v3.6.0
Changes:
#1175: Allow dots in tags and update extension tag handling
#1173: Exclude image files from scanning for secrets
#1174: Update secretlint dependency
#1170: Improve error message for missing entrypoints
#1169: Sanitize tags to remove special characters
#1166: Add language-models tag for extensions with languageModels contribution
#1167: chore: npm audit fix
This list of changes wasauto generated.
v3.5.1-6
Changes:
#1175: Allow dots in tags and update extension tag handling
This list of changes wasauto generated.
v3.5.1-5
Changes:
#1173: Exclude image files from scanning for secrets
#1174: Update secretlint dependency
This list of changes wasauto generated.
v3.5.1-3
Changes:
#1170: Improve error message for missing entrypoints
This list of changes wasauto generated.
v3.5.1-2
Changes:
#1169: Sanitize tags to remove special characters

... (truncated)

Commits

b373bc4 Merge pull request#1175 from microsoft/benibenj/assistant-toad
8d5e643 .
06ff8b7 add test
7029680 allow . in tags but keep extension tags the same as before
dfcca88 Merge pull request#1173 from microsoft/benibenj/voluminous-caribou
f1cf004 fix tests
34c6ad4 Merge pull request#1174 from microsoft/benibenj/gleaming-alligator
ec26cc3 Merge remote-tracking branch 'origin/main' into benibenj/voluminous-caribou
ff508ef update secretlint dependency
0cda2de dont scann image files
Additional commits viewable incompare view

Maintainer changes

This version was pushed to npm bymicrosoft1es, a new releaser for@vscode/vsce since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting@dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabotbot added dependencies

Pull requests that update a dependency file

javascriptPull requests that update Javascript code labels

Jun 30, 2025

dependabotbot requested a review fromjaggederest

June 30, 2025 16:54

dependabotbot mentioned this pull request

Jun 30, 2025

chore(deps-dev): bump @vscode/vsce from 2.21.1 to 3.5.0#530

Closed

matifali requested review fromcode-asher and removed request forjaggederest

July 24, 2025 09:37

dependabotbotforce-pushed thedependabot/npm_and_yarn/vscode/vsce-3.6.0 branch from7388e73 to2b90bb0Compare

July 24, 2025 09:40

chore(deps-dev): bump @vscode/vsce from 2.21.1 to 3.6.0

7673ddf

Bumps [@vscode/vsce](https://github.com/Microsoft/vsce) from 2.21.1 to 3.6.0.- [Release notes](https://github.com/Microsoft/vsce/releases)- [Commits](microsoft/vscode-vsce@v2.21.1...v3.6.0)---updated-dependencies:- dependency-name: "@vscode/vsce"  dependency-version: 3.6.0  dependency-type: direct:development  update-type: version-update:semver-major...Signed-off-by: dependabot[bot] <support@github.com>