chore(deps): bump the sf-cli-and-oclif group with 6 updates

[dependabot]

Bumps the sf-cli-and-oclif group with 6 updates:

Package	From	To
@oclif/core	4.0.31	4.8.0
@salesforce/core	8.6.4	8.26.2
@salesforce/sf-plugins-core	12.0.11	12.2.6
@oclif/plugin-command-snapshot	5.1.9	5.3.9
@salesforce/cli-plugins-testkit	5.3.10	5.3.41
oclif	4.14.0	4.22.79

Updates @oclif/core from 4.0.31 to 4.8.0

Release notes

Sourced from @​oclif/core's releases.

4.8.0

Features

• show env in flag help (97c0bde)

4.7.2

Bug Fixes

• retain description when hiding summary in help (#1493) (3647672)

4.7.1

Bug Fixes

• warn about unparsed arguments (#1490) (5ad6bf0)

4.7.0

Features

• support allowNo with alias (d6de26f)

4.6.0

Features

• support the 'combinable' & 'only' flag relationships (#1487) (#1488) (d13b448)

4.5.6

Bug Fixes

• indicate whether an argument is optional in the help command (#1453) (#1482) (94e46f8)

4.5.6-autocomplete.0

Bug Fixes

• first commit on custom autocomplete (4bd2459)

4.5.5

Bug Fixes

• deps: bump semver from 7.7.2 to 7.7.3 (0a337fc)

4.5.4

Bug Fixes

• deps: bump debug from 4.4.1 to 4.4.3 (922c216)

4.5.3

Bug Fixes

• parser: stdin compacting issue on multiline input (#1459) (#1460) (cc15549)

... (truncated)

Changelog

Sourced from @​oclif/core's changelog.

4.8.0 (2025-10-28)

Features

• show env in flag help (97c0bde)

4.7.2 (2025-10-23)

Bug Fixes

• retain description when hiding summary in help (#1493) (3647672)

4.7.1 (2025-10-23)

Bug Fixes

• warn about unparsed arguments (#1490) (5ad6bf0)

4.7.0 (2025-10-22)

Features

• support allowNo with alias (d6de26f)

4.6.0 (2025-10-20)

Features

• support the 'combinable' & 'only' flag relationships (#1487) (#1488) (d13b448)

4.5.6 (2025-10-15)

Bug Fixes

... (truncated)

Commits

• d19a7ae chore(release): 4.8.0 [skip ci]
• 48d250e Merge pull request #1492 from oclif/mdonnalley/show-env-in-help
• 8297b68 Merge pull request #1494 from oclif/dependabot-npm_and_yarn-oclif-plugin-plug...
• 1facb82 chore(dev-deps): bump @​oclif/plugin-plugins from 5.4.50 to 5.4.51
• a7b3b00 chore(release): 4.7.2 [skip ci]
• 3647672 fix: retain description when hiding summary in help (#1493)
• 405d65a chore(release): 4.7.1 [skip ci]
• 5ad6bf0 fix: warn about unparsed arguments (#1490)
• 11b8e75 chore(release): 4.7.0 [skip ci]
• 373edad Merge pull request #1491 from oclif/mdonnalley/allow-no-with-alias
• Additional commits viewable in compare view

Updates @salesforce/core from 8.6.4 to 8.26.2

Release notes

Sourced from @​salesforce/core's releases.

8.26.2

Bug Fixes

• package.json & yarn.lock to reduce vulnerabilities (01e5af1)

8.26.1

Bug Fixes

• remove if-statement case-sensitive (f1b5d8a)
• update the schema to accept lowercase (3701782)
• validate all schema before merge (3a6a170)

8.26.0

Bug Fixes

• logger redacts jwt tokens @​W-20036916@ (6dd27ab)

Features

• added JWT validation logic @​W-20036916@ (66100a6)
• existing code now expects opaque tokense explicitly @​W-20036916@ (f7a2ed4)
• feedback on JWT validation @​W-20036916@ (ea6dd1a)
• fixed JWT redaction @​W-20036916@ (fc0934c)
• jwt detection regex strictened @​W-20036916@ (fb739c9)
• jwt redaction fixed further @​W-20036916@ (496fa99)
• jwt validation rejects expired tokens @​W-20036916@ (e6c72ae)
• laxed validation rules for JWT token @​W-20036916@ (f6214c8)
• rerunning CI (8faa184)

8.25.1

Bug Fixes

• correctly handles empty deploy-cache.json file @​W-19727166@ (#1260) (4f9768b)

8.25.0

Features

• add scratch feature to schema (a1dc7ef)

8.24.3

Bug Fixes

• bump jsforce-node (#1256) (12f9396)

8.24.2

Bug Fixes

• avoid unnecessary config writes and add a test (ab3ee5d)

... (truncated)

Changelog

Sourced from @​salesforce/core's changelog.

8.26.2 (2026-02-17)

Bug Fixes

• package.json & yarn.lock to reduce vulnerabilities (01e5af1)

8.26.1 (2026-02-17)

Bug Fixes

• remove if-statement case-sensitive (f1b5d8a)
• update the schema to accept lowercase (3701782)
• validate all schema before merge (3a6a170)

8.26.0 (2026-02-11)

Bug Fixes

• logger redacts jwt tokens @​W-20036916@ (6dd27ab)

Features

• added JWT validation logic @​W-20036916@ (66100a6)
• existing code now expects opaque tokense explicitly @​W-20036916@ (f7a2ed4)
• feedback on JWT validation @​W-20036916@ (ea6dd1a)
• fixed JWT redaction @​W-20036916@ (fc0934c)
• jwt detection regex strictened @​W-20036916@ (fb739c9)
• jwt redaction fixed further @​W-20036916@ (496fa99)
• jwt validation rejects expired tokens @​W-20036916@ (e6c72ae)
• laxed validation rules for JWT token @​W-20036916@ (f6214c8)
• rerunning CI (8faa184)

8.25.1 (2026-02-02)

Bug Fixes

• correctly handles empty deploy-cache.json file @​W-19727166@ (#1260) (4f9768b)

... (truncated)

Commits

• f6a8a88 chore(release): 8.26.2 [skip ci]
• e576ff2 Merge pull request #1263 from forcedotcom/snyk-fix-e2c7b90a377a1699f87768ec28...
• 43e691e chore(release): 8.26.1 [skip ci]
• 8bcee3a Merge pull request #1261 from forcedotcom/sl/W-20495771
• 3701782 fix: update the schema to accept lowercase
• 01e5af1 fix: package.json & yarn.lock to reduce vulnerabilities
• c42d3a5 chore: update features and settings from docs [no ci]
• 2ab8c47 chore(release): 8.26.0 [skip ci]
• 313b4a3 Merge pull request #1258 from forcedotcom/jf/W-20036916
• 6db1e98 chore: remove unused prop from AuthFields (#1262)
• Additional commits viewable in compare view

Updates @salesforce/sf-plugins-core from 12.0.11 to 12.2.6

Release notes

Sourced from @​salesforce/sf-plugins-core's releases.

12.2.6

Bug Fixes

• deps: bump @​inquirer/confirm from 3.1.22 to 3.2.0 (b9e2fcf)

12.2.5

Bug Fixes

• bump @​oclif/table to 0.5.0 (#690) (e836c92)

12.2.4

Bug Fixes

• bump deps (22387c3)

12.2.3

Bug Fixes

• update to latest sfdx-core (cacc018)

12.2.2

Bug Fixes

• pretty-print MULTIPLE_API_ERROR data (#677) (5d193cf), closes #680

12.2.1

Bug Fixes

• update libs (174d277)

12.2.0

Features

• add a preview state for commands (00d2d8a)

12.1.4

Bug Fixes

• bump oclif/table (a0930bb)

12.1.3

Bug Fixes

• deps: bump @​oclif/core from 4.0.34 to 4.2.4 (e08c708)

12.1.2

Bug Fixes

• bump oclif table (c42c7d8)

... (truncated)

Changelog

Sourced from @​salesforce/sf-plugins-core's changelog.

12.2.6 (2025-11-26)

Bug Fixes

• deps: bump @​inquirer/confirm from 3.1.22 to 3.2.0 (b9e2fcf)

12.2.5 (2025-10-23)

Bug Fixes

• bump @​oclif/table to 0.5.0 (#690) (e836c92)

12.2.4 (2025-08-06)

Bug Fixes

• bump deps (22387c3)

12.2.3 (2025-06-25)

Bug Fixes

• update to latest sfdx-core (cacc018)

12.2.2 (2025-05-14)

Bug Fixes

• pretty-print MULTIPLE_API_ERROR data (#677) (5d193cf), closes #680

12.2.1 (2025-03-17)

Bug Fixes

... (truncated)

Commits

• 5a4f73b chore(release): 12.2.6 [skip ci]
• 215067f Merge pull request #629 from salesforcecli/dependabot-npm_and_yarn-inquirer-c...
• 419ab32 Upload required file(s) for compliance
• d53151f Upload required file(s) for compliance
• e1c07b8 chore(release): 12.2.5 [skip ci]
• e836c92 fix: bump @​oclif/table to 0.5.0 (#690)
• eeb4a2b Merge pull request #688 from salesforcecli/devScripts2025-09-07
• 0365a90 chore: updates from devScripts
• 80250f3 chore(release): 12.2.4 [skip ci]
• ec32618 Merge pull request #685 from salesforcecli/wr/bumpDeps
• Additional commits viewable in compare view

Updates @oclif/plugin-command-snapshot from 5.1.9 to 5.3.9

Release notes

Sourced from @​oclif/plugin-command-snapshot's releases.

5.3.9

Bug Fixes

• deps: bump semver from 7.7.3 to 7.7.4 (#939) (63156a8)

5.3.8

Bug Fixes

• deps: bump @​oclif/core from 4.5.6 to 4.7.2 (#895) (432c0f8)

5.3.7

Bug Fixes

• deps: bump semver from 7.7.2 to 7.7.3 (#888) (d99927a)

5.3.6

Bug Fixes

• deps: bump @​oclif/core from 4.5.2 to 4.5.3 (#873) (8829503)

5.3.5

Bug Fixes

• deps: bump @​oclif/core from 4.5.1 to 4.5.2 (#847) (bb34655)

5.3.4

Bug Fixes

• deps: bump @​oclif/core from 4.4.1 to 4.5.0 (#836) (c140bba)

5.3.3

Bug Fixes

• deps: bump @​oclif/core from 4.4.0 to 4.4.1 (#834) (64773d5)

5.3.2

Bug Fixes

• deps: bump @​oclif/core from 4.3.2 to 4.3.3 (#819) (bb449fc)

5.3.1

Bug Fixes

• deps: bump @​oclif/core from 4.3.0 to 4.3.2 (#815) (ca0d6e5)

5.3.0

Features

• expose a bin script (70eef57)

... (truncated)

Changelog

Sourced from @​oclif/plugin-command-snapshot's changelog.

5.3.9 (2026-02-08)

Bug Fixes

• deps: bump semver from 7.7.3 to 7.7.4 (#939) (63156a8)

5.3.8 (2025-10-25)

Bug Fixes

• deps: bump @​oclif/core from 4.5.6 to 4.7.2 (#895) (432c0f8)

5.3.7 (2025-10-12)

Bug Fixes

• deps: bump semver from 7.7.2 to 7.7.3 (#888) (d99927a)

5.3.6 (2025-09-13)

Bug Fixes

• deps: bump @​oclif/core from 4.5.2 to 4.5.3 (#873) (8829503)

5.3.5 (2025-07-26)

Bug Fixes

• deps: bump @​oclif/core from 4.5.1 to 4.5.2 (#847) (bb34655)

5.3.4 (2025-07-13)

Bug Fixes

• deps: bump @​oclif/core from 4.4.1 to 4.5.0 (#836) (c140bba)

5.3.3 (2025-07-05)

Bug Fixes

• deps: bump @​oclif/core from 4.4.0 to 4.4.1 (#834) (64773d5)

5.3.2 (2025-06-14)

Bug Fixes

• deps: bump @​oclif/core from 4.3.2 to 4.3.3 (#819) (bb449fc)

5.3.1 (2025-06-07)

... (truncated)

Commits

• 47c6be9 chore(release): 5.3.9 [skip ci]
• 63156a8 fix(deps): bump semver from 7.7.3 to 7.7.4 (#939)
• ffd072f chore(dev-deps): bump oclif from 4.22.70 to 4.22.73 (#940)
• 4b52759 chore(dev-deps): bump eslint-config-oclif from 6.0.135 to 6.0.137 (#941)
• 51c6bb0 chore(dev-deps): bump eslint-config-oclif from 6.0.133 to 6.0.135 (#937)
• fdbc0ec chore(dev-deps): bump oclif from 4.22.68 to 4.22.70 (#938)
• b93f9f2 chore(dev-deps): bump oclif from 4.22.65 to 4.22.68 (#932)
• 223dcab chore(dev-deps): bump prettier from 3.8.0 to 3.8.1 (#933)
• 9b89241 chore(dev-deps): bump @​oclif/test from 4.1.15 to 4.1.16 (#934)
• 5823fb1 chore(dev-deps): bump @​oclif/plugin-help from 6.2.36 to 6.2.37 (#935)
• Additional commits viewable in compare view

Updates @salesforce/cli-plugins-testkit from 5.3.10 to 5.3.41

Release notes

Sourced from @​salesforce/cli-plugins-testkit's releases.

5.3.41

Bug Fixes

• remove temp dep (760d7c7)

5.3.41-dev.0 (2025-09-05)

Bug Fixes

• string-width dev dep (201f868)

5.3.41-dev.0

Bug Fixes

• string-width dev dep (201f868)

5.3.40-dev.0 (2025-09-04)

Bug Fixes

• string-width resolution (ebdb40b)

5.3.40-dev.0

Bug Fixes

• string-width resolution (ebdb40b)

5.3.39

Bug Fixes

• deps: bump debug from 4.3.7 to 4.4.0 (6bd0dc0)

5.3.38

Bug Fixes

• deps: bump cross-spawn from 7.0.3 to 7.0.5 (2164e9b)

5.3.37

Bug Fixes

• deps: bump @​salesforce/core from 8.6.4 to 8.8.0 (2656152)

5.3.36

Bug Fixes

• deps: bump @​salesforce/core from 8.6.3 to 8.6.4 (3c03599)

... (truncated)

Changelog

Sourced from @​salesforce/cli-plugins-testkit's changelog.

5.3.41 (2025-09-05)

Bug Fixes

• remove temp dep (760d7c7)

5.3.41-dev.0 (2025-09-05)

Bug Fixes

• string-width dev dep (201f868)

5.3.40 (2025-09-04)

5.3.40-dev.0 (2025-09-04)

Bug Fixes

• string-width resolution (ebdb40b)

5.3.39 (2024-12-07)

Bug Fixes

• deps: bump debug from 4.3.7 to 4.4.0 (6bd0dc0)

5.3.38 (2024-11-17)

Bug Fixes

• deps: bump cross-spawn from 7.0.3 to 7.0.5 (2164e9b)

5.3.37 (2024-11-16)

... (truncated)

Commits

• af134d6 chore(release): 5.3.41 [skip ci]
• 7f38ce0 Merge pull request #729 from salesforcecli/ew/string-width
• 760d7c7 fix: remove temp dep
• 258a0c7 chore(release): 5.3.41-dev.0 [skip ci]
• 201f868 fix: string-width dev dep
• 72095a8 chore(release): 5.3.40 [skip ci]
• 4013284 Merge pull request #728 from salesforcecli/ew/string-width-resolution
• 7197e10 chore(release): 5.3.40-dev.0 [skip ci]
• ebdb40b fix: string-width resolution
• 5762d54 Merge pull request #727 from salesforcecli/devScripts2025-06-01
• Additional commits viewable in compare view

Updates oclif from 4.14.0 to 4.22.79

Release notes

Sourced from oclif's releases.

4.22.79

Bug Fixes

• deps: bump @​aws-sdk/client-s3 from 3.985.0 to 3.990.0 (44867e5)

4.22.78

Bug Fixes

• deps: bump @​aws-sdk/client-cloudfront from 3.985.0 to 3.990.0 (f23366c)

4.22.77

Bug Fixes

• deps: bump @​aws-sdk/client-cloudfront from 3.980.0 to 3.985.0 (a696fc6)

4.22.76

Bug Fixes

• deps: bump semver from 7.7.3 to 7.7.4 (37a4d24)

4.22.75

Bug Fixes

• deps: bump @​aws-sdk/client-s3 from 3.980.0 to 3.985.0 (b78c657)

4.22.74

Bug Fixes

• deps: bump @​oclif/plugin-help from 6.2.36 to 6.2.37 (e1d3aae)

4.22.73

Bug Fixes

• deps: bump @​oclif/plugin-not-found from 3.2.73 to 3.2.74 (3a5cbe3)

4.22.72

Bug Fixes

• deps: bump @​aws-sdk/client-s3 from 3.975.0 to 3.980.0 (38c168a)

4.22.71

Bug Fixes

• deps: bump @​aws-sdk/client-cloudfront from 3.971.0 to 3.980.0 (cd05550)

4.22.70

Bug Fixes

• deps: bump @​oclif/plugin-warn-if-update-available (952de14)

... (truncated)

Changelog

Sourced from oclif's changelog.

4.22.79 (2026-02-15)

Bug Fixes

• deps: bump @​aws-sdk/client-s3 from 3.985.0 to 3.990.0 (44867e5)

4.22.78 (2026-02-15)

Bug Fixes

• deps: bump @​aws-sdk/client-cloudfront from 3.985.0 to 3.990.0 (f23366c)

4.22.77 (2026-02-08)

Bug Fixes

• deps: bump @​aws-sdk/client-cloudfront from 3.980.0 to 3.985.0 (a696fc6)

4.22.76 (2026-02-08)

Bug Fixes

• deps: bump semver from 7.7.3 to 7.7.4 (37a4d24)

4.22.75 (2026-02-08)

Bug Fixes

• deps: bump @​aws-sdk/client-s3 from 3.980.0 to 3.985.0 (b78c657)

4.22.74 (2026-02-08)

Bug Fixes

• deps: bump @​oclif/plugin-help from 6.2.36 to 6.2.37 (e1d3aae)

4.22.73 (2026-02-01)

Bug Fixes

• deps: bump @​oclif/plugin-not-found from 3.2.73 to 3.2.74 (3a5cbe3)

4.22.72 (2026-02-01)

Bug Fixes

• deps: bump @​aws-sdk/client-s3 from 3.975.0 to 3.980.0 (38c168a)

4.22.71 (2026-02-01)

... (truncated)

Commits

• f1398b3 chore(release): 4.22.79 [skip ci]
• f7f01a0 Merge pull request #1975 from oclif/dependabot-npm_and_yarn-aws-sdk-client-s3...
• 44867e5 fix(deps): bump @​aws-sdk/client-s3 from 3.985.0 to 3.990.0
• c277a8f chore(release): 4.22.78 [skip ci]
• e56e25e Merge pull request #1976 from oclif/dependabot-npm_and_yarn-aws-sdk-client-cl...
• 78bc000 Merge pull request #1977 from oclif/dependabot-npm_and_yarn-oclif-plugin-lega...
• 4194385 chore(dev-deps): bump @​oclif/plugin-legacy from 2.0.27 to 2.0.28
• f23366c fix(deps): bump @​aws-sdk/client-cloudfront from 3.985.0 to 3.990.0
• 51c1e89 Merge pull request #1970 from oclif/dependabot-npm_and_yarn-eslint-config-ocl...
• 2e2c0ad chore(release): 4.22.77 [skip ci]
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions