dependabot[bot]
2ab9b341df
chore(deps-dev): Bump postcss from 8.5.10 to 8.5.11 ( #1844 )
...
Bumps [postcss](https://github.com/postcss/postcss ) from 8.5.10 to
8.5.11.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/postcss/postcss/releases ">postcss's
releases</a>.</em></p>
<blockquote>
<h2>8.5.11</h2>
<ul>
<li>Fixed nested brackets parsing performance (by <a
href="https://github.com/offset "><code>@offset</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md ">postcss's
changelog</a>.</em></p>
<blockquote>
<h2>8.5.11</h2>
<ul>
<li>Fixed nested brackets parsing performance (by <a
href="https://github.com/offset "><code>@offset</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2502f750305ca190194942b5337dd77e36e153d08ec62b157bhttps://github.com/postcss/postcss/compare/8.5.10...8.5.11 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-29 13:52:39 +00:00
dependabot[bot]
5c4b3f205a
chore(deps): Bump i18next from 26.0.7 to 26.0.8 ( #1842 )
...
Bumps [i18next](https://github.com/i18next/i18next ) from 26.0.7 to
26.0.8.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/releases ">i18next's
releases</a>.</em></p>
<blockquote>
<h2>v26.0.8</h2>
<ul>
<li>fix(types): restore the pre-v25.10.4 <code>ExistsFunction</code>
shape so plain arrow functions can again be assigned to
<code>ExistsFunction</code>-typed variables (TypeScript cannot infer
type predicates through multi-overload assignment). Direct
<code>i18next.exists(key)</code> calls still narrow <code>key</code> to
<code>SelectorKey</code> — the predicate is now declared inline on
<code>i18n.exists</code>. Custom wrappers that want the narrowing can
type themselves as <code>typeof i18next.exists</code> <a
href="https://redirect.github.com/i18next/i18next/issues/2425 ">2425</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md ">i18next's
changelog</a>.</em></p>
<blockquote>
<h2>26.0.8</h2>
<ul>
<li>fix(types): restore the pre-v25.10.4 <code>ExistsFunction</code>
shape so plain arrow functions can again be assigned to
<code>ExistsFunction</code>-typed variables (TypeScript cannot infer
type predicates through multi-overload assignment). Direct
<code>i18next.exists(key)</code> calls still narrow <code>key</code> to
<code>SelectorKey</code> — the predicate is now declared inline on
<code>i18n.exists</code>. Custom wrappers that want the narrowing can
type themselves as <code>typeof i18next.exists</code> <a
href="https://redirect.github.com/i18next/i18next/issues/2425 ">2425</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3ea438f8415176bbd7a110b48c61939fdd99a9199ee7da174d8ce5e268dee802567c9chttps://github.com/i18next/i18next/compare/v26.0.7...v26.0.8 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-28 13:51:41 +00:00
dependabot[bot]
c19dcccac4
chore(deps-dev): Bump cypress from 15.14.0 to 15.14.1 ( #1839 )
...
Bumps [cypress](https://github.com/cypress-io/cypress ) from 15.14.0 to
15.14.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6e050ec537https://redirect.github.com/cypress-io/cypress/issues/33636 ">#33636</a>)</li>
<li><a
href="3bd5575388https://redirect.github.com/cypress-io/cypress/issues/33627 ">#33627</a>)</li>
<li><a
href="23a4875c4dhttps://redirect.github.com/cypress-io/cypress/issues/33610 ">#33610</a>)</li>
<li><a
href="c0b3929368af3cdf568ahttps://redirect.github.com/cypress-io/cypress/issues/33624 ">#33624</a>)</li>
<li><a
href="7a7477397ahttps://redirect.github.com/cypress-io/cypress/issues/33625 ">#33625</a>)</li>
<li><a
href="f652605d31https://redirect.github.com/cypress-io/cypress/issues/33487 ">#33487</a>)</li>
<li><a
href="593c22eab0ddc05e5562https://redirect.github.com/cypress-io/cypress/issues/33617 ">#33617</a>)</li>
<li><a
href="e5f0b32deehttps://redirect.github.com/cypress-io/cypress/issues/33603 ">#33603</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/cypress-io/cypress/compare/v15.14.0...v15.14.1 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-27 17:14:17 +00:00
dependabot[bot]
56555f1d03
chore(deps): Bump i18next from 26.0.6 to 26.0.7 ( #1841 )
...
Bumps [i18next](https://github.com/i18next/i18next ) from 26.0.6 to
26.0.7.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md ">i18next's
changelog</a>.</em></p>
<blockquote>
<h2>26.0.7</h2>
<ul>
<li>fix: when a plural lookup misses, the <code>missingKey</code> debug
log now shows the actual plural-resolved key (e.g.
<code>foo.bar_many</code> for Polish <code>count: 14</code>) instead of
the base key — making it obvious which plural category was expected and
missing <a
href="https://redirect.github.com/i18next/i18next/issues/2423 ">2423</a></li>
<li>chore: drop <code>@babel/runtime</code> runtime dependency. The
build no longer generates any <code>@babel/runtime</code> imports, so
the package is unused by consumers. Rollup now uses <code>babelHelpers:
'bundled'</code> so any helpers that are ever needed in the future will
be inlined rather than imported externally <a
href="https://redirect.github.com/i18next/i18next/issues/2424 ">2424</a></li>
<li>chore: stop emitting <code>dist/esm/i18next.bundled.js</code>. It
was byte-identical to <code>dist/esm/i18next.js</code> because no
helpers were being imported <a
href="https://redirect.github.com/i18next/i18next/issues/2424 ">2424</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ce06fba2a5ca333775378abe4e66ce073eb1068aa3dfb180d8https://github.com/i18next/i18next/compare/v26.0.6...v26.0.7 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-27 17:13:56 +00:00
dependabot[bot]
8922298b5e
chore(deps): Bump maplibre-gl from 5.23.0 to 5.24.0 ( #1840 )
...
Bumps [maplibre-gl](https://github.com/maplibre/maplibre-gl-js ) from
5.23.0 to 5.24.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/maplibre/maplibre-gl-js/blob/main/CHANGELOG.md ">maplibre-gl's
changelog</a>.</em></p>
<blockquote>
<h2>5.24.0</h2>
<h3>✨ Features and improvements</h3>
<ul>
<li>GPU performance optimization: Render halo and glyph in a single pass
(-40% Time Reduction) (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7436 ">#7436</a>)
(by <a
href="https://github.com/xavierjs "><code>@xavierjs</code></a>)</li>
<li>Optimize matrix inversions and reduce GPU stalls (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7367 ">#7367</a>)
(by <a
href="https://github.com/xavierjs "><code>@xavierjs</code></a>)</li>
<li>Add example showing how to measure map performance using built-in
events (<code>load</code>, <code>idle</code>, <code>render</code>) (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7077 ">#7077</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
</ul>
<h3>🐞 Bug fixes</h3>
<ul>
<li>Fix <code>Popup</code> not updating its position when switching
between terrain/globe projections (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7468 ">#7468</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Skip fog computation when fog opacity is zero (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7476 ">#7476</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="fd31bd8596https://redirect.github.com/maplibre/maplibre-gl-js/issues/7509 ">#7509</a>)</li>
<li><a
href="859e6fa2c6https://redirect.github.com/maplibre/maplibre-gl-js/issues/7508 ">#7508</a>)</li>
<li><a
href="1401f2db49https://redirect.github.com/maplibre/maplibre-gl-js/issues/7507 ">#7507</a>)</li>
<li><a
href="57f77d34behttps://redirect.github.com/maplibre/maplibre-gl-js/issues/7506 ">#7506</a>)</li>
<li><a
href="1d3c3f4564https://redirect.github.com/maplibre/maplibre-gl-js/issues/7505 ">#7505</a>)</li>
<li><a
href="b30f01171chttps://redirect.github.com/maplibre/maplibre-gl-js/issues/7503 ">#7503</a>)</li>
<li><a
href="d1614ef5dahttps://redirect.github.com/maplibre/maplibre-gl-js/issues/7504 ">#7504</a>)</li>
<li><a
href="d44f14b4c3https://redirect.github.com/maplibre/maplibre-gl-js/issues/7502 ">#7502</a>)</li>
<li><a
href="018c3a089e38f6798244https://redirect.github.com/maplibre/maplibre-gl-js/issues/7497 ">#7497</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/maplibre/maplibre-gl-js/compare/v5.23.0...v5.24.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-27 17:13:35 +00:00
dependabot[bot]
2033c8170b
chore(deps-dev): Bump stylelint from 17.8.0 to 17.9.0 ( #1836 )
...
Bumps [stylelint](https://github.com/stylelint/stylelint ) from 17.8.0 to
17.9.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md ">stylelint's
changelog</a>.</em></p>
<blockquote>
<h2>17.9.0 - 2026-04-23</h2>
<p>It adds 3 new features. Adding the <code>referenceFiles</code>
property to your configuration object makes the
<code>no-unknown-animations</code>, <code>no-unknown-custom-media</code>
and <code>no-unknown-custom-properties</code> rules more useful.</p>
<ul>
<li>Added: experimental <code>referenceFiles</code> to configuration
object (<a
href="https://redirect.github.com/stylelint/stylelint/pull/9179 ">#9179</a>)
(<a href="https://github.com/jeddy3 "><code>@jeddy3</code></a>).</li>
<li>Added: experimental <code>abortSignal</code> option to Node.js API
for cancellation support (<a
href="https://redirect.github.com/stylelint/stylelint/pull/9213 ">#9213</a>)
(<a
href="https://github.com/adalinesimonian "><code>@adalinesimonian</code></a>).</li>
<li>Added: <code>maxWarnings</code> to configuration object (<a
href="https://redirect.github.com/stylelint/stylelint/pull/9181 ">#9181</a>)
(<a
href="https://github.com/mrginglymus "><code>@mrginglymus</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cee404b451https://redirect.github.com/stylelint/stylelint/issues/9242 ">#9242</a>)</li>
<li><a
href="b0af5aed12https://redirect.github.com/stylelint/stylelint/issues/9240 ">#9240</a>)</li>
<li><a
href="e2c2c43d87https://redirect.github.com/stylelint/stylelint/issues/9239 ">#9239</a>)</li>
<li><a
href="68d008ec825ad7ffb8dchttps://redirect.github.com/stylelint/stylelint/issues/9237 ">#9237</a>)</li>
<li><a
href="f16ef5e19ehttps://redirect.github.com/stylelint/stylelint/issues/9235 ">#9235</a>)</li>
<li><a
href="a0b3c5ac0ahttps://redirect.github.com/stylelint/stylelint/issues/9236 ">#9236</a>)</li>
<li><a
href="fb2efecb58https://redirect.github.com/stylelint/stylelint/issues/9213 ">#9213</a>)</li>
<li><a
href="84f2c6b751https://redirect.github.com/stylelint/stylelint/issues/9218 ">#9218</a>)</li>
<li><a
href="5b45245bf1https://redirect.github.com/stylelint/stylelint/issues/9181 ">#9181</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/stylelint/stylelint/compare/17.8.0...17.9.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-27 17:12:23 +00:00
dependabot[bot]
b5081325e6
chore(deps-dev): Bump the vitest group with 2 updates ( #1833 )
...
Bumps the vitest group with 2 updates:
[@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8 )
and
[vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest ).
Updates `@vitest/coverage-v8` from 4.1.4 to 4.1.5
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/vitest-dev/vitest/releases "><code>@vitest/coverage-v8</code>'s
releases</a>.</em></p>
<blockquote>
<h2>v4.1.5</h2>
<h3> 🚀 Experimental Features</h3>
<ul>
<li><strong>coverage</strong>: Istanbul to support
<code>instrumenter</code> option - by <a
href="https://github.com/BartWaardenburg "><code>@BartWaardenburg</code></a>
and <a
href="https://github.com/AriPerkkio "><code>@AriPerkkio</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10119 ">vitest-dev/vitest#10119</a>
<a href="https://github.com/vitest-dev/vitest/commit/0e0ff41c7 "><!-- raw
HTML omitted -->(0e0ff)<!-- raw HTML omitted --></a></li>
</ul>
<h3> 🐞 Bug Fixes</h3>
<ul>
<li>--project negation excludes browser instances - by <a
href="https://github.com/felamaslen "><code>@felamaslen</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10131 ">vitest-dev/vitest#10131</a>
<a href="https://github.com/vitest-dev/vitest/commit/9423dc084 "><!-- raw
HTML omitted -->(9423d)<!-- raw HTML omitted --></a></li>
<li>Project color label on html reporter - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10142 ">vitest-dev/vitest#10142</a>
<a href="https://github.com/vitest-dev/vitest/commit/596f73986 "><!-- raw
HTML omitted -->(596f7)<!-- raw HTML omitted --></a></li>
<li>Fix <code>vi.defineHelper</code> called as object method - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10163 ">vitest-dev/vitest#10163</a>
<a href="https://github.com/vitest-dev/vitest/commit/122c25b5b "><!-- raw
HTML omitted -->(122c2)<!-- raw HTML omitted --></a></li>
<li>Alias <code>agent</code> reporter to <code>minimal</code> - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10157 ">vitest-dev/vitest#10157</a>
<a href="https://github.com/vitest-dev/vitest/commit/663b99fe3 "><!-- raw
HTML omitted -->(663b9)<!-- raw HTML omitted --></a></li>
<li>Respect diff config options in soft assertions - by <a
href="https://github.com/Copilot "><code>@Copilot</code></a>,
<strong>sheremet-va</strong> and <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/8696 ">vitest-dev/vitest#8696</a>
<a href="https://github.com/vitest-dev/vitest/commit/9787dedad "><!-- raw
HTML omitted -->(9787d)<!-- raw HTML omitted --></a></li>
<li>Respect diff config options in soft assertions " - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/8696 ">vitest-dev/vitest#8696</a>
<a href="https://github.com/vitest-dev/vitest/commit/7dc6d54fd "><!-- raw
HTML omitted -->(7dc6d)<!-- raw HTML omitted --></a></li>
<li><strong>ast-collect</strong>: Recognize _<em>vi_import</em> prefix
in static test discovery - by <a
href="https://github.com/Yejneshwar "><code>@Yejneshwar</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10129 ">vitest-dev/vitest#10129</a>
<a href="https://github.com/vitest-dev/vitest/commit/325463ab2 "><!-- raw
HTML omitted -->(32546)<!-- raw HTML omitted --></a></li>
<li><strong>coverage</strong>: Descriptive error message when reports
directory is removed during test run - by <a
href="https://github.com/DaveT1991 "><code>@DaveT1991</code></a> and <a
href="https://github.com/AriPerkkio "><code>@AriPerkkio</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10117 ">vitest-dev/vitest#10117</a>
<a href="https://github.com/vitest-dev/vitest/commit/1413382e1 "><!-- raw
HTML omitted -->(14133)<!-- raw HTML omitted --></a></li>
<li><strong>snapshot</strong>: Increase default snapshot max output
length - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10150 ">vitest-dev/vitest#10150</a>
<a href="https://github.com/vitest-dev/vitest/commit/21e66ff63 "><!-- raw
HTML omitted -->(21e66)<!-- raw HTML omitted --></a></li>
<li><strong>ui</strong>: Fix jsx/tsx syntax highlight - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10152 ">vitest-dev/vitest#10152</a>
<a href="https://github.com/vitest-dev/vitest/commit/f1b1f6c7b "><!-- raw
HTML omitted -->(f1b1f)<!-- raw HTML omitted --></a></li>
<li><strong>web-worker</strong>: Support MessagePort objects referenced
inside postMessage data - by <a
href="https://github.com/whitphx "><code>@whitphx</code></a> and
<strong>Claude Opus 4.6 (1M context)</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9927 ">vitest-dev/vitest#9927</a>
and <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10124 ">vitest-dev/vitest#10124</a>
<a href="https://github.com/vitest-dev/vitest/commit/7ad7d39af "><!-- raw
HTML omitted -->(7ad7d)<!-- raw HTML omitted --></a></li>
<li><strong>api</strong>: Make test-specification options writable -
by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10154 ">vitest-dev/vitest#10154</a>
<a href="https://github.com/vitest-dev/vitest/commit/6abd557b7 "><!-- raw
HTML omitted -->(6abd5)<!-- raw HTML omitted --></a></li>
</ul>
<h5> <a
href="https://github.com/vitest-dev/vitest/compare/v4.1.4...v4.1.5 ">View
changes on GitHub</a></h5>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e399846850https://github.com/vitest-dev/vitest/commits/v4.1.5/packages/coverage-v8 ">compare
view</a></li>
</ul>
</details>
<br />
Updates `vitest` from 4.1.4 to 4.1.5
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/vitest-dev/vitest/releases ">vitest's
releases</a>.</em></p>
<blockquote>
<h2>v4.1.5</h2>
<h3> 🚀 Experimental Features</h3>
<ul>
<li><strong>coverage</strong>: Istanbul to support
<code>instrumenter</code> option - by <a
href="https://github.com/BartWaardenburg "><code>@BartWaardenburg</code></a>
and <a
href="https://github.com/AriPerkkio "><code>@AriPerkkio</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10119 ">vitest-dev/vitest#10119</a>
<a href="https://github.com/vitest-dev/vitest/commit/0e0ff41c7 "><!-- raw
HTML omitted -->(0e0ff)<!-- raw HTML omitted --></a></li>
</ul>
<h3> 🐞 Bug Fixes</h3>
<ul>
<li>--project negation excludes browser instances - by <a
href="https://github.com/felamaslen "><code>@felamaslen</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10131 ">vitest-dev/vitest#10131</a>
<a href="https://github.com/vitest-dev/vitest/commit/9423dc084 "><!-- raw
HTML omitted -->(9423d)<!-- raw HTML omitted --></a></li>
<li>Project color label on html reporter - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10142 ">vitest-dev/vitest#10142</a>
<a href="https://github.com/vitest-dev/vitest/commit/596f73986 "><!-- raw
HTML omitted -->(596f7)<!-- raw HTML omitted --></a></li>
<li>Fix <code>vi.defineHelper</code> called as object method - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10163 ">vitest-dev/vitest#10163</a>
<a href="https://github.com/vitest-dev/vitest/commit/122c25b5b "><!-- raw
HTML omitted -->(122c2)<!-- raw HTML omitted --></a></li>
<li>Alias <code>agent</code> reporter to <code>minimal</code> - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10157 ">vitest-dev/vitest#10157</a>
<a href="https://github.com/vitest-dev/vitest/commit/663b99fe3 "><!-- raw
HTML omitted -->(663b9)<!-- raw HTML omitted --></a></li>
<li>Respect diff config options in soft assertions - by <a
href="https://github.com/Copilot "><code>@Copilot</code></a>,
<strong>sheremet-va</strong> and <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/8696 ">vitest-dev/vitest#8696</a>
<a href="https://github.com/vitest-dev/vitest/commit/9787dedad "><!-- raw
HTML omitted -->(9787d)<!-- raw HTML omitted --></a></li>
<li>Respect diff config options in soft assertions " - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/8696 ">vitest-dev/vitest#8696</a>
<a href="https://github.com/vitest-dev/vitest/commit/7dc6d54fd "><!-- raw
HTML omitted -->(7dc6d)<!-- raw HTML omitted --></a></li>
<li><strong>ast-collect</strong>: Recognize _<em>vi_import</em> prefix
in static test discovery - by <a
href="https://github.com/Yejneshwar "><code>@Yejneshwar</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10129 ">vitest-dev/vitest#10129</a>
<a href="https://github.com/vitest-dev/vitest/commit/325463ab2 "><!-- raw
HTML omitted -->(32546)<!-- raw HTML omitted --></a></li>
<li><strong>coverage</strong>: Descriptive error message when reports
directory is removed during test run - by <a
href="https://github.com/DaveT1991 "><code>@DaveT1991</code></a> and <a
href="https://github.com/AriPerkkio "><code>@AriPerkkio</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10117 ">vitest-dev/vitest#10117</a>
<a href="https://github.com/vitest-dev/vitest/commit/1413382e1 "><!-- raw
HTML omitted -->(14133)<!-- raw HTML omitted --></a></li>
<li><strong>snapshot</strong>: Increase default snapshot max output
length - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10150 ">vitest-dev/vitest#10150</a>
<a href="https://github.com/vitest-dev/vitest/commit/21e66ff63 "><!-- raw
HTML omitted -->(21e66)<!-- raw HTML omitted --></a></li>
<li><strong>ui</strong>: Fix jsx/tsx syntax highlight - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10152 ">vitest-dev/vitest#10152</a>
<a href="https://github.com/vitest-dev/vitest/commit/f1b1f6c7b "><!-- raw
HTML omitted -->(f1b1f)<!-- raw HTML omitted --></a></li>
<li><strong>web-worker</strong>: Support MessagePort objects referenced
inside postMessage data - by <a
href="https://github.com/whitphx "><code>@whitphx</code></a> and
<strong>Claude Opus 4.6 (1M context)</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9927 ">vitest-dev/vitest#9927</a>
and <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10124 ">vitest-dev/vitest#10124</a>
<a href="https://github.com/vitest-dev/vitest/commit/7ad7d39af "><!-- raw
HTML omitted -->(7ad7d)<!-- raw HTML omitted --></a></li>
<li><strong>api</strong>: Make test-specification options writable -
by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10154 ">vitest-dev/vitest#10154</a>
<a href="https://github.com/vitest-dev/vitest/commit/6abd557b7 "><!-- raw
HTML omitted -->(6abd5)<!-- raw HTML omitted --></a></li>
</ul>
<h5> <a
href="https://github.com/vitest-dev/vitest/compare/v4.1.4...v4.1.5 ">View
changes on GitHub</a></h5>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e3998468507dc6d54fd9https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/8696 ">#8696</a>)"</li>
<li><a
href="9787dedadehttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/8696 ">#8696</a>)</li>
<li><a
href="325463ab29https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10 ">#10</a>...</li>
<li><a
href="0e0ff41c7ehttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10119 ">#10119</a>)</li>
<li><a
href="663b99fe3ehttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10157 ">#10157</a>)</li>
<li><a
href="122c25b5b1https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10163 ">#10163</a>)</li>
<li><a
href="6abd557b72https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10154 ">#10154</a>)</li>
<li><a
href="596f73986ahttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10142 ">#10142</a>)</li>
<li><a
href="9423dc0841https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10131 ">#10131</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/vitest-dev/vitest/commits/v4.1.5/packages/vitest ">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-24 13:52:30 +00:00
dependabot[bot]
36d39d675e
chore(deps-dev): Bump typescript-eslint from 8.58.2 to 8.59.0 ( #1835 )
...
Bumps
[typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint )
from 8.58.2 to 8.59.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/typescript-eslint/typescript-eslint/releases ">typescript-eslint's
releases</a>.</em></p>
<blockquote>
<h2>v8.59.0</h2>
<h2>8.59.0 (2026-04-20)</h2>
<h3>🚀 Features</h3>
<ul>
<li><strong>eslint-plugin:</strong> [no-unnecessary-type-assertion]
report more cases based on assignability (<a
href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11789 ">#11789</a>)</li>
</ul>
<h3>❤️ Thank You</h3>
<ul>
<li>Ulrich Stark</li>
</ul>
<p>See <a
href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.0 ">GitHub
Releases</a> for more information.</p>
<p>You can read about our <a
href="https://typescript-eslint.io/users/versioning ">versioning
strategy</a> and <a
href="https://typescript-eslint.io/users/releases ">releases</a> on our
website.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md ">typescript-eslint's
changelog</a>.</em></p>
<blockquote>
<h2>8.59.0 (2026-04-20)</h2>
<p>This was a version bump only for typescript-eslint to align it with
other projects, there were no code changes.</p>
<p>See <a
href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.0 ">GitHub
Releases</a> for more information.</p>
<p>You can read about our <a
href="https://typescript-eslint.io/users/versioning ">versioning
strategy</a> and <a
href="https://typescript-eslint.io/users/releases ">releases</a> on our
website.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ea9ae4f881https://github.com/typescript-eslint/typescript-eslint/commits/v8.59.0/packages/typescript-eslint ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-24 13:52:17 +00:00
dependabot[bot]
fe8681bbac
chore(deps-dev): Bump uuid from 13.0.0 to 14.0.0 ( #1832 )
...
Bumps [uuid](https://github.com/uuidjs/uuid ) from 13.0.0 to 14.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/uuidjs/uuid/releases ">uuid's
releases</a>.</em></p>
<blockquote>
<h2>v14.0.0</h2>
<h2><a
href="https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0 ">14.0.0</a>
(2026-04-19)</h2>
<h3>⚠ BREAKING CHANGES</h3>
<ul>
<li>expect <code>crypto</code> to be global everywhere (requires
node@20+) (<a
href="https://redirect.github.com/uuidjs/uuid/issues/935 ">#935</a>)</li>
<li>drop node@18 support (<a
href="https://redirect.github.com/uuidjs/uuid/issues/934 ">#934</a>)</li>
</ul>
<h3>Features</h3>
<ul>
<li>drop node@18 support (<a
href="https://redirect.github.com/uuidjs/uuid/issues/934 ">#934</a>) (<a
href="dc4ddb8727https://redirect.github.com/uuidjs/uuid/issues/935 ">#935</a>) (<a
href="f2c235f930https://redirect.github.com/uuidjs/uuid/issues/925 ">#925</a>) (<a
href="ffa31383e8https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md ">uuid's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0 ">14.0.0</a>
(2026-04-19)</h2>
<h3>Security</h3>
<ul>
<li>Fixes <a
href="https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq ">GHSA-w5hq-g745-h8pq</a>:
<code>v3()</code>, <code>v5()</code>, and <code>v6()</code> did not
validate that writes would remain within the bounds of a caller-supplied
buffer, allowing out-of-bounds writes when an invalid
<code>offset</code> was provided. A <code>RangeError</code> is now
thrown if <code>offset < 0</code> or <code>offset + 16 >
buf.length</code>.</li>
</ul>
<h3>⚠ BREAKING CHANGES</h3>
<ul>
<li><code>crypto</code> is now expected to be globally defined (requires
node@20+) (<a
href="https://redirect.github.com/uuidjs/uuid/issues/935 ">#935</a>)</li>
<li>drop node@18 support (<a
href="https://redirect.github.com/uuidjs/uuid/issues/934 ">#934</a>)</li>
<li>upgrade minimum supported TypeScript version to 5.4.3, in keeping
with the project's policy of supporting TypeScript versions released
within the last two years</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7c1ea087a8https://redirect.github.com/uuidjs/uuid/issues/926 ">#926</a>)</li>
<li><a
href="3d2c5b0342f2c235f930https://redirect.github.com/uuidjs/uuid/issues/935 ">#935</a>)</li>
<li><a
href="529ef0899fhttps://redirect.github.com/uuidjs/uuid/issues/927 ">#927</a>)</li>
<li><a
href="086fd7976fhttps://redirect.github.com/uuidjs/uuid/issues/933 ">#933</a>)</li>
<li><a
href="dc4ddb8727https://redirect.github.com/uuidjs/uuid/issues/934 ">#934</a>)</li>
<li><a
href="0f1f9c9c9chttps://redirect.github.com/uuidjs/uuid/issues/932 ">#932</a>)</li>
<li><a
href="e2879e64bfhttps://redirect.github.com/uuidjs/uuid/issues/930 ">#930</a>)</li>
<li><a
href="ffa31383e8https://redirect.github.com/uuidjs/uuid/issues/925 ">#925</a>)</li>
<li><a
href="0423d49df2https://redirect.github.com/uuidjs/uuid/issues/915 ">#915</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0 ">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~GitHub%20Actions ">GitHub Actions</a>, a new
releaser for uuid since your current version.</p>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/maplibre/maputnik/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-23 02:02:19 +00:00
dependabot[bot]
105a970eb1
chore(deps): Bump i18next from 26.0.5 to 26.0.6 ( #1831 )
...
Bumps [i18next](https://github.com/i18next/i18next ) from 26.0.5 to
26.0.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/releases ">i18next's
releases</a>.</em></p>
<blockquote>
<h2>v26.0.6</h2>
<p>Security release — all issues found via an internal audit. GHSA
advisory filed after release.</p>
<ul>
<li>security: warn when a translation string combines <code>escapeValue:
false</code> with interpolated variables inside a <code>$t(key, { ...
"{{var}}" ... })</code> nesting-options block. In that narrow
combination, attacker-controlled string values containing
<code>"</code> can break out of the JSON options literal and inject
additional nesting options (e.g. redirect
<code>lng</code>/<code>ns</code>). The default <code>escapeValue:
true</code> configuration is unaffected because HTML-escaping
neutralises the quote before <code>JSON.parse</code>. See the security
docs for mitigation guidance (GHSA-TBD)</li>
<li>security: apply <code>regexEscape</code> to
<code>unescapePrefix</code> / <code>unescapeSuffix</code> on par with
the other interpolation delimiters. Prevents ReDoS
(catastrophic-backtracking) when a misconfigured delimiter contains
regex metacharacters, and fixes silent breakage of the <code>{{-
var}}</code> syntax when the delimiter contains characters like
<code>(</code>, <code>[</code>, <code>.</code></li>
<li>security: strip CR/LF/NUL and other C0/C1 control characters from
string log arguments to prevent log forging via user-controlled
translation keys, language codes, namespaces, or interpolation variable
names (CWE-117)</li>
<li>chore: ignore <code>.env*</code> and
<code>*.pem</code>/<code>*.key</code> files in
<code>.gitignore</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md ">i18next's
changelog</a>.</em></p>
<blockquote>
<h2>26.0.6</h2>
<p>Security release — all issues found via an internal audit.</p>
<ul>
<li>security: warn when a translation string combines <code>escapeValue:
false</code> with interpolated variables inside a <code>$t(key, { ...
"{{var}}" ... })</code> nesting-options block. In that narrow
combination, attacker-controlled string values containing
<code>"</code> can break out of the JSON options literal and inject
additional nesting options (e.g. redirect
<code>lng</code>/<code>ns</code>). The default <code>escapeValue:
true</code> configuration is unaffected because HTML-escaping
neutralises the quote before <code>JSON.parse</code>. See the <a
href="https://www.i18next.com/translation-function/nesting#security-note-interpolated-values-inside-a-nesting-options-block ">security
note in the Nesting docs</a> for the full pattern and mitigations</li>
<li>security: apply <code>regexEscape</code> to
<code>unescapePrefix</code> / <code>unescapeSuffix</code> on par with
the other interpolation delimiters. Prevents ReDoS
(catastrophic-backtracking) when a misconfigured delimiter contains
regex metacharacters, and fixes silent breakage of the <code>{{-
var}}</code> syntax when the delimiter contains characters like
<code>(</code>, <code>[</code>, <code>.</code></li>
<li>security: strip CR/LF/NUL and other C0/C1 control characters from
string log arguments to prevent log forging via user-controlled
translation keys, language codes, namespaces, or interpolation variable
names (CWE-117)</li>
<li>chore: ignore <code>.env*</code> and
<code>*.pem</code>/<code>*.key</code> files in
<code>.gitignore</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9d0ed9f98e8c825644370cb018c363https://github.com/i18next/i18next/compare/v26.0.5...v26.0.6 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-22 14:00:51 +00:00
dependabot[bot]
8cbff8cc38
chore(deps): Bump dependabot/fetch-metadata from 3.0.0 to 3.1.0 ( #1830 )
...
Bumps
[dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata )
from 3.0.0 to 3.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dependabot/fetch-metadata/releases ">dependabot/fetch-metadata's
releases</a>.</em></p>
<blockquote>
<h2>v3.1.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Add permissions to all workflows by <a
href="https://github.com/truggeri "><code>@truggeri</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/687 ">dependabot/fetch-metadata#687</a></li>
<li>build(deps-dev): bump globals from 16.0.0 to 17.4.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/690 ">dependabot/fetch-metadata#690</a></li>
<li>build(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/693 ">dependabot/fetch-metadata#693</a></li>
<li>build(deps-dev): bump <code>@hono/node-server</code> from 1.19.10
to 1.19.13 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/694 ">dependabot/fetch-metadata#694</a></li>
<li>build(deps-dev): bump hono from 4.12.7 to 4.12.12 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/695 ">dependabot/fetch-metadata#695</a></li>
<li>Dynamically update the tracking tag in action by <a
href="https://github.com/truggeri "><code>@truggeri</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/696 ">dependabot/fetch-metadata#696</a></li>
<li>fix: handle duplicate dependency names in parseMetadataLinks by <a
href="https://github.com/devantler "><code>@devantler</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/700 ">dependabot/fetch-metadata#700</a></li>
<li>fix: remove $ anchor from updateFragment regex to handle pip
directory suffixes by <a
href="https://github.com/devantler "><code>@devantler</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/698 ">dependabot/fetch-metadata#698</a></li>
<li>Updates to README for permissions clarification by <a
href="https://github.com/truggeri "><code>@truggeri</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/697 ">dependabot/fetch-metadata#697</a></li>
<li>fix: resolve update-type null for Python, Composer, and Terraform
PRs by <a
href="https://github.com/vitorsdcs "><code>@vitorsdcs</code></a> in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/704 ">dependabot/fetch-metadata#704</a></li>
<li>build(deps-dev): bump globals from 17.4.0 to 17.5.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/703 ">dependabot/fetch-metadata#703</a></li>
<li>build(deps): bump actions/create-github-app-token from 3.0.0 to
3.1.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/701 ">dependabot/fetch-metadata#701</a></li>
<li>build(deps): bump <code>@actions/github</code> from 9.0.0 to 9.1.0
in the dependencies group across 1 directory by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/702 ">dependabot/fetch-metadata#702</a></li>
<li>build(deps-dev): bump hono from 4.12.12 to 4.12.14 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/705 ">dependabot/fetch-metadata#705</a></li>
<li>v3.1.0 by <a
href="https://github.com/fetch-metadata-action-automation "><code>@fetch-metadata-action-automation</code></a>[bot]
in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/692 ">dependabot/fetch-metadata#692</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/devantler "><code>@devantler</code></a>
made their first contribution in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/700 ">dependabot/fetch-metadata#700</a></li>
<li><a href="https://github.com/vitorsdcs "><code>@vitorsdcs</code></a>
made their first contribution in <a
href="https://redirect.github.com/dependabot/fetch-metadata/pull/704 ">dependabot/fetch-metadata#704</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0 ">https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="25dd0e34f4https://redirect.github.com/dependabot/fetch-metadata/issues/692 ">#692</a>)</li>
<li><a
href="e073f50d73https://redirect.github.com/dependabot/fetch-metadata/issues/705 ">#705</a>
from dependabot/dependabot/npm_and_yarn/hono-4.12.14</li>
<li><a
href="0670e167df7a7fe10a42https://redirect.github.com/dependabot/fetch-metadata/issues/702 ">#702</a>
from dependabot/dependabot/npm_and_yarn/dependencies-...</li>
<li><a
href="5168191cea23882e175b1072469591https://redirect.github.com/dependabot/fetch-metadata/issues/701 ">#701</a>
from dependabot/dependabot/github_actions/actions/cre...</li>
<li><a
href="43f8a0055cb4d904a509https://redirect.github.com/dependabot/fetch-metadata/issues/703 ">#703</a>
from dependabot/dependabot/npm_and_yarn/globals-17.5.0</li>
<li><a
href="c8046bb877ffa630c65f...25dd0e34f4https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=3.0.0&new-version=3.1.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-22 13:59:34 +00:00
dependabot[bot]
6f0213cb98
chore(deps): Bump @codemirror/view from 6.41.0 to 6.41.1 ( #1828 )
...
Bumps [@codemirror/view](https://github.com/codemirror/view ) from 6.41.0
to 6.41.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/codemirror/view/commits ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-22 13:59:07 +00:00
dependabot[bot]
58c99f2470
chore(deps-dev): Bump eslint-plugin-react-hooks from 7.1.0 to 7.1.1 ( #1827 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[eslint-plugin-react-hooks](https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks )
from 7.1.0 to 7.1.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/facebook/react/releases ">eslint-plugin-react-hooks's
releases</a>.</em></p>
<blockquote>
<h2>eslint-plugin-react-hooks@7.1.1 (April 17, 2026)</h2>
<p><strong>Note:</strong> 7.1.0 accidentally removed the
<code>component-hook-factories</code> rule, causing errors for users who
referenced it in their ESLint config. This is now fixed.</p>
<ul>
<li>Add deprecated no-op <code>component-hook-factories</code> rule for
backwards compatibility. (<a
href="https://github.com/mofeiZ "><code>@mofeiZ</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/36307 ">#36307</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/facebook/react/blob/main/packages/eslint-plugin-react-hooks/CHANGELOG.md ">eslint-plugin-react-hooks's
changelog</a>.</em></p>
<blockquote>
<h2>7.1.1</h2>
<p><strong>Note:</strong> 7.1.0 accidentally removed the
<code>component-hook-factories</code> rule, causing errors for users who
referenced it in their ESLint config. This is now fixed.</p>
<ul>
<li>Add deprecated no-op <code>component-hook-factories</code> rule for
backwards compatibility. (<a
href="https://github.com/mofeiZ "><code>@mofeiZ</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/36307 ">#36307</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d1727fbf98https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks/issues/36308 ">#36308</a>)</li>
<li><a
href="bc249804d3https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks/issues/36307 ">#36307</a>)</li>
<li>See full diff in <a
href="https://github.com/facebook/react/commits/eslint-plugin-react-hooks@7.1.1/packages/eslint-plugin-react-hooks ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-21 13:53:43 +00:00
dependabot[bot]
838045d221
chore(deps-dev): Bump typescript from 6.0.2 to 6.0.3 ( #1826 )
...
Bumps [typescript](https://github.com/microsoft/TypeScript ) from 6.0.2
to 6.0.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/microsoft/TypeScript/releases ">typescript's
releases</a>.</em></p>
<blockquote>
<h2>TypeScript 6.0.3</h2>
<p>For release notes, check out the <a
href="https://devblogs.microsoft.com/typescript/announcing-typescript-6-0/ ">release
announcement blog post</a>.</p>
<ul>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.0%22 ">fixed
issues query for TypeScript 6.0.0 (Beta)</a>.</li>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.1%22 ">fixed
issues query for TypeScript 6.0.1 (RC)</a>.</li>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.2%22 ">fixed
issues query for TypeScript 6.0.2 (Stable)</a>.</li>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.3%22 ">fixed
issues query for TypeScript 6.0.3 (Stable)</a>.</li>
</ul>
<p>Downloads are available on:</p>
<ul>
<li><a href="https://www.npmjs.com/package/typescript ">npm</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="050880ce59eeae9dd0f1🤖 Pick PR <a
href="https://redirect.github.com/microsoft/TypeScript/issues/63401 ">#63401</a>
(Also check package name validity in...) into release-6.0 (#...</li>
<li><a
href="ad1c695fad🤖 Pick PR <a
href="https://redirect.github.com/microsoft/TypeScript/issues/63368 ">#63368</a>
(Harden ATA package name filtering) into release-6.0 (<a
href="https://redirect.github.com/microsoft/TypeScript/issues/63372 ">#63372</a>)</li>
<li><a
href="0725fb4664🤖 Pick PR <a
href="https://redirect.github.com/microsoft/TypeScript/issues/63310 ">#63310</a>
(Mark class property initializers as...) into release-6.0 (#...</li>
<li>See full diff in <a
href="https://github.com/microsoft/TypeScript/compare/v6.0.2...v6.0.3 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-21 13:53:20 +00:00
dependabot[bot]
1a4dd49d50
chore(deps-dev): Bump eslint from 10.2.0 to 10.2.1 ( #1825 )
...
Bumps [eslint](https://github.com/eslint/eslint ) from 10.2.0 to 10.2.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/eslint/eslint/releases ">eslint's
releases</a>.</em></p>
<blockquote>
<h2>v10.2.1</h2>
<h2>Bug Fixes</h2>
<ul>
<li><a
href="14be92b6d1https://redirect.github.com/eslint/eslint/issues/20665 ">#20665</a>)
(sethamus)</li>
<li><a
href="84a19d2c32https://redirect.github.com/eslint/eslint/issues/20740 ">#20740</a>)
(xbinaryx)</li>
<li><a
href="af764af0echttps://redirect.github.com/eslint/eslint/issues/20729 ">#20729</a>)
(Pixel998)</li>
<li><a
href="e251b89a38https://redirect.github.com/eslint/eslint/issues/20715 ">#20715</a>)
(renovate[bot])</li>
</ul>
<h2>Documentation</h2>
<ul>
<li><a
href="ca92ca0fb4https://redirect.github.com/eslint/eslint/issues/20768 ">#20768</a>)
(Amaresh S M)</li>
<li><a
href="57d2ee2133https://redirect.github.com/eslint/eslint/issues/20767 ">#20767</a>)
(Amaresh S M)</li>
<li><a
href="c1621b9157https://redirect.github.com/eslint/eslint/issues/20700 ">#20700</a>)
(Ayush Shukla)</li>
<li><a
href="1418d522d139771e6e6071e04693dehttps://redirect.github.com/eslint/eslint/issues/20728 ">#20728</a>)
(kuldeep kumar)</li>
<li><a
href="22119ceb93https://redirect.github.com/eslint/eslint/issues/20723 ">#20723</a>)
(Amaresh S M)</li>
<li><a
href="8f3fb77f12https://redirect.github.com/eslint/eslint/issues/20718 ">#20718</a>)
(Pixel998)</li>
</ul>
<h2>Chores</h2>
<ul>
<li><a
href="7ddfea9c4fhttps://redirect.github.com/eslint/eslint/issues/20770 ">#20770</a>)
(renovate[bot])</li>
<li><a
href="fac40e1de2https://redirect.github.com/eslint/eslint/issues/20763 ">#20763</a>)
(dependabot[bot])</li>
<li><a
href="7246f92333https://redirect.github.com/eslint/eslint/issues/20734 ">#20734</a>)
(kuldeep kumar)</li>
<li><a
href="4f34b1e592https://redirect.github.com/eslint/eslint/issues/20762 ">#20762</a>)
(renovate[bot])</li>
<li><a
href="51080eb5c9https://redirect.github.com/eslint/eslint/issues/20731 ">#20731</a>)
(kuldeep kumar)</li>
<li><a
href="e7e1889fcahttps://redirect.github.com/eslint/eslint/issues/20727 ">#20727</a>)
(kuldeep kumar)</li>
<li><a
href="4e1a87cb8fhttps://redirect.github.com/eslint/eslint/issues/20722 ">#20722</a>)
(Pixel998)</li>
<li><a
href="066eabb364https://redirect.github.com/eslint/eslint/issues/20717 ">#20717</a>)
(Pixel998)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4d1d8f97373e33105b05ca92ca0fb4https://redirect.github.com/eslint/eslint/issues/20768 ">#20768</a>)</li>
<li><a
href="7ddfea9c4fhttps://redirect.github.com/eslint/eslint/issues/20770 ">#20770</a>)</li>
<li><a
href="57d2ee2133https://redirect.github.com/eslint/eslint/issues/20767 ">#20767</a>)</li>
<li><a
href="c1621b9157https://redirect.github.com/eslint/eslint/issues/20700 ">#20700</a>)</li>
<li><a
href="fac40e1de2https://redirect.github.com/eslint/eslint/issues/20763 ">#20763</a>)</li>
<li><a
href="7246f92333https://redirect.github.com/eslint/eslint/issues/20734 ">#20734</a>)</li>
<li><a
href="4f34b1e592https://redirect.github.com/eslint/eslint/issues/20762 ">#20762</a>)</li>
<li><a
href="1418d522d1https://github.com/eslint/eslint/compare/v10.2.0...v10.2.1 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-21 13:52:44 +00:00
dependabot[bot]
f277b20ab1
chore(deps-dev): Bump typescript from 5.9.3 to 6.0.2 ( #1762 )
...
Bumps [typescript](https://github.com/microsoft/TypeScript ) from 5.9.3
to 6.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/microsoft/TypeScript/releases ">typescript's
releases</a>.</em></p>
<blockquote>
<h2>TypeScript 6.0</h2>
<p>For release notes, check out the <a
href="https://devblogs.microsoft.com/typescript/announcing-typescript-6-0/ ">release
announcement blog post</a>.</p>
<ul>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.0%22 ">fixed
issues query for TypeScript 6.0.0 (Beta)</a>.</li>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.1%22 ">fixed
issues query for TypeScript 6.0.1 (RC)</a>.</li>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.2%22 ">fixed
issues query for TypeScript 6.0.2 (Stable)</a>.</li>
</ul>
<p>Downloads are available on:</p>
<ul>
<li><a href="https://www.npmjs.com/package/typescript ">npm</a></li>
</ul>
<h2>TypeScript 6.0 Beta</h2>
<p>For release notes, check out the <a
href="https://devblogs.microsoft.com/typescript/announcing-typescript-6-0-beta/ ">release
announcement</a>.</p>
<ul>
<li><a
href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=milestone%3A%22TypeScript+6.0.0%22+is%3Aclosed+ ">fixed
issues query for Typescript 6.0.0 (Beta)</a>.</li>
</ul>
<p>Downloads are available on:</p>
<ul>
<li><a href="https://www.npmjs.com/package/typescript ">npm</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="607a22a90d9e72ab71b5🤖 Pick PR <a
href="https://redirect.github.com/microsoft/TypeScript/issues/63239 ">#63239</a>
(Fix missing lib files in reused pro...) into release-6.0 (#...</li>
<li><a
href="35ff23d4b0🤖 Pick PR <a
href="https://redirect.github.com/microsoft/TypeScript/issues/63163 ">#63163</a>
(Port anyFunctionType subtype fix an...) into release-6.0 (#...</li>
<li><a
href="e175b69138af4caac0e98efd7e8544206ed1a00fhttps://redirect.github.com/microsoft/TypeScript/issues/63172 ">#63172</a>)</li>
<li><a
href="e688ac8bc3https://redirect.github.com/microsoft/TypeScript/issues/63156 ">#63156</a>)</li>
<li><a
href="29b300deb5https://redirect.github.com/microsoft/TypeScript/issues/63205 ">#63205</a>)</li>
<li><a
href="0c2c7a3582https://redirect.github.com/microsoft/TypeScript/issues/63183 ">#63183</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/microsoft/TypeScript/compare/v5.9.3...v6.0.2 ">compare
view</a></li>
</ul>
</details>
<br />
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:30:36 +00:00
dependabot[bot]
d2e26655bb
chore(deps-dev): Bump stylelint from 17.7.0 to 17.8.0 ( #1821 )
...
Bumps [stylelint](https://github.com/stylelint/stylelint ) from 17.7.0 to
17.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/stylelint/stylelint/releases ">stylelint's
releases</a>.</em></p>
<blockquote>
<h2>17.8.0</h2>
<p>It adds 3 new rules and 1 configuration property.</p>
<ul>
<li>Added: <code>languageOptions.directionality</code> configuration
property (<a
href="https://redirect.github.com/stylelint/stylelint/issues/8687 ">#8687</a>)
(<a
href="https://github.com/sw1tch3roo "><code>@sw1tch3roo</code></a>).</li>
<li>Added: <code>property-layout-mappings</code> rule (<a
href="https://redirect.github.com/stylelint/stylelint/issues/8687 ">#8687</a>)
(<a
href="https://github.com/sw1tch3roo "><code>@sw1tch3roo</code></a>).</li>
<li>Added: <code>relative-selector-nesting-notation</code> rule (<a
href="https://redirect.github.com/stylelint/stylelint/issues/8730 ">#8730</a>)
(<a
href="https://github.com/sw1tch3roo "><code>@sw1tch3roo</code></a>).</li>
<li>Added: <code>selector-no-deprecated</code> rule (<a
href="https://redirect.github.com/stylelint/stylelint/issues/8694 ">#8694</a>)
(<a href="https://github.com/immitsu "><code>@immitsu</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md ">stylelint's
changelog</a>.</em></p>
<blockquote>
<h2>17.8.0 - 2026-04-15</h2>
<p>It adds 3 new rules and 1 configuration property.</p>
<ul>
<li>Added: <code>languageOptions.directionality</code> configuration
property (<a
href="https://redirect.github.com/stylelint/stylelint/pull/8687 ">#8687</a>)
(<a
href="https://github.com/sw1tch3roo "><code>@sw1tch3roo</code></a>).</li>
<li>Added: <code>property-layout-mappings</code> rule (<a
href="https://redirect.github.com/stylelint/stylelint/pull/8687 ">#8687</a>)
(<a
href="https://github.com/sw1tch3roo "><code>@sw1tch3roo</code></a>).</li>
<li>Added: <code>relative-selector-nesting-notation</code> rule (<a
href="https://redirect.github.com/stylelint/stylelint/pull/8730 ">#8730</a>)
(<a
href="https://github.com/sw1tch3roo "><code>@sw1tch3roo</code></a>).</li>
<li>Added: <code>selector-no-deprecated</code> rule (<a
href="https://redirect.github.com/stylelint/stylelint/pull/8694 ">#8694</a>)
(<a href="https://github.com/immitsu "><code>@immitsu</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b329c6fb0ehttps://redirect.github.com/stylelint/stylelint/issues/9217 ">#9217</a>)</li>
<li><a
href="e9a4877f6ahttps://redirect.github.com/stylelint/stylelint/issues/9216 ">#9216</a>)</li>
<li><a
href="0dc0d02659https://redirect.github.com/stylelint/stylelint/issues/9215 ">#9215</a>)</li>
<li><a
href="4978eaf6f9https://redirect.github.com/stylelint/stylelint/issues/9211 ">#9211</a>)</li>
<li><a
href="9ca941ed5ehttps://redirect.github.com/stylelint/stylelint/issues/8730 ">#8730</a>)</li>
<li><a
href="06807ce456https://redirect.github.com/stylelint/stylelint/issues/8694 ">#8694</a>)</li>
<li><a
href="16a6090344https://redirect.github.com/stylelint/stylelint/issues/8687 ">#8687</a>)</li>
<li>See full diff in <a
href="https://github.com/stylelint/stylelint/compare/17.7.0...17.8.0 ">compare
view</a></li>
</ul>
</details>
<br />
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:21:00 +00:00
dependabot[bot]
1e94c1f6d9
chore(deps): Bump ol-mapbox-style from 13.4.0 to 13.4.1 ( #1819 )
...
Bumps [ol-mapbox-style](https://github.com/openlayers/ol-mapbox-style )
from 13.4.0 to 13.4.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/openlayers/ol-mapbox-style/releases ">ol-mapbox-style's
releases</a>.</em></p>
<blockquote>
<h2>v13.4.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Changes for 13.4.0 by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1432 ">openlayers/ol-mapbox-style#1432</a></li>
<li>Do not fail on ol versions that don't have Stroke#setOffset() by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1440 ">openlayers/ol-mapbox-style#1440</a></li>
<li>Bump puppeteer from 24.37.5 to 24.40.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1433 ">openlayers/ol-mapbox-style#1433</a></li>
<li>Bump pmtiles-protocol from 1.0.5 to 1.1.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1434 ">openlayers/ol-mapbox-style#1434</a></li>
<li>Bump copy-webpack-plugin from 13.0.1 to 14.0.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1435 ">openlayers/ol-mapbox-style#1435</a></li>
<li>Bump <code>@rollup/plugin-commonjs</code> from 29.0.0 to 29.0.2 by
<a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1436 ">openlayers/ol-mapbox-style#1436</a></li>
<li>Bump eslint from 9.39.4 to 10.1.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1437 ">openlayers/ol-mapbox-style#1437</a></li>
<li>Bump lodash from 4.17.23 to 4.18.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1441 ">openlayers/ol-mapbox-style#1441</a></li>
<li>Bump picomatch by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1438 ">openlayers/ol-mapbox-style#1438</a></li>
<li>Bump webpack from 5.105.2 to 5.105.4 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1443 ">openlayers/ol-mapbox-style#1443</a></li>
<li>Bump typedoc-plugin-missing-exports from 4.1.2 to 4.1.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1444 ">openlayers/ol-mapbox-style#1444</a></li>
<li>Bump basic-ftp from 5.2.0 to 5.2.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1448 ">openlayers/ol-mapbox-style#1448</a></li>
<li>Bump follow-redirects from 1.15.6 to 1.16.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1449 ">openlayers/ol-mapbox-style#1449</a></li>
<li>Bump typedoc from 0.28.15 to 0.28.18 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1446 ">openlayers/ol-mapbox-style#1446</a></li>
<li>Bump mocha from 12.0.0-beta-9.2 to 12.0.0-beta-10 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1442 ">openlayers/ol-mapbox-style#1442</a></li>
<li>Bump typescript from 5.9.3 to 6.0.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/ol-mapbox-style/pull/1445 ">openlayers/ol-mapbox-style#1445</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/openlayers/ol-mapbox-style/compare/v13.4.0...v13.4.1 ">https://github.com/openlayers/ol-mapbox-style/compare/v13.4.0...v13.4.1 </a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/openlayers/ol-mapbox-style/blob/main/CHANGELOG.md ">ol-mapbox-style's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6bd88d89b4db527b61c1https://redirect.github.com/openlayers/ol-mapbox-style/issues/1445 ">#1445</a>
from openlayers/dependabot/npm_and_yarn/typescript-6...</li>
<li><a
href="03ea5729286f112970f402e75fd5abhttps://redirect.github.com/openlayers/ol-mapbox-style/issues/1442 ">#1442</a>
from openlayers/dependabot/npm_and_yarn/mocha-12.0.0...</li>
<li><a
href="d2bbef74b9a4d11ed7a4cf7cff43b0https://redirect.github.com/openlayers/ol-mapbox-style/issues/1446 ">#1446</a>
from openlayers/dependabot/npm_and_yarn/typedoc-0.28.18</li>
<li><a
href="ce1373316146b2b4a5b2https://redirect.github.com/openlayers/ol-mapbox-style/issues/1449 ">#1449</a>
from openlayers/dependabot/npm_and_yarn/follow-redir...</li>
<li>Additional commits viewable in <a
href="https://github.com/openlayers/ol-mapbox-style/compare/v13.4.0...v13.4.1 ">compare
view</a></li>
</ul>
</details>
<br />
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:20:16 +00:00
dependabot[bot]
869cbec10a
chore(deps): Bump github/codeql-action from 4.35.1 to 4.35.2 ( #1823 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action )
from 4.35.1 to 4.35.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/releases ">github/codeql-action's
releases</a>.</em></p>
<blockquote>
<h2>v4.35.2</h2>
<ul>
<li>The undocumented TRAP cache cleanup feature that could be enabled
using the <code>CODEQL_ACTION_CLEANUP_TRAP_CACHES</code> environment
variable is deprecated and will be removed in May 2026. If you are
affected by this, we recommend disabling TRAP caching by passing the
<code>trap-caching: false</code> input to the <code>init</code> Action.
<a
href="https://redirect.github.com/github/codeql-action/pull/3795 ">#3795</a></li>
<li>The Git version 2.36.0 requirement for improved incremental analysis
now only applies to repositories that contain submodules. <a
href="https://redirect.github.com/github/codeql-action/pull/3789 ">#3789</a></li>
<li>Python analysis on GHES no longer extracts the standard library,
relying instead on models of the standard library. This should result in
significantly faster extraction and analysis times, while the effect on
alerts should be minimal. <a
href="https://redirect.github.com/github/codeql-action/pull/3794 ">#3794</a></li>
<li>Fixed a bug in the validation of OIDC configurations for private
registries that was added in CodeQL Action 4.33.0 / 3.33.0. <a
href="https://redirect.github.com/github/codeql-action/pull/3807 ">#3807</a></li>
<li>Update default CodeQL bundle version to <a
href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.2 ">2.25.2</a>.
<a
href="https://redirect.github.com/github/codeql-action/pull/3823 ">#3823</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md ">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases ">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>4.35.2 - 15 Apr 2026</h2>
<ul>
<li>The undocumented TRAP cache cleanup feature that could be enabled
using the <code>CODEQL_ACTION_CLEANUP_TRAP_CACHES</code> environment
variable is deprecated and will be removed in May 2026. If you are
affected by this, we recommend disabling TRAP caching by passing the
<code>trap-caching: false</code> input to the <code>init</code> Action.
<a
href="https://redirect.github.com/github/codeql-action/pull/3795 ">#3795</a></li>
<li>The Git version 2.36.0 requirement for improved incremental analysis
now only applies to repositories that contain submodules. <a
href="https://redirect.github.com/github/codeql-action/pull/3789 ">#3789</a></li>
<li>Python analysis on GHES no longer extracts the standard library,
relying instead on models of the standard library. This should result in
significantly faster extraction and analysis times, while the effect on
alerts should be minimal. <a
href="https://redirect.github.com/github/codeql-action/pull/3794 ">#3794</a></li>
<li>Fixed a bug in the validation of OIDC configurations for private
registries that was added in CodeQL Action 4.33.0 / 3.33.0. <a
href="https://redirect.github.com/github/codeql-action/pull/3807 ">#3807</a></li>
<li>Update default CodeQL bundle version to <a
href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.2 ">2.25.2</a>.
<a
href="https://redirect.github.com/github/codeql-action/pull/3823 ">#3823</a></li>
</ul>
<h2>4.35.1 - 27 Mar 2026</h2>
<ul>
<li>Fix incorrect minimum required Git version for <a
href="https://redirect.github.com/github/roadmap/issues/1158 ">improved
incremental analysis</a>: it should have been 2.36.0, not 2.11.0. <a
href="https://redirect.github.com/github/codeql-action/pull/3781 ">#3781</a></li>
</ul>
<h2>4.35.0 - 27 Mar 2026</h2>
<ul>
<li>Reduced the minimum Git version required for <a
href="https://redirect.github.com/github/roadmap/issues/1158 ">improved
incremental analysis</a> from 2.38.0 to 2.11.0. <a
href="https://redirect.github.com/github/codeql-action/pull/3767 ">#3767</a></li>
<li>Update default CodeQL bundle version to <a
href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.1 ">2.25.1</a>.
<a
href="https://redirect.github.com/github/codeql-action/pull/3773 ">#3773</a></li>
</ul>
<h2>4.34.1 - 20 Mar 2026</h2>
<ul>
<li>Downgrade default CodeQL bundle version to <a
href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3 ">2.24.3</a>
due to issues with a small percentage of Actions and JavaScript
analyses. <a
href="https://redirect.github.com/github/codeql-action/pull/3762 ">#3762</a></li>
</ul>
<h2>4.34.0 - 20 Mar 2026</h2>
<ul>
<li>Added an experimental change which disables TRAP caching when <a
href="https://redirect.github.com/github/roadmap/issues/1158 ">improved
incremental analysis</a> is enabled, since improved incremental analysis
supersedes TRAP caching. This will improve performance and reduce
Actions cache usage. We expect to roll this change out to everyone in
March. <a
href="https://redirect.github.com/github/codeql-action/pull/3569 ">#3569</a></li>
<li>We are rolling out improved incremental analysis to C/C++ analyses
that use build mode <code>none</code>. We expect this rollout to be
complete by the end of April 2026. <a
href="https://redirect.github.com/github/codeql-action/pull/3584 ">#3584</a></li>
<li>Update default CodeQL bundle version to <a
href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0 ">2.25.0</a>.
<a
href="https://redirect.github.com/github/codeql-action/pull/3585 ">#3585</a></li>
</ul>
<h2>4.33.0 - 16 Mar 2026</h2>
<ul>
<li>
<p>Upcoming change: Starting April 2026, the CodeQL Action will skip
collecting file coverage information on pull requests to improve
analysis performance. File coverage information will still be computed
on non-PR analyses. Pull request analyses will log a warning about this
upcoming change. <a
href="https://redirect.github.com/github/codeql-action/pull/3562 ">#3562</a></p>
<p>To opt out of this change:</p>
<ul>
<li><strong>Repositories owned by an organization:</strong> Create a
custom repository property with the name
<code>github-codeql-file-coverage-on-prs</code> and the type
"True/false", then set this property to <code>true</code> in
the repository's settings. For more information, see <a
href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization ">Managing
custom properties for repositories in your organization</a>.
Alternatively, if you are using an advanced setup workflow, you can set
the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable
to <code>true</code> in your workflow.</li>
<li><strong>User-owned repositories using default setup:</strong> Switch
to an advanced setup workflow and set the
<code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable to
<code>true</code> in your workflow.</li>
<li><strong>User-owned repositories using advanced setup:</strong> Set
the <code>CODEQL_ACTION_FILE_COVERAGE_ON_PRS</code> environment variable
to <code>true</code> in your workflow.</li>
</ul>
</li>
<li>
<p>Fixed <a
href="https://redirect.github.com/github/codeql-action/issues/3555 ">a
bug</a> which caused the CodeQL Action to fail loading repository
properties if a "Multi select" repository property was
configured for the repository. <a
href="https://redirect.github.com/github/codeql-action/pull/3557 ">#3557</a></p>
</li>
<li>
<p>The CodeQL Action now loads <a
href="https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization ">custom
repository properties</a> on GitHub Enterprise Server, enabling the
customization of features such as
<code>github-codeql-disable-overlay</code> that was previously only
available on GitHub.com. <a
href="https://redirect.github.com/github/codeql-action/pull/3559 ">#3559</a></p>
</li>
<li>
<p>Once <a
href="https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries ">private
package registries</a> can be configured with OIDC-based authentication
for organizations, the CodeQL Action will now be able to accept such
configurations. <a
href="https://redirect.github.com/github/codeql-action/pull/3563 ">#3563</a></p>
</li>
<li>
<p>Fixed the retry mechanism for database uploads. Previously this would
fail with the error "Response body object should not be disturbed
or locked". <a
href="https://redirect.github.com/github/codeql-action/pull/3564 ">#3564</a></p>
</li>
<li>
<p>A warning is now emitted if the CodeQL Action detects a repository
property whose name suggests that it relates to the CodeQL Action, but
which is not one of the properties recognised by the current version of
the CodeQL Action. <a
href="https://redirect.github.com/github/codeql-action/pull/3570 ">#3570</a></p>
</li>
</ul>
<h2>4.32.6 - 05 Mar 2026</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="95e58e9a2chttps://redirect.github.com/github/codeql-action/issues/3824 ">#3824</a>
from github/update-v4.35.2-d2e135a73</li>
<li><a
href="6f31bfe060d2e135a73ahttps://redirect.github.com/github/codeql-action/issues/3823 ">#3823</a>
from github/update-bundle/codeql-bundle-v2.25.2</li>
<li><a
href="60abb65df05a0a56220965216971a1https://redirect.github.com/github/codeql-action/issues/3820 ">#3820</a>
from github/dependabot/github_actions/dot-github/wor...</li>
<li><a
href="3c45af2dd2https://redirect.github.com/github/codeql-action/issues/3821 ">#3821</a>
from github/dependabot/npm_and_yarn/npm-minor-345b93...</li>
<li><a
href="f1c339364c1024fc496c9dd4cfed96c10b8064de...95e58e9a2chttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=4.35.1&new-version=4.35.2 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:14:47 +00:00
dependabot[bot]
2b0ed59203
chore(deps-dev): Bump cypress from 15.13.1 to 15.14.0 ( #1822 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [cypress](https://github.com/cypress-io/cypress ) from 15.13.1 to
15.14.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cypress-io/cypress/releases ">cypress's
releases</a>.</em></p>
<blockquote>
<h2>v15.14.0</h2>
<p>Changelog: <a
href="https://docs.cypress.io/app/references/changelog#15-14-0 ">https://docs.cypress.io/app/references/changelog#15-14-0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b8a9db27d4https://redirect.github.com/cypress-io/cypress/issues/33616 ">#33616</a>)</li>
<li><a
href="1c6935f8d5https://redirect.github.com/cypress-io/cypress/issues/33613 ">#33613</a>)</li>
<li><a
href="7532a05954eaacd99e4cacf1eef15chttps://redirect.github.com/cypress-io/cypress/issues/33580 ">#33580</a>)</li>
<li><a
href="9f1f15e8behttps://redirect.github.com/cypress-io/cypress/issues/33512 ">#33512</a>)"
(<a
href="https://redirect.github.com/cypress-io/cypress/issues/33611 ">#33611</a>)</li>
<li><a
href="bf2f052371https://redirect.github.com/cypress-io/cypress/issues/33538 ">#33538</a>)"
(<a
href="https://redirect.github.com/cypress-io/cypress/issues/33612 ">#33612</a>)</li>
<li><a
href="f7f0c57cfchttps://redirect.github.com/cypress-io/cypress/issues/33609 ">#33609</a>)</li>
<li><a
href="585b0df893https://redirect.github.com/cypress-io/cypress/issues/33538 ">#33538</a>)</li>
<li><a
href="cebbc85a87https://github.com/cypress-io/cypress/compare/v15.13.1...v15.14.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:12:58 +00:00
dependabot[bot]
e3a32fb72f
chore(deps-dev): Bump eslint-plugin-react-hooks from 7.0.1 to 7.1.0 ( #1820 )
...
Bumps
[eslint-plugin-react-hooks](https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks )
from 7.0.1 to 7.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/facebook/react/releases ">eslint-plugin-react-hooks's
releases</a>.</em></p>
<blockquote>
<h2>eslint-plugin-react-hooks@7.1.0 (April 16, 2026)</h2>
<p>This release adds ESLint v10 support, improves performance by
skipping compilation for non-React files, and includes compiler lint
improvements including better <code>set-state-in-effect</code>
detection, improved ref validation, and more helpful error
reporting.</p>
<ul>
<li>Add ESLint v10 support. (<a
href="https://github.com/azat-io "><code>@azat-io</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35720 ">#35720</a>)</li>
<li>Skip compilation for non-React files to improve performance. (<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35589 ">#35589</a>)</li>
<li>Fix exhaustive deps bug with Flow type casting. (<a
href="https://github.com/jorge-cab "><code>@jorge-cab</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35691 ">#35691</a>)</li>
<li>Fix <code>useEffectEvent</code> checks in component syntax. (<a
href="https://github.com/jbrown215 "><code>@jbrown215</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35041 ">#35041</a>)</li>
<li>Improved <code>set-state-in-effect</code> validation with fewer
false negatives. (<a
href="https://github.com/jorge-cab "><code>@jorge-cab</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35134 ">#35134</a>,
<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35147 ">#35147</a>,
<a href="https://github.com/jackpope "><code>@jackpope</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35214 ">#35214</a>,
<a
href="https://github.com/chesnokov-tony "><code>@chesnokov-tony</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35419 ">#35419</a>,
<a href="https://github.com/jsleitor "><code>@jsleitor</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/36107 ">#36107</a>)</li>
<li>Improved ref validation for non-mutating functions and event handler
props. (<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35893 ">#35893</a>,
<a href="https://github.com/kolvian "><code>@kolvian</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35062 ">#35062</a>)</li>
<li>Compiler now reports all errors instead of stopping at the first.
(<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35873 ">#35873</a>–<a
href="https://redirect.github.com/facebook/react/pull/35884 ">#35884</a>)</li>
<li>Improved source locations and error display in compiler diagnostics.
(<a href="https://github.com/nathanmarks "><code>@nathanmarks</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35348 ">#35348</a>,
<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/34963 ">#34963</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/facebook/react/blob/main/packages/eslint-plugin-react-hooks/CHANGELOG.md ">eslint-plugin-react-hooks's
changelog</a>.</em></p>
<blockquote>
<h2>7.1.0</h2>
<p>This release adds ESLint v10 support, improves performance by
skipping compilation for non-React files, and includes compiler lint
improvements including better <code>set-state-in-effect</code>
detection, improved ref validation, and more helpful error
reporting.</p>
<ul>
<li>Add ESLint v10 support. (<a
href="https://github.com/azat-io "><code>@azat-io</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35720 ">#35720</a>)</li>
<li>Skip compilation for non-React files to improve performance. (<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35589 ">#35589</a>)</li>
<li>Fix exhaustive deps bug with Flow type casting. (<a
href="https://github.com/jorge-cab "><code>@jorge-cab</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35691 ">#35691</a>)</li>
<li>Fix <code>useEffectEvent</code> checks in component syntax. (<a
href="https://github.com/jbrown215 "><code>@jbrown215</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35041 ">#35041</a>)</li>
<li>Improved <code>set-state-in-effect</code> validation with fewer
false negatives. (<a
href="https://github.com/jorge-cab "><code>@jorge-cab</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35134 ">#35134</a>,
<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35147 ">#35147</a>,
<a href="https://github.com/jackpope "><code>@jackpope</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35214 ">#35214</a>,
<a
href="https://github.com/chesnokov-tony "><code>@chesnokov-tony</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35419 ">#35419</a>,
<a href="https://github.com/jsleitor "><code>@jsleitor</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/36107 ">#36107</a>)</li>
<li>Improved ref validation for non-mutating functions and event handler
props. (<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35893 ">#35893</a>,
<a href="https://github.com/kolvian "><code>@kolvian</code></a> in <a
href="https://redirect.github.com/facebook/react/pull/35062 ">#35062</a>)</li>
<li>Compiler now reports all errors instead of stopping at the first.
(<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35873 ">#35873</a>–<a
href="https://redirect.github.com/facebook/react/pull/35884 ">#35884</a>)</li>
<li>Improved source locations and error display in compiler diagnostics.
(<a href="https://github.com/nathanmarks "><code>@nathanmarks</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/35348 ">#35348</a>,
<a
href="https://github.com/josephsavona "><code>@josephsavona</code></a>
in <a
href="https://redirect.github.com/facebook/react/pull/34963 ">#34963</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/facebook/react/commits/eslint-plugin-react-hooks@7.1.0/packages/eslint-plugin-react-hooks ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:12:38 +00:00
dependabot[bot]
da4b84cdfd
chore(deps): Bump i18next from 26.0.4 to 26.0.5 ( #1818 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [i18next](https://github.com/i18next/i18next ) from 26.0.4 to
26.0.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/releases ">i18next's
releases</a>.</em></p>
<blockquote>
<h2>v26.0.5</h2>
<ul>
<li>fix: <code>cloneInstance().changeLanguage()</code> no longer fails
to update language state when the target language is not yet loaded — a
race between <code>init()</code>'s deferred <code>load()</code> and the
user's <code>changeLanguage()</code> could overwrite
<code>isLanguageChangingTo</code>, causing <code>setLngProps</code> to
be skipped <a
href="https://redirect.github.com/i18next/i18next/issues/2422 ">2422</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md ">i18next's
changelog</a>.</em></p>
<blockquote>
<h2>26.0.5</h2>
<ul>
<li>fix: <code>cloneInstance().changeLanguage()</code> no longer fails
to update language state when the target language is not yet loaded — a
race between <code>init()</code>'s deferred <code>load()</code> and the
user's <code>changeLanguage()</code> could overwrite
<code>isLanguageChangingTo</code>, causing <code>setLngProps</code> to
be skipped <a
href="https://redirect.github.com/i18next/i18next/issues/2422 ">2422</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ab4633fee0bae3b8bca9https://github.com/i18next/i18next/compare/v26.0.4...v26.0.5 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:12:02 +00:00
dependabot[bot]
58166e3a9e
chore(deps): Bump ol from 10.8.0 to 10.9.0 ( #1816 )
...
Bumps [ol](https://github.com/openlayers/openlayers ) from 10.8.0 to
10.9.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/openlayers/openlayers/releases ">ol's
releases</a>.</em></p>
<blockquote>
<h2>v10.9.0</h2>
<h2>Summary</h2>
<p>In the 10.9 release, GeoZarr and GeoTIFF support saw major
improvements — including multi-group band support, per-band metadata,
and more efficient tile loading. WebGL rendering precision and
performance were enhanced, and several vector rendering, hit detection,
and trackpad zoom interaction issues were resolved.</p>
<h2>What's Changed</h2>
<ul>
<li>Updates for the 10.8.0 release by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17325 ">openlayers/openlayers#17325</a></li>
<li>Update package version to 10.8.1-dev by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17327 ">openlayers/openlayers#17327</a></li>
<li>Example: export map as GeoTIFF or PNG with world file by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17313 ">openlayers/openlayers#17313</a></li>
<li>Flat style / allow literal number arrays as well for the
<code>in</code> (haystack) operator by <a
href="https://github.com/jahow "><code>@jahow</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17334 ">openlayers/openlayers#17334</a></li>
<li>Fix typos in GeoZARR source by <a
href="https://github.com/m-mohr "><code>@m-mohr</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17348 ">openlayers/openlayers#17348</a></li>
<li>chore(deps-dev): bump jspdf from 4.1.0 to 4.2.0 in the
development-security group across 1 directory by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17337 ">openlayers/openlayers#17337</a></li>
<li>chore(deps): bump geotiff from 3.0.2 to 3.0.3 in the
production-minor-patch group by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17339 ">openlayers/openlayers#17339</a></li>
<li>chore(deps-dev): bump the development-security group across 1
directory with 3 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17358 ">openlayers/openlayers#17358</a></li>
<li>chore(deps-dev): bump the development-minor-patch group across 1
directory with 13 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17360 ">openlayers/openlayers#17360</a></li>
<li>Add support for custom fetch client in GeoTIFF source and examples
by <a href="https://github.com/BeGj "><code>@BeGj</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17346 ">openlayers/openlayers#17346</a></li>
<li>Add shared vertices equal by <a
href="https://github.com/andreasbaa "><code>@andreasbaa</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17349 ">openlayers/openlayers#17349</a></li>
<li>Fix updateGeometry_ to preserve per-geometry Z/M values by <a
href="https://github.com/andreasbaa "><code>@andreasbaa</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17347 ">openlayers/openlayers#17347</a></li>
<li>Update raster source docs by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17342 ">openlayers/openlayers#17342</a></li>
<li>Update geotiff to v3.0.4 by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17363 ">openlayers/openlayers#17363</a></li>
<li>Fix stroked polygon after non-stroked polygon with overlaps:false by
<a href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17364 ">openlayers/openlayers#17364</a></li>
<li>Improve GeoZarr nodata handling by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17355 ">openlayers/openlayers#17355</a></li>
<li>Store gdal metadata instead of a promise thereof by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17344 ">openlayers/openlayers#17344</a></li>
<li>fix(test): handle image load errors in ImageLayer CORS test by <a
href="https://github.com/wietzesuijker "><code>@wietzesuijker</code></a>
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17372 ">openlayers/openlayers#17372</a></li>
<li>Use provided stride for render feature geometry operations by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17367 ">openlayers/openlayers#17367</a></li>
<li>Cache opened zarrita arrays across GeoZarr tile loads by <a
href="https://github.com/wietzesuijker "><code>@wietzesuijker</code></a>
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17369 ">openlayers/openlayers#17369</a></li>
<li>Parallelize band array opens in GeoZarr loadTile_ by <a
href="https://github.com/wietzesuijker "><code>@wietzesuijker</code></a>
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17370 ">openlayers/openlayers#17370</a></li>
<li>Optimize GeoZarr tile sizes by aligning with inner shards by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17362 ">openlayers/openlayers#17362</a></li>
<li>Load unknown projections for GeoTIFF source <a
href="https://redirect.github.com/openlayers/openlayers/issues/17153 ">#17153</a>
by <a href="https://github.com/m-mohr "><code>@m-mohr</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17208 ">openlayers/openlayers#17208</a></li>
<li>Fix node deprecation warning by <a
href="https://github.com/M393 "><code>@M393</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17387 ">openlayers/openlayers#17387</a></li>
<li>Default stroke for hitdetection by <a
href="https://github.com/qulol "><code>@qulol</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17365 ">openlayers/openlayers#17365</a></li>
<li>Fix issue 17380 - Call reprioritize conditionally in
handlePostRender by <a
href="https://github.com/andrfra "><code>@andrfra</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17381 ">openlayers/openlayers#17381</a></li>
<li>Use correct tileUrlFunction when loading source tiles by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17392 ">openlayers/openlayers#17392</a></li>
<li>Do not set a fill for patterns that are not loaded yet by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17384 ">openlayers/openlayers#17384</a></li>
<li>Webgl / Better performance when filtering out features by <a
href="https://github.com/jahow "><code>@jahow</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17393 ">openlayers/openlayers#17393</a></li>
<li>More efficient loading of striped GeoTIFFs and reprojected WebGL
tiles by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17394 ">openlayers/openlayers#17394</a></li>
<li>GeoTIFF: Provide min/max/nodata per band by <a
href="https://github.com/m-mohr "><code>@m-mohr</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17396 ">openlayers/openlayers#17396</a></li>
<li>Fix openflights link in flight animation example by <a
href="https://github.com/ChandlerSwift "><code>@ChandlerSwift</code></a>
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17398 ">openlayers/openlayers#17398</a></li>
<li>Remove separate group option for the GeoZarr source by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17378 ">openlayers/openlayers#17378</a></li>
<li>Fix type imports with stricter hints from tsconfig by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17376 ">openlayers/openlayers#17376</a></li>
<li><a
href="https://redirect.github.com/openlayers/openlayers/issues/17397 ">#17397</a>
Fix text on circle features not working with declutter by <a
href="https://github.com/Adanteh "><code>@Adanteh</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17400 ">openlayers/openlayers#17400</a></li>
<li>Fix Feature clone with custom geometry name by <a
href="https://github.com/MoonE "><code>@MoonE</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17404 ">openlayers/openlayers#17404</a></li>
<li>Inflate trackpad pinch-to-zoom deltas by <a
href="https://github.com/src73 "><code>@src73</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17405 ">openlayers/openlayers#17405</a></li>
<li>chore(deps): bump actions/upload-artifact from 6 to 7 in the actions
group across 1 directory by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17390 ">openlayers/openlayers#17390</a></li>
<li>chore(deps-dev): bump dompurify from 3.3.1 to 3.3.2 in the
development-security group across 1 directory by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17373 ">openlayers/openlayers#17373</a></li>
<li>Compute resolution from spatial:bbox and spatial:shape by <a
href="https://github.com/ahocevar "><code>@ahocevar</code></a> in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17410 ">openlayers/openlayers#17410</a></li>
<li>Heatmap: Inline blurSlope computation to fix expression-based
blur/radius (<a
href="https://redirect.github.com/openlayers/openlayers/issues/17412 ">#17412</a>)
by <a href="https://github.com/JoJoeGoing "><code>@JoJoeGoing</code></a>
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17413 ">openlayers/openlayers#17413</a></li>
<li>Add rendering test for line offset with detailed river geometries by
<a
href="https://github.com/viktorijasolovjova "><code>@viktorijasolovjova</code></a>
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17414 ">openlayers/openlayers#17414</a></li>
<li>chore(deps-dev): bump the development-security group across 1
directory with 2 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17415 ">openlayers/openlayers#17415</a></li>
<li>chore(deps): bump dawidd6/action-download-artifact from 14 to 19 in
the actions group by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/openlayers/openlayers/pull/17420 ">openlayers/openlayers#17420</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ba63bf383d08455cebc0https://redirect.github.com/openlayers/openlayers/issues/17371 ">#17371</a>
from wietzesuijker/feat/batched-fetch-store</li>
<li><a
href="3dd6caebb93d730fea32https://redirect.github.com/openlayers/openlayers/issues/17409 ">#17409</a>
from ahocevar/geozarr-multigroup</li>
<li><a
href="ee474e8ab3https://redirect.github.com/openlayers/openlayers/issues/17429 ">#17429</a>
from viktorijasolovjova/immediate-renderer-squared-...</li>
<li><a
href="d0670a8340fd8bd0e8fa52d26ab5066e8cb4088d99553c292ehttps://github.com/openlayers/openlayers/compare/v10.8.0...v10.9.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:11:40 +00:00
dependabot[bot]
7c8a1f92cc
chore(deps): Bump react-i18next from 17.0.2 to 17.0.4 ( #1814 )
...
Bumps [react-i18next](https://github.com/i18next/react-i18next ) from
17.0.2 to 17.0.4.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/react-i18next/blob/master/CHANGELOG.md ">react-i18next's
changelog</a>.</em></p>
<blockquote>
<h2>17.0.4</h2>
<ul>
<li>fix: avoid <code>React does not recognize the 'i18nIsDynamicList'
prop on a DOM element</code> warning <a
href="https://redirect.github.com/i18next/react-i18next/issues/1915 ">1915</a></li>
</ul>
<h2>17.0.3</h2>
<ul>
<li>fix: avoid invalid prop on <code>React.Fragment</code> inside
<code><Trans /></code> <a
href="https://redirect.github.com/i18next/react-i18next/issues/1914 ">1914</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a398b7692bc96f7bc219fe111f7518e7419b8696https://redirect.github.com/i18next/react-i18next/issues/1914 ">#1914</a></li>
<li>See full diff in <a
href="https://github.com/i18next/react-i18next/compare/v17.0.2...v17.0.4 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:11:32 +00:00
dependabot[bot]
cad919c417
chore(deps-dev): Bump postcss from 8.5.9 to 8.5.10 ( #1815 )
...
Bumps [postcss](https://github.com/postcss/postcss ) from 8.5.9 to
8.5.10.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/postcss/postcss/releases ">postcss's
releases</a>.</em></p>
<blockquote>
<h2>8.5.10</h2>
<ul>
<li>Fixed XSS via unescaped <code></style></code> in non-bundler
cases (by <a
href="https://github.com/TharVid "><code>@TharVid</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md ">postcss's
changelog</a>.</em></p>
<blockquote>
<h2>8.5.10</h2>
<ul>
<li>Fixed XSS via unescaped <code></style></code> in non-bundler
cases (by <a
href="https://github.com/TharVid "><code>@TharVid</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="33b9790263536c79e4b0https://redirect.github.com/postcss/postcss/issues/2074 ">#2074</a>)</li>
<li><a
href="afa96b2a13https://redirect.github.com/postcss/postcss/issues/2073 ">#2073</a>)</li>
<li><a
href="effe88bb87https://redirect.github.com/postcss/postcss/issues/2072 ">#2072</a>)</li>
<li><a
href="3ee79a2c4ahttps://redirect.github.com/postcss/postcss/issues/2071 ">#2071</a>)</li>
<li><a
href="2e0683dacahttps://redirect.github.com/postcss/postcss/issues/2070 ">#2070</a>)</li>
<li>See full diff in <a
href="https://github.com/postcss/postcss/compare/8.5.9...8.5.10 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-20 16:11:10 +00:00
dependabot[bot]
f37484a657
chore(deps-dev): Bump typescript-eslint from 8.58.1 to 8.58.2 ( #1813 )
...
Bumps
[typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint )
from 8.58.1 to 8.58.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/typescript-eslint/typescript-eslint/releases ">typescript-eslint's
releases</a>.</em></p>
<blockquote>
<h2>v8.58.2</h2>
<h2>8.58.2 (2026-04-13)</h2>
<h3>🩹 Fixes</h3>
<ul>
<li>remove tsbuildinfo cache file from published packages (<a
href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12187 ">#12187</a>)</li>
<li><strong>eslint-plugin:</strong> [no-unnecessary-condition] use
assignability checks in checkTypePredicates (<a
href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12147 ">#12147</a>)</li>
</ul>
<h3>❤️ Thank You</h3>
<ul>
<li>Abhijeet Singh <a
href="https://github.com/cseas "><code>@cseas</code></a></li>
<li>송재욱</li>
</ul>
<p>See <a
href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.58.2 ">GitHub
Releases</a> for more information.</p>
<p>You can read about our <a
href="https://typescript-eslint.io/users/versioning ">versioning
strategy</a> and <a
href="https://typescript-eslint.io/users/releases ">releases</a> on our
website.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md ">typescript-eslint's
changelog</a>.</em></p>
<blockquote>
<h2>8.58.2 (2026-04-13)</h2>
<h3>🩹 Fixes</h3>
<ul>
<li>remove tsbuildinfo cache file from published packages (<a
href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12187 ">#12187</a>)</li>
</ul>
<h3>❤️ Thank You</h3>
<ul>
<li>Abhijeet Singh <a
href="https://github.com/cseas "><code>@cseas</code></a></li>
</ul>
<p>See <a
href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.58.2 ">GitHub
Releases</a> for more information.</p>
<p>You can read about our <a
href="https://typescript-eslint.io/users/versioning ">versioning
strategy</a> and <a
href="https://typescript-eslint.io/users/releases ">releases</a> on our
website.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="90c2803a4cb3315fd7bahttps://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint/issues/12100 ">#12100</a>)</li>
<li><a
href="be6b49a02dhttps://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint/issues/12187 ">#12187</a>)</li>
<li>See full diff in <a
href="https://github.com/typescript-eslint/typescript-eslint/commits/v8.58.2/packages/typescript-eslint ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-17 13:52:21 +00:00
dependabot[bot]
34e1995790
chore(deps-dev): Bump i18next-cli from 1.51.8 to 1.53.2 ( #1812 )
...
Bumps [i18next-cli](https://github.com/i18next/i18next-cli ) from 1.51.8
to 1.53.2.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md ">i18next-cli's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.53.1...v1.53.2 ">1.53.2</a>
- 2026-04-14</h2>
<ul>
<li>Add <code>locale</code> and <code>namespace</code> fields to the
<code>TranslationResult</code> object passed
to the <code>afterSync</code> plugin hook, so plugins no longer need to
reverse-engineer
these values from the file path.
Relates to <a
href="https://redirect.github.com/i18next/i18next-cli/issues/237 ">#237</a>.</li>
</ul>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.53.0...v1.53.1 ">1.53.1</a>
- 2026-04-14</h2>
<ul>
<li>Fix selector API with dynamic bracket notation (e.g.
<code>t(($) => $.table.columns[field])</code>) incorrectly treating
keys as unused
and removing them during extraction. Dynamic bracket expressions are now
resolved via the expression resolver, and function parameter type
annotations (e.g. <code>field: "name" |
"age"</code>) are captured so the resolver
can enumerate all possible key values.
Fixes <a
href="https://redirect.github.com/i18next/i18next-cli/issues/234 ">#234</a>.</li>
</ul>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.52.1...v1.53.0 ">1.53.0</a>
- 2026-04-14</h2>
<ul>
<li>Add optional <code>types.basePath</code> configuration to support
nested namespaces in
TypeScript type generation. When set, namespaces are derived from the
file's
path relative to <code>basePath</code> instead of just the filename, so
<code>locales/en/dashboard/user.json</code> produces namespace
<code>"dashboard/user"</code> instead
of <code>"user"</code>. When <code>basePath</code> is omitted,
existing behavior is preserved.
Contributed by <a
href="https://github.com/camerondubas "><code>@camerondubas</code></a>
in
<a
href="https://redirect.github.com/i18next/i18next-cli/pull/236 ">#236</a>.</li>
<li>Add a warning when <code>types.basePath</code> is misconfigured and
translation files
fall outside the specified base directory.</li>
<li>Use the internal logger instead of <code>console.warn</code> for
warnings in the type
generator.</li>
</ul>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.52.0...v1.52.1 ">1.52.1</a>
- 2026-04-13</h2>
<ul>
<li>Fix <code>extract --sync-all --trust-derived</code> resetting
secondary locale values
to empty strings even when the trusted derived default was already in
sync in
the primary locale. Secondary translations are now only cleared when the
primary locale would actually be updated by the sync.
Follow-up to <a
href="https://redirect.github.com/i18next/i18next-cli/issues/235 ">#235</a>.</li>
</ul>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.51.9...v1.52.0 ">1.52.0</a>
- 2026-04-13</h2>
<ul>
<li>Add <code>extract --trust-derived</code> as an opt-in companion to
<code>--sync-primary</code>
and <code>--sync-all</code>. When enabled, the extractor also trusts
default values
inferred from keys, including plain key-as-text usage such as
<code>t('Hello world')</code> and <code>keyPrefix</code>-derived values,
while preserving the
existing strict sync behavior by default.
Follows up on <a
href="https://redirect.github.com/i18next/i18next-cli/issues/235 ">#235</a>.</li>
</ul>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.51.8...v1.51.9 ">1.51.9</a>
- 2026-04-13</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8c44aaa42c9b74f0b433https://redirect.github.com/i18next/i18next-cli/issues/237 ">#237</a></li>
<li><a
href="f6de82e032d7c9895c87https://redirect.github.com/i18next/i18next-cli/issues/234 ">#234</a></li>
<li><a
href="e6480b060e145a3a84bdhttps://redirect.github.com/i18next/i18next-cli/issues/236 ">#236</a></li>
<li><a
href="54f474f00ahttps://redirect.github.com/i18next/i18next-cli/issues/236 ">#236</a>)</li>
<li><a
href="6e3f9d7dfa810a724c4dhttps://redirect.github.com/i18next/i18next-cli/issues/235 ">#235</a></li>
<li><a
href="b898c554adhttps://github.com/i18next/i18next-cli/compare/v1.51.8...v1.53.2 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-17 13:52:01 +00:00
dependabot[bot]
c2cb9cd7ff
chore(deps): Bump protocol-buffers-schema from 3.6.0 to 3.6.1 ( #1811 )
...
Bumps
[protocol-buffers-schema](https://github.com/mafintosh/protocol-buffers-schema )
from 3.6.0 to 3.6.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="46c34bd3192351031dd6https://redirect.github.com/mafintosh/protocol-buffers-schema/issues/70 ">#70</a>)</li>
<li>See full diff in <a
href="https://github.com/mafintosh/protocol-buffers-schema/compare/v3.6.0...v3.6.1 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/maplibre/maputnik/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-16 21:51:34 +00:00
dependabot[bot]
0dd47a4cb0
chore(deps): Bump maplibre-gl from 5.22.0 to 5.23.0 ( #1810 )
...
Bumps [maplibre-gl](https://github.com/maplibre/maplibre-gl-js ) from
5.22.0 to 5.23.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/maplibre/maplibre-gl-js/releases ">maplibre-gl's
releases</a>.</em></p>
<blockquote>
<h2>v5.23.0</h2>
<h3>✨ Features and improvements</h3>
<ul>
<li>Add <code>touchZoomRotate.setZoomRate()</code> and
<code>touchZoomRotate.setZoomThreshold()</code> to customize touch zoom
speed and pinch sensitivity (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7271 ">#7271</a>)</li>
<li>Improve ability to communicate with imported scripts in workers and
use <code>makeRequest</code> in workres as well (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7451 ">#7451</a>)
(by <a href="https://github.com/HarelM "><code>@HarelM</code></a>)</li>
<li>Allow <code>opacity</code> and <code>opacityWhenCovered</code> in
<code>Marker</code> and <code>MarkerOptions</code> to accept
<code>number</code> in addition to <code>string</code>, and add
<code>maplibregl-marker-covered</code> CSS class to <code>Marker</code>
element when covered by 3D terrain or a globe (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7433 ">#7433</a>)
(by <a
href="https://github.com/YuChunTsao "><code>@YuChunTsao</code></a>)</li>
<li>perf: add a bench for terrain rendering and fix
<code>_demMatrixCache</code> lookup being wasted cycles by actually
using the cache (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7400 ">#7400</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
</ul>
<h3>🐞 Bug fixes</h3>
<ul>
<li>Fix polygon text label placement drifting far from center for convex
polygons at high zoom due to coordinate rounding in geojson-vt (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7380 ">#7380</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Ensure that a successful ArrayBuffer response from a custom protocol
that is null/undefined is set to an empty ArrayBuffer (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7427 ">#7427</a>)
(by <a
href="https://github.com/neodescis "><code>@neodescis</code></a>)</li>
<li>Fix error in <code>_contextRestored</code> when map was initialized
without a style (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7432 ">#7432</a>)
(by <a
href="https://github.com/mvanhorn "><code>@mvanhorn</code></a>)</li>
<li>Fix issue with the cache used for zoomLevelsToOverscale feature (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7450 ">#7450</a>)
(by <a href="https://github.com/HarelM "><code>@HarelM</code></a>)</li>
<li>Update stylelint and fix old issues with the CSS (mainly change rgb
to use spaces) (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7365 ">#7365</a>)
(by <a href="https://github.com/HarelM "><code>@HarelM</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/maplibre/maplibre-gl-js/blob/main/CHANGELOG.md ">maplibre-gl's
changelog</a>.</em></p>
<blockquote>
<h2>5.23.0</h2>
<h3>✨ Features and improvements</h3>
<ul>
<li>Add <code>touchZoomRotate.setZoomRate()</code> and
<code>touchZoomRotate.setZoomThreshold()</code> to customize touch zoom
speed and pinch sensitivity (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7271 ">#7271</a>)</li>
<li>Improve ability to communicate with imported scripts in workers and
use <code>makeRequest</code> in workres as well (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7451 ">#7451</a>)
(by <a href="https://github.com/HarelM "><code>@HarelM</code></a>)</li>
<li>Allow <code>opacity</code> and <code>opacityWhenCovered</code> in
<code>Marker</code> and <code>MarkerOptions</code> to accept
<code>number</code> in addition to <code>string</code>, and add
<code>maplibregl-marker-covered</code> CSS class to <code>Marker</code>
element when covered by 3D terrain or a globe (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7433 ">#7433</a>)
(by <a
href="https://github.com/YuChunTsao "><code>@YuChunTsao</code></a>)</li>
<li>perf: add a bench for terrain rendering and fix
<code>_demMatrixCache</code> lookup being wasted cycles by actually
using the cache (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7400 ">#7400</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
</ul>
<h3>🐞 Bug fixes</h3>
<ul>
<li>Fix polygon text label placement drifting far from center for convex
polygons at high zoom due to coordinate rounding in geojson-vt (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7380 ">#7380</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Ensure that a successful ArrayBuffer response from a custom protocol
that is null/undefined is set to an empty ArrayBuffer (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7427 ">#7427</a>)
(by <a
href="https://github.com/neodescis "><code>@neodescis</code></a>)</li>
<li>Fix error in <code>_contextRestored</code> when map was initialized
without a style (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7432 ">#7432</a>)
(by <a
href="https://github.com/mvanhorn "><code>@mvanhorn</code></a>)</li>
<li>Fix issue with the cache used for zoomLevelsToOverscale feature (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7450 ">#7450</a>)
(by <a href="https://github.com/HarelM "><code>@HarelM</code></a>)</li>
<li>Update stylelint and fix old issues with the CSS (mainly change rgb
to use spaces) (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7365 ">#7365</a>)
(by <a href="https://github.com/HarelM "><code>@HarelM</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7f61f6f252https://redirect.github.com/maplibre/maplibre-gl-js/issues/7455 ">#7455</a>)</li>
<li><a
href="6ace141917https://redirect.github.com/maplibre/maplibre-gl-js/issues/7454 ">#7454</a>)</li>
<li><a
href="1cbb01c8c6https://redirect.github.com/maplibre/maplibre-gl-js/issues/7358 ">#7358</a>)</li>
<li><a
href="62c11c0d94https://redirect.github.com/maplibre/maplibre-gl-js/issues/7365 ">#7365</a>)</li>
<li><a
href="f40a683303https://redirect.github.com/maplibre/maplibre-gl-js/issues/7452 ">#7452</a>)</li>
<li><a
href="d5c86fe504https://redirect.github.com/maplibre/maplibre-gl-js/issues/7451 ">#7451</a>)</li>
<li><a
href="f2072c3137https://redirect.github.com/maplibre/maplibre-gl-js/issues/7446 ">#7446</a>)</li>
<li><a
href="8072fe630chttps://redirect.github.com/maplibre/maplibre-gl-js/issues/7442 ">#7442</a>)</li>
<li><a
href="3f6b54cdc1https://redirect.github.com/maplibre/maplibre-gl-js/issues/7450 ">#7450</a>)</li>
<li><a
href="8584c2e766https://redirect.github.com/maplibre/maplibre-gl-js/issues/7447 ">#7447</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/maplibre/maplibre-gl-js/compare/v5.22.0...v5.23.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-16 13:52:37 +00:00
dependabot[bot]
232db47713
chore(deps-dev): Bump i18next-cli from 1.51.7 to 1.51.8 ( #1809 )
...
Bumps [i18next-cli](https://github.com/i18next/i18next-cli ) from 1.51.7
to 1.51.8.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md ">i18next-cli's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.51.7...v1.51.8 ">1.51.8</a>
- 2026-04-13</h2>
<ul>
<li>Fix selector API with dynamic bracket notation (e.g.
<code>t(($) => $.table.columns[field])</code>) incorrectly treating
keys as unused
and removing them during extraction. Dynamic bracket expressions are now
resolved via the expression resolver, so typed variables
(<code>const field: "name" | "age"</code>) and
const-initialised variables
(<code>const field = "name"</code>) are correctly expanded
into all possible keys.
Fixes <a
href="https://redirect.github.com/i18next/i18next-cli/issues/234 ">#234</a>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6e479a9d443a1ced40fbhttps://redirect.github.com/i18next/i18next-cli/issues/234 ">#234</a></li>
<li>See full diff in <a
href="https://github.com/i18next/i18next-cli/compare/v1.51.7...v1.51.8 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-16 13:52:34 +00:00
dependabot[bot]
1cf99f5175
chore(deps-dev): Bump stylelint from 17.6.0 to 17.7.0 ( #1808 )
...
Bumps [stylelint](https://github.com/stylelint/stylelint ) from 17.6.0 to
17.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/stylelint/stylelint/releases ">stylelint's
releases</a>.</em></p>
<blockquote>
<h2>17.7.0</h2>
<p>It fixes 4 bugs, including clearer problem messages by removing
filler words and leading with the problem. We've also released
<code>1.0.0</code> of <a
href="https://github.com/stylelint/create-stylelint ">create-stylelint</a>
to help with first-time Stylelint setup.</p>
<ul>
<li>Fixed: clarity of problem messages (<a
href="https://redirect.github.com/stylelint/stylelint/issues/9199 ">#9199</a>)
(<a href="https://github.com/jeddy3 "><code>@jeddy3</code></a>).</li>
<li>Fixed: <code>--print-config</code> CLI flag to hide internal
properties (<a
href="https://redirect.github.com/stylelint/stylelint/issues/9194 ">#9194</a>)
(<a
href="https://github.com/ybiquitous "><code>@ybiquitous</code></a>).</li>
<li>Fixed: <code>function-url-quotes</code> false positives when URLs
have modifiers (<a
href="https://redirect.github.com/stylelint/stylelint/issues/8702 ">#8702</a>)
(<a href="https://github.com/immitsu "><code>@immitsu</code></a>).</li>
<li>Fixed: <code>selector-no-qualifying-type</code> false positives for
<code>:has()</code> (<a
href="https://redirect.github.com/stylelint/stylelint/issues/9182 ">#9182</a>)
(<a
href="https://github.com/romainmenke "><code>@romainmenke</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md ">stylelint's
changelog</a>.</em></p>
<blockquote>
<h2>17.7.0 - 2026-04-12</h2>
<p>It fixes 4 bugs, including clearer problem messages by removing
filler words and leading with the problem. We've also released
<code>1.0.0</code> of <a
href="https://github.com/stylelint/create-stylelint ">create-stylelint</a>
to help with first-time Stylelint setup.</p>
<ul>
<li>Fixed: clarity of problem messages (<a
href="https://redirect.github.com/stylelint/stylelint/pull/9199 ">#9199</a>)
(<a href="https://github.com/jeddy3 "><code>@jeddy3</code></a>).</li>
<li>Fixed: <code>--print-config</code> CLI flag to hide internal
properties (<a
href="https://redirect.github.com/stylelint/stylelint/pull/9194 ">#9194</a>)
(<a
href="https://github.com/ybiquitous "><code>@ybiquitous</code></a>).</li>
<li>Fixed: <code>function-url-quotes</code> false positives when URLs
have modifiers (<a
href="https://redirect.github.com/stylelint/stylelint/pull/8702 ">#8702</a>)
(<a href="https://github.com/immitsu "><code>@immitsu</code></a>).</li>
<li>Fixed: <code>selector-no-qualifying-type</code> false positives for
<code>:has()</code> (<a
href="https://redirect.github.com/stylelint/stylelint/pull/9182 ">#9182</a>)
(<a
href="https://github.com/romainmenke "><code>@romainmenke</code></a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0b9b48b964https://redirect.github.com/stylelint/stylelint/issues/9210 ">#9210</a>)</li>
<li><a
href="d0c992e78bhttps://redirect.github.com/stylelint/stylelint/issues/8702 ">#8702</a>)</li>
<li><a
href="64d07a84bahttps://redirect.github.com/stylelint/stylelint/issues/9199 ">#9199</a>)</li>
<li><a
href="38b2df26f2https://redirect.github.com/stylelint/stylelint/issues/9208 ">#9208</a>)</li>
<li><a
href="2d9a53d27ehttps://redirect.github.com/stylelint/stylelint/issues/9207 ">#9207</a>)</li>
<li><a
href="37b1766ddddb0499267dhttps://redirect.github.com/stylelint/stylelint/issues/9205 ">#9205</a>)</li>
<li><a
href="5dd17dbcb3https://redirect.github.com/stylelint/stylelint/issues/9194 ">#9194</a>)</li>
<li><a
href="f5010d4100https://redirect.github.com/stylelint/stylelint/issues/9195 ">#9195</a>)</li>
<li><a
href="73f4834022https://redirect.github.com/stylelint/stylelint/issues/9193 ">#9193</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/stylelint/stylelint/compare/17.6.0...17.7.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-15 13:52:28 +00:00
dependabot[bot]
7858d1d4fa
chore(deps): Bump actions/upload-artifact from 7.0.0 to 7.0.1 ( #1806 )
...
Bumps
[actions/upload-artifact](https://github.com/actions/upload-artifact )
from 7.0.0 to 7.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases ">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v7.0.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update the readme with direct upload details by <a
href="https://github.com/danwkennedy "><code>@danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/795 ">actions/upload-artifact#795</a></li>
<li>Readme: bump all the example versions to v7 by <a
href="https://github.com/danwkennedy "><code>@danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/796 ">actions/upload-artifact#796</a></li>
<li>Include changes in typespec/ts-http-runtime 0.3.5 by <a
href="https://github.com/yacaovsnc "><code>@yacaovsnc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/797 ">actions/upload-artifact#797</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v7...v7.0.1 ">https://github.com/actions/upload-artifact/compare/v7...v7.0.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="043fb46d1ahttps://redirect.github.com/actions/upload-artifact/issues/797 ">#797</a>
from actions/yacaovsnc/update-dependency</li>
<li><a
href="634250c138e454baaac2https://redirect.github.com/actions/upload-artifact/issues/796 ">#796</a>)</li>
<li><a
href="74fad66b98https://redirect.github.com/actions/upload-artifact/issues/795 ">#795</a>)</li>
<li>See full diff in <a
href="bbbca2ddaa...043fb46d1ahttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=7.0.0&new-version=7.0.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:03:42 +00:00
dependabot[bot]
0980faabd2
chore(deps): Bump peter-evans/create-pull-request from 8.1.0 to 8.1.1 ( #1803 )
...
Bumps
[peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request )
from 8.1.0 to 8.1.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/peter-evans/create-pull-request/releases ">peter-evans/create-pull-request's
releases</a>.</em></p>
<blockquote>
<h2>Create Pull Request v8.1.1</h2>
<h2>What's Changed</h2>
<ul>
<li>build(deps-dev): bump the npm group with 2 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4305 ">peter-evans/create-pull-request#4305</a></li>
<li>build(deps): bump minimatch by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4311 ">peter-evans/create-pull-request#4311</a></li>
<li>build(deps): bump the github-actions group with 2 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4316 ">peter-evans/create-pull-request#4316</a></li>
<li>build(deps): bump <code>@tootallnate/once</code> and
jest-environment-jsdom by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4323 ">peter-evans/create-pull-request#4323</a></li>
<li>build(deps-dev): bump undici from 6.23.0 to 6.24.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4328 ">peter-evans/create-pull-request#4328</a></li>
<li>build(deps-dev): bump flatted from 3.3.1 to 3.4.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4334 ">peter-evans/create-pull-request#4334</a></li>
<li>build(deps): bump picomatch by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4339 ">peter-evans/create-pull-request#4339</a></li>
<li>build(deps-dev): bump handlebars from 4.7.8 to 4.7.9 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4344 ">peter-evans/create-pull-request#4344</a></li>
<li>build(deps-dev): bump the npm group with 3 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4349 ">peter-evans/create-pull-request#4349</a></li>
<li>fix: retry post-creation API calls on 422 eventual consistency
errors by <a
href="https://github.com/peter-evans "><code>@peter-evans</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4356 ">peter-evans/create-pull-request#4356</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/peter-evans/create-pull-request/compare/v8.1.0...v8.1.1 ">https://github.com/peter-evans/create-pull-request/compare/v8.1.0...v8.1.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5f6978faf0https://redirect.github.com/peter-evans/create-pull-request/issues/4356 ">#4356</a>)</li>
<li><a
href="d32e88dac7https://redirect.github.com/peter-evans/create-pull-request/issues/4349 ">#4349</a>)</li>
<li><a
href="8170bccad1https://redirect.github.com/peter-evans/create-pull-request/issues/4344 ">#4344</a>)</li>
<li><a
href="00418193b4https://redirect.github.com/peter-evans/create-pull-request/issues/4339 ">#4339</a>)</li>
<li><a
href="b993918c85https://redirect.github.com/peter-evans/create-pull-request/issues/4334 ">#4334</a>)</li>
<li><a
href="36d7c8468bhttps://redirect.github.com/peter-evans/create-pull-request/issues/4328 ">#4328</a>)</li>
<li><a
href="a45d1fb447https://redirect.github.com/peter-evans/create-pull-request/issues/4323 ">#4323</a>)</li>
<li><a
href="3499eb6183https://redirect.github.com/peter-evans/create-pull-request/issues/4316 ">#4316</a>)</li>
<li><a
href="3f3b473b8chttps://redirect.github.com/peter-evans/create-pull-request/issues/4311 ">#4311</a>)</li>
<li><a
href="6699836a21https://redirect.github.com/peter-evans/create-pull-request/issues/4305 ">#4305</a>)</li>
<li>See full diff in <a
href="c0f553fe54...5f6978faf0https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=peter-evans/create-pull-request&package-manager=github_actions&previous-version=8.1.0&new-version=8.1.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:02:44 +00:00
dependabot[bot]
85b9c18e5d
chore(deps): Bump pmtiles from 4.4.0 to 4.4.1 ( #1801 )
...
Bumps [pmtiles](https://github.com/protomaps/pmtiles ) from 4.4.0 to
4.4.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/protomaps/pmtiles/commits ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:02:21 +00:00
dependabot[bot]
d04d8b6019
chore(deps-dev): Bump postcss from 8.5.8 to 8.5.9 ( #1800 )
...
Bumps [postcss](https://github.com/postcss/postcss ) from 8.5.8 to 8.5.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/postcss/postcss/releases ">postcss's
releases</a>.</em></p>
<blockquote>
<h2>8.5.9</h2>
<ul>
<li>Speed up source map encoding paring in case of the error.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md ">postcss's
changelog</a>.</em></p>
<blockquote>
<h2>8.5.9</h2>
<ul>
<li>Speed up source map encoding paring in case of the error.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="fe88ac29c0c55163249689a6b744066ceb8a46af02ccae6bc32c36658c7cb90600361f04d32cdc69df86cdfff082bec0dd8ehttps://github.com/postcss/postcss/compare/8.5.8...8.5.9 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:02:04 +00:00
dependabot[bot]
863a6d2d78
chore(deps): Bump i18next from 26.0.3 to 26.0.4 ( #1799 )
...
Bumps [i18next](https://github.com/i18next/i18next ) from 26.0.3 to
26.0.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/releases ">i18next's
releases</a>.</em></p>
<blockquote>
<h2>v26.0.4</h2>
<ul>
<li>fix(types): inline formatting options like <code>{{price,
currency(EUR)}}</code> are now correctly resolved to their base format
type (e.g. <code>number</code> for <code>currency</code>) instead of
falling back to <code>string</code> <a
href="https://redirect.github.com/i18next/i18next/issues/2378 ">2378</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next/blob/master/CHANGELOG.md ">i18next's
changelog</a>.</em></p>
<blockquote>
<h2>26.0.4</h2>
<ul>
<li>fix(types): inline formatting options like <code>{{price,
currency(EUR)}}</code> are now correctly resolved to their base format
type (e.g. <code>number</code> for <code>currency</code>) instead of
falling back to <code>string</code> <a
href="https://redirect.github.com/i18next/i18next/issues/2378 ">2378</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9e64c7586acd1f15f70fhttps://redirect.github.com/i18next/i18next/issues/2378 ">#2378</a></li>
<li><a
href="660c785f907d2b6383e329e07bfeadhttps://github.com/i18next/i18next/compare/v26.0.3...v26.0.4 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:01:28 +00:00
dependabot[bot]
fe5281c7e6
chore(deps-dev): Bump typescript-eslint from 8.58.0 to 8.58.1 ( #1798 )
...
Bumps
[typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint )
from 8.58.0 to 8.58.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/typescript-eslint/typescript-eslint/releases ">typescript-eslint's
releases</a>.</em></p>
<blockquote>
<h2>v8.58.1</h2>
<h2>8.58.1 (2026-04-08)</h2>
<h3>🩹 Fixes</h3>
<ul>
<li><strong>eslint-plugin:</strong> [no-unused-vars] fix false negative
for type predicate parameter (<a
href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12004 ">#12004</a>)</li>
</ul>
<h3>❤️ Thank You</h3>
<ul>
<li>MinJae <a
href="https://github.com/Ju-MINJAE "><code>@Ju-MINJAE</code></a></li>
</ul>
<p>See <a
href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.58.1 ">GitHub
Releases</a> for more information.</p>
<p>You can read about our <a
href="https://typescript-eslint.io/users/versioning ">versioning
strategy</a> and <a
href="https://typescript-eslint.io/users/releases ">releases</a> on our
website.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md ">typescript-eslint's
changelog</a>.</em></p>
<blockquote>
<h2>8.58.1 (2026-04-08)</h2>
<p>This was a version bump only for typescript-eslint to align it with
other projects, there were no code changes.</p>
<p>See <a
href="https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.58.1 ">GitHub
Releases</a> for more information.</p>
<p>You can read about our <a
href="https://typescript-eslint.io/users/versioning ">versioning
strategy</a> and <a
href="https://typescript-eslint.io/users/releases ">releases</a> on our
website.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5311ed312ehttps://github.com/typescript-eslint/typescript-eslint/commits/v8.58.1/packages/typescript-eslint ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:01:24 +00:00
dependabot[bot]
118860ca9d
chore(deps-dev): Bump cypress from 15.13.0 to 15.13.1 ( #1797 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [cypress](https://github.com/cypress-io/cypress ) from 15.13.0 to
15.13.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cypress-io/cypress/releases ">cypress's
releases</a>.</em></p>
<blockquote>
<h2>v15.13.1</h2>
<p>Changelog: <a
href="https://docs.cypress.io/app/references/changelog#15-13-1 ">https://docs.cypress.io/app/references/changelog#15-13-1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ab6082263bhttps://redirect.github.com/cypress-io/cypress/issues/33571 ">#33571</a>)</li>
<li><a
href="5fa0657272https://redirect.github.com/cypress-io/cypress/issues/33549 ">#33549</a>)</li>
<li><a
href="0ff43c1789https://redirect.github.com/cypress-io/cypress/