Skip to content

fix(deps): update npm - - package.json#1379

Open
renovate[bot] wants to merge 1 commit intomainfrom
renovate/manager
Open

fix(deps): update npm - - package.json#1379
renovate[bot] wants to merge 1 commit intomainfrom
renovate/manager

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate bot commented Feb 3, 2026
edited
Loading

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package Change Age Confidence Type Update Pending
@aws-sdk/credential-providers (source) ^3.980.0^3.1016.0 age confidence dependencies minor 3.1019.0 (+2)
@babel/core (source) ^7.28.6^7.29.0 age confidence devDependencies patch
@esbuild/darwin-arm64 ^0.27.2^0.27.4 age confidence optionalDependencies patch
@esbuild/darwin-x64 ^0.27.2^0.27.4 age confidence optionalDependencies patch
@esbuild/linux-x64 0.27.20.27.4 age confidence optionalDependencies patch
@esbuild/win32-x64 0.27.20.27.4 age confidence optionalDependencies patch
@eslint/compat (source) ^2.0.2^2.0.3 age confidence devDependencies patch
@eslint/js (source) ^9.39.2^9.39.4 age confidence devDependencies patch
@eslint/json ^1.0.1^1.2.0 age confidence devDependencies minor
@fontsource/roboto (source) ^5.2.9^5.2.10 age confidence dependencies patch
@primer/octicons-react (source) ^19.21.2^19.23.1 age confidence dependencies minor
@types/lodash (source) ^4.17.23^4.17.24 age confidence devDependencies patch
@types/node (source) ^22.19.7^22.19.15 age confidence devDependencies patch
@vitejs/plugin-react (source) ^5.1.2^5.2.0 age confidence devDependencies minor
axios (source) ^1.13.4^1.13.6 age confidence dependencies patch 1.14.0
cypress (source) ^15.9.0^15.13.0 age confidence devDependencies minor
eslint (source) ^9.39.2^9.39.4 age confidence devDependencies patch
eslint-plugin-cypress ^5.2.1^5.3.0 age confidence devDependencies patch
express-rate-limit ^8.2.1^8.3.1 age confidence dependencies patch
fast-check (source) ^4.5.3^4.6.0 age confidence devDependencies minor
isomorphic-git (source) ^1.36.3^1.37.4 age confidence dependencies minor
lint-staged ^16.2.7^16.4.0 age confidence devDependencies minor
mongo 606f8e0f2b4085 digest
node 5a593d7bb20cf7 final digest
node 5a593d7bb20cf7 stage digest
openid-client ^6.8.1^6.8.2 age confidence dependencies patch
simple-git (source) ^3.30.0^3.33.0 age confidence dependencies patch
typescript-eslint (source) ^8.54.0^8.57.2 age confidence devDependencies minor

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

aws/aws-sdk-js-v3 (@​aws-sdk/credential-providers)

v3.1016.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1015.0

Compare Source

3.1015.0(2026-03-23)
Chores
New Features
  • client-lightsail: Add support for tagging of ContactMethod resource type (9e5c87c6)
  • client-batch: AWS Batch AMI Visibility feature support. Adds read-only batchImageStatus to Ec2Configuration to provide visibility on the status of Batch-vended AMIs used by Compute Environments. (a1eace0c)
  • client-connectcases: You can now use the UpdateRelatedItem API to update the content of comments and custom related items associated with a case. (ca3fcd61)
  • client-omics: Adds support for batch workflow runs in Amazon Omics, enabling users to submit, manage, and monitor multiple runs as a single batch. Includes APIs to create, cancel, and delete batches, track submission statuses and counts, list runs within a batch, and configure default settings. (5dd6fe2f)
Bug Fixes
  • core/protocols: use composite error registry for error handling, revert default error message to "UnknownError" (#​7877) (55f77269)

For list of updated packages, view updated-packages.md in assets-3.1015.0.zip

v3.1014.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1013.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1012.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1011.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1010.0

