refactor: Bump @semantic-release/npm from 13.1.4 to 13.1.5

[mtrezza]

Closes #834

Changes

• 13.1.5: Bug fix — update dependency normalize-url to v9

Breaking Changes

None

Code Changes Required

None — the upgrade is a drop-in replacement.

Summary by CodeRabbit

• Chores
  • Updated development tooling and release automation dependencies to latest stable versions.

[parse-github-assistant]

🚀 Thanks for opening this pull request! We appreciate your effort in improving the project. Please let us know once your pull request is ready for review.

Tip

• Keep pull requests small. Large PRs will be rejected. Break complex features into smaller, incremental PRs.
• Use Test Driven Development. Write failing tests before implementing functionality. Ensure tests pass.
• Group code into logical blocks. Add a short comment before each block to explain its purpose.
• We offer conceptual guidance. Coding is up to you. PRs must be merge-ready for human review.
• Our review focuses on concept, not quality. PRs with code issues will be rejected. Use an AI agent.
• Human review time is precious. Avoid review ping-pong. Inspect and test your AI-generated code.

Note

Please respond to review comments from AI agents just like you would to comments from a human reviewer. Let the reviewer resolve their own comments, unless they have reviewed and accepted your commit, or agreed with your explanation for why the feedback was incorrect.

Caution

Pull requests must be written using an AI agent with human supervision. Pull requests written entirely by a human will likely be rejected, because of lower code quality, higher review effort and the higher risk of introducing bugs. Please note that AI review comments on this pull request alone do not satisfy this requirement.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 9c22c2b7-464c-4fc7-878b-788328979b52

📥 Commits

Reviewing files that changed from the base of the PR and between db65b2b and 24dbd32.

📒 Files selected for processing (2)

• package-lock.json
• package.json

---

📝 Walkthrough

Walkthrough

This pull request updates the development dependency @semantic-release/npm from version 13.1.4 to 13.1.5 in both package.json and package-lock.json. The bump includes an indirect dependency update of normalize-url from 8.0.1 to 9.0.0, along with updated hash values and license metadata.

Changes

Cohort / File(s)	Summary
Dependency Version Updates package.json, package-lock.json	Updated @semantic-release/npm from 13.1.4 to 13.1.5. Updated transitive dependency normalize-url from 8.0.1 to 9.0.0, with corresponding changes to package integrity hashes, resolved URLs, license declarations, and Node engine requirements (>=20 for normalize-url).

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

🚥 Pre-merge checks | ✅ 6 | ❌ 2

❌ Failed checks (2 inconclusive)

Check name	Status	Explanation	Resolution
Human Review	❓ Inconclusive	Custom check requires human review of code changes before merge. Git history shows PR branch exists with commits, but GitHub PR metadata (reviews, approvals, comments) is inaccessible via repository alone.	Access GitHub PR directly to confirm explicit human approval and review of dependency changes, or establish branch protection rules requiring PR reviews before merge.
Engage In Review Feedback	❓ Inconclusive	GitHub PR review comments and engagement are stored on GitHub's platform, not in git repository data accessible from the sandbox environment.	Visit the GitHub PR page for parse-server-example PR #839 to review all reviewer comments, responses, and verify feedback was addressed appropriately.

✅ Passed checks (6 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The PR title begins with the required 'refactor:' prefix and clearly describes the main change: bumping @semantic-release/npm from 13.1.4 to 13.1.5.
Linked Issues check	✅ Passed	The PR successfully upgrades @semantic-release/npm to v13.1.5 with normalized-url dependency updated to v9, directly addressing the objectives in issue #834.
Out of Scope Changes check	✅ Passed	All changes are limited to dependency version updates in package.json and package-lock.json with no unrelated modifications or code changes introduced.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Security Check	✅ Passed	Security assessment confirms no code modifications, valid SHA-512 integrity hashes, official npm registry sources, and no tampering detected.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

Warning

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

🔧 Checkov (3.2.510)

package.json

2026-03-31 14:40:41,402 [MainThread ] [ERROR] Template file not found: package.json
2026-03-31 14:40:41,405 [MainThread ] [ERROR] Template file not found: package.json
2026-03-31 14:40:41,411 [MainThread ] [ERROR] Template file not found: package.json
2026-03-31 14:40:41,447 [MainThread ] [ERROR] Failed to invoke function /usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner. with package.json
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 88, in func_wrapper
result = original_func(item)
^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner.py", line 74, in
results = parallel_runner.run_function(lambda f: (f, self._parse_file(f)), files_to_load)
^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/ope

... [truncated 2547 characters] ...

ck__)
FileNotFoundError: [Errno 2] No such file or directory: 'package.json'
2026-03-31 14:40:41,477 [MainThread ] [ERROR] Exception traceback:
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/main.py", line 647, in run
self.scan_reports = runner_registry.run(
^^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/runner_registry.py", line 177, in run
for result in parallel_runner_results:
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 118, in _run_function_multiprocess_fork
raise v.internal_exception.with_traceback(v.internal_exception.traceback)
FileNotFoundError: [Errno 2] No such file or directory: 'package.json'

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[mtrezza]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.