076

build(deps): bump nodemailer from 8.0.4 to 8.0.5#3076
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/nodemailer-8.0.5

dependabot Bot commented on behalf of github Apr 8, 2026 •

edited

Loading

Uh oh!

vercel Bot commented Apr 8, 2026 •

edited

Loading

Uh oh!

changeset-bot Bot commented Apr 8, 2026 •

edited

Loading

Uh oh!

socket-security Bot commented Apr 8, 2026 •

edited

Loading

Uh oh!

github-actions Bot commented Apr 14, 2026 •

edited

Loading

Uh oh!

socket-security Bot commented Apr 22, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Apr 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v8.0.5

8.0.5 (2026-04-07)

Bug Fixes

8.0.5 (2026-04-07)

Bug Fixes

Uh oh!

vercel Bot commented Apr 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

changeset-bot Bot commented Apr 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

⚠️ No Changeset found

Uh oh!

socket-security Bot commented Apr 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

github-actions Bot commented Apr 14, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security Bot commented Apr 22, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Apr 8, 2026 •

edited

Loading

vercel Bot commented Apr 8, 2026 •

edited

Loading

changeset-bot Bot commented Apr 8, 2026 •

edited

Loading

socket-security Bot commented Apr 8, 2026 •

edited

Loading

github-actions Bot commented Apr 14, 2026 •

edited

Loading

socket-security Bot commented Apr 22, 2026 •

edited

Loading