Compare Source

3.1010.0(2026-03-16)
New Features
  • clients: update client endpoints as of 2026-03-16 (6ae1dd8a)
  • client-ecs: Amazon ECS now supports configuring whether tags are propagated to the EC2 Instance Metadata Service (IMDS) for instances launched by the Managed Instances capacity provider. This gives customers control over tag visibility in IMDS when using ECS Managed Instances. (f165f183)
  • client-bedrock-agentcore-control: Supporting hosting of public ECR Container Images in AgentCore Runtime (a3ca4b6e)
  • client-bedrock: You can now generate policy scenarios on demand using the new GENERATE POLICY SCENARIOS build workflow type. Scenarios will no longer be automatically generated during INGEST CONTENT, REFINE POLICY, and IMPORT POLICY workflows, resulting in faster completion times for these operations. (e9c8b9ce)
  • client-bedrock-agentcore: Provide support to perform deterministic operations on agent runtime through shell command executions via the new InvokeAgentRuntimeCommand API (14fb5577)
  • middleware-flexible-checksums: allow custom checksums to be used in responses (#​7849) (213defa2)
Tests

For list of updated packages, view updated-packages.md in assets-3.1010.0.zip

v3.1009.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1008.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1007.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1006.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1005.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1004.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1003.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1002.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1001.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1000.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.999.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.998.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.997.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.996.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.995.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.994.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.993.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

evanw/esbuild (@​esbuild/darwin-arm64)

v0.27.4

Compare Source

  • Fix a regression with CSS media queries (#​4395, #​4405, #​4406)

    Version 0.25.11 of esbuild introduced support for parsing media queries. This unintentionally introduced a regression with printing media queries that use the <media-type> and <media-condition-without-or> grammar. Specifically, esbuild was failing to wrap an or clause with parentheses when inside <media-condition-without-or>. This release fixes the regression.

    Here is an example:

    /* Original code */
@&#8203;media only screen and ((min-width: 10px) or (min-height: 10px)) {
  a { color: red }
}

/* Old output (incorrect) */
@&#8203;media only screen and (min-width: 10px) or (min-height: 10px) {
  a {
    color: red;
  }
}

/* New output (correct) */
@&#8203;media only screen and ((min-width: 10px) or (min-height: 10px)) {
  a {
    color: red;
  }
}

  • Fix an edge case with the inject feature (#​4407)

    This release fixes an edge case where esbuild's inject feature could not be used with arbitrary module namespace names exported using an export {} from statement with bundling disabled and a target environment where arbitrary module namespace names is unsupported.

    With the fix, the following inject file:

    import jquery from 'jquery';
export { jquery as 'window.jQuery' };

    Can now always be rewritten as this without esbuild sometimes incorrectly generating an error:

    export { default as 'window.jQuery' } from 'jquery';

  • Attempt to improve API handling of huge metafiles (#​4329, #​4415)

    This release contains a few changes that attempt to improve the behavior of esbuild's JavaScript API with huge metafiles (esbuild's name for the build metadata, formatted as a JSON object). The JavaScript API is designed to return the metafile JSON as a JavaScript object in memory, which makes it easy to access from within a JavaScript-based plugin. Multiple people have encountered issues where this API breaks down with a pathologically-large metafile.

    The primary issue is that V8 has an implementation-specific maximum string length, so using the JSON.parse API with large enough strings is impossible. This release will now attempt to use a fallback JavaScript-based JSON parser that operates directly on the UTF8-encoded JSON bytes instead of using JSON.parse when the JSON metafile is too big to fit in a JavaScript string. The new fallback path has not yet been heavily-tested. The metafile will also now be generated with whitespace removed if the bundle is significantly large, which will reduce the size of the metafile JSON slightly.

    However, hitting this case is potentially a sign that something else is wrong. Ideally you wouldn't be building something so enormous that the build metadata can't even fit inside a JavaScript string. You may want to consider optimizing your project, or breaking up your project into multiple parts that are built independently. Another option could potentially be to use esbuild's command-line API instead of its JavaScript API, which is more efficient (although of course then you can't use JavaScript plugins, so it may not be an option).

v0.27.3

Compare Source

  • Preserve URL fragments in data URLs (#​4370)

    Consider the following HTML, CSS, and SVG:

    • index.html:

      <!DOCTYPE html>
<html>
  <head><link rel="stylesheet" href="icons.css"></head>
  <body><div class="triangle"></div></body>
</html>

    • icons.css:

      .triangle {
  width: 10px;
  height: 10px;
  background: currentColor;
  clip-path: url(./triangle.svg#x);
}

    • triangle.svg:

      <svg xmlns="http://www.w3.org/2000/svg">
  <defs>
    <clipPath id="x">
      <path d="M0 0H10V10Z"/>
    </clipPath>
  </defs>
</svg>

    The CSS uses a URL fragment (the #x) to reference the clipPath element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the dataurl loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:

    /* icons.css */
.triangle {
  width: 10px;
  height: 10px;
  background: currentColor;
  clip-path: url('data:image/svg+xml,<svg xmlns="http://www.w3.org/2000/svg"><defs><clipPath id="x"><path d="M0 0H10V10Z"/></clipPath></defs></svg>#x');
}

  • Parse and print CSS @scope rules (#​4322)

    This release includes dedicated support for parsing @scope rules in CSS. These rules include optional "start" and "end" selector lists. One important consequence of this is that the local/global status of names in selector lists is now respected, which improves the correctness of esbuild's support for CSS modules. Minification of selectors inside @scope rules has also improved slightly.

    Here's an example:

    /* Original code */
@&#8203;scope (:global(.foo)) to (:local(.bar)) {
  .bar {
    color: red;
  }
}

/* Old output (with --loader=local-css --minify) */
@&#8203;scope (:global(.foo)) to (:local(.bar)){.o{color:red}}

/* New output (with --loader=local-css --minify) */
@&#8203;scope(.foo)to (.o){.o{color:red}}

  • Fix a minification bug with lowering of for await (#​4378, #​4385)

    This release fixes a bug where the minifier would incorrectly strip the variable in the automatically-generated catch clause of lowered for await loops. The code that generated the loop previously failed to mark the internal variable references as used.

  • Update the Go compiler from v1.25.5 to v1.25.7 (#​4383, #​4388)

    This PR was contributed by @​MikeWillCook.

eslint/rewrite (@​eslint/compat)

v2.0.3

Compare Source

Dependencies
  • The following workspace dependencies were updated
eslint/eslint (@​eslint/js)

v9.39.4

Compare Source

v9.39.3

Compare Source

Bug Fixes

  • 791bf8d fix: restore TypeScript 4.0 compatibility in types (#​20504) (sethamus)

Chores

eslint/json (@​eslint/json)

v1.2.0

Compare Source

Features

v1.1.0

Compare Source

Features
Bug Fixes
fontsource/font-files (@​fontsource/roboto)

v5.2.10

Compare Source

primer/octicons (@​primer/octicons-react)

v19.23.1

Compare Source

Patch Changes

v19.23.0

Compare Source

Minor Changes

v19.22.1

Compare Source

Patch Changes

v19.22.0

Compare Source

Minor Changes
vitejs/vite-plugin-react (@​vitejs/plugin-react)

v5.2.0

Compare Source

v5.1.4

Compare Source

Fix canSkipBabel not accounting for babel.overrides (#​1098)

When configuring babel.overrides without top-level plugins or presets, Babel was incorrectly skipped. The canSkipBabel function now checks for overrides.length to ensure override configurations are processed.

cypress-io/cypress (cypress)

v15.13.0

Compare Source

v15.12.0

Compare Source

v15.11.0

Compare Source

Changelog: https://docs.cypress.io/app/references/changelog#15-11-0

v15.10.0

Compare Source

Changelog: https://docs.cypress.io/app/references/changelog#15-10-0

eslint/eslint (eslint)

v9.39.4

Compare Source

Bug Fixes

Documentation

Chores

v9.39.3

Compare Source

Bug Fixes

  • 791bf8d fix: restore TypeScript 4.0 compatibility in types (#​20504) (sethamus)

Chores

dubzzz/fast-check (fast-check)

v4.6.0

Compare Source

Better stringMatching with maxLength
[Code][Diff]

Features

  • (PR#6599) Add basic maxLength support to stringMatching
  • (PR#6600) Better clamp on regexes when maxLength on stringMatching
  • (PR#6687) Deprecate Random::next(n) and Random::nextInt()

Fixes

  • (PR#6502) Bug: Bad d.ts import in BuildInversedRelationsMapping
  • (PR#6578) Bug: Don't crash when stringifying detached ArrayBuffers
  • (PR#6700) Bug: Fix object unmapper and depth computation for special keys
  • (PR#6432) CI: Move all dependencies to dev on examples/
  • (PR#6443) CI: Migrate to Docusaurus v4 configuration format
  • (PR#6456) CI: Enable persist-credentials in add-contributor workflow
  • (PR#6501) CI: Bump module in tsconfig to node18
  • (PR#6548) CI: Fix zizmor ignore config line numbers
  • (PR#6554) CI: Drop tests against Node 20
  • (PR#6563) CI: Fix check_publish status to be success on no error
  • (PR#6565) CI: Add create release workflow
  • (PR#6610) CI: Rework pnpm configuration
  • (PR#6619) CI: Add PR template enforcement workflow
  • (PR#6622) CI: Skip Netlify doc publish on PRs
  • (PR#6625) CI: Run PR template check without approval
  • (PR#6623) CI: Skip PR template check for Renovate bot
  • (PR#6638) CI: Bundle fast-check using rolldown
  • (PR#6662) CI: Rework configuration of examples
  • (PR#6683) CI: Add Claude Code GitHub Action workflow
  • (PR#6684) CI: Add configuration for pre and post tool Claude hooks
  • (PR#6690) CI: Refine GH Action triggering CLAUDE
  • (PR#6693) CI: Configure another Claude model
  • (PR#6703) CI: Add top-level permissions: {} to workflows missing it
  • (PR#6704) CI: Refactor Claude workflow custom instructions configuration
  • (PR#6705) CI: Add SessionStart hook to ensure dependencies are installed
  • (PR#6597) Clean: Drop runkit file
  • (PR#6640) Clean: Drop unused "tsd" in package.json
  • (PR#6441) Doc: Release note for 4.5.0
  • (PR#6442) Doc: Replace generic blog tags with feature-specific taxonomy
  • (PR#6458) Doc: Add adamni21 as doc contributor
  • (PR#6496) Doc: Refine npm keywords
  • (PR#6514) Doc: Skill for JavaScript testing expert
  • (PR#6516) Doc: Add note to avoid overusing filter and fc.pre
  • (PR#6517) Doc: Update testing skill to recommend mimicking existing test structure
  • (PR#6523) Doc: Add PR template requirement to Copilot instructions
  • (PR#6522) Doc: Add note on complementary testing approaches
  • (PR#6524) Doc: Add snapshot vs screenshot guidance
  • (PR#6527) Doc: Push to install missing tooling
  • (PR#6530) Doc: Clearer guidelines for constraints of arbs in skill
  • (PR#6526) Doc: Add AI-powered testing documentation
  • (PR#6529) Doc: Add testing-library and browser testing part in skill
  • (PR#6528) Doc: Add bigint type preference for integer computations in skill
  • (PR#6531) Doc: Add TDD fashion thinking in skill
  • (PR#6553) Doc: Add josephjunker as doc contributor
  • (PR#6561) Doc: Add page on "What is property-based testing" and modify "Why property-based testing"
  • (PR#6605) Doc: Drop Snyk link on Readme
  • (PR#6603) Doc: Update CONTRIBUTING.md for AI
  • (PR#6572) Doc: Rework issue templates
  • (PR#6613) Doc: Update PR template
  • (PR#6634) Doc: Rework bug-report template
  • (PR#6635) Doc: Rework regression-report template
  • (PR#6652) Doc: Update Readme to point to npmx
  • (PR#6659) Doc: Update home to link to npmx
  • (PR#6696) Doc: Add rushelex as code contributor
  • (PR#6448) Performance: Optimize RunDetailsFormatter array allocations
  • (PR#5718) Performance: Import less from pure-rand
  • (PR#6679) Performance: Bump pure-rand to v8
  • (PR#6446) Performance: Replace loose equality by strict one
  • (PR#6444) Performance: Slightly faster code for RunExecution
  • (PR#6437) Refactor: Replace fileURLToPath patterns with import.meta.*
  • (PR#6567) Refactor: Remove ErrorWithCause, use Error directly
  • (PR#6621) Refactor: Replace glob package with native Node.js fs.glob
  • (PR#6675) Refactor: Drop @​rollup/plugin-replace for rolldown builtin
  • (PR#6550) Security: Fix zizmor template-injection findings
  • (PR#6472) Test: Provide cause when doc generation fails
  • (PR#6381) Test: Migrate test-types to vitest
  • (PR#6507) Test: Filter ESM-only packages from CommonJS mode checks
  • (PR#6453) Typo: Fix typo for dictionary arbitrary constraint maxKeys
  • (PR#6552) Typo: Replace flatMap with chain in error message
isomorphic-git/isomorphic-git (isomorphic-git)

v1.37.4

Compare Source

Bug Fixes

v1.37.3

Compare Source

Bug Fixes
  • support git worktrees in discoverGitdir (absolute gitdir paths) (#​2293) (b55bd5f)

v1.37.2

Compare Source

Bug Fixes

v1.37.1

Compare Source

Bug Fixes

v1.37.0

Compare Source

Features
lint-staged/lint-staged (lint-staged)

v16.4.0

Compare Source

Minor Changes

v16.3.4

Compare Source

Patch Changes

v16.3.3

Compare Source

Patch Changes
  • #​1740 0109e8d Thanks @​iiroj! - Make sure Git's warning about CRLF line-endings doesn't interfere with creating initial backup stash.

v16.3.2

Compare Source

Patch Changes

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@netlify
Copy link
Copy Markdown

netlify bot commented Feb 3, 2026
edited
Loading

Deploy Preview for endearing-brigadeiros-63f9d0 canceled.

Name Link
🔨 Latest commit d25cbcb
🔍 Latest deploy log https://app.netlify.com/projects/endearing-brigadeiros-63f9d0/deploys/69c6facef8b5c10008a4d5b8

@github-actions
Copy link
Copy Markdown

github-actions bot commented Feb 3, 2026
edited
Loading

Dependency Review

The following issues were found:

  • ✅ 0 vulnerable package(s)
  • ❌ 1 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 15 package(s) with unknown licenses.

View full job summary

@codecov
Copy link
Copy Markdown

codecov bot commented Feb 3, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 89.66%. Comparing base (4e2eea8) to head (d25cbcb).

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #1379   +/-   ##
=======================================
  Coverage   89.66%   89.66%           
=======================================
  Files          68       68           
  Lines        4869     4869           
  Branches      888      888           
=======================================
  Hits         4366     4366           
  Misses        485      485           
  Partials       18       18

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@renovate renovate bot force-pushed the renovate/manager branch 3 times, most recently from 25d5918 to 9eba341 Compare February 5, 2026 21:30
@renovate renovate bot changed the title chore(deps): update npm - - package.json fix(deps): update npm - - package.json Feb 5, 2026
@renovate renovate bot force-pushed the renovate/manager branch 20 times, most recently from 9bfc238 to b3c86b6 Compare February 12, 2026 19:07
@renovate renovate bot force-pushed the renovate/manager branch 12 times, most recently from 7b9e42a to 736d606 Compare February 24, 2026 13:51
@renovate renovate bot force-pushed the renovate/manager branch 17 times, most recently from 03860bd to 6a806b6 Compare February 28, 2026 21:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

fix maintenance

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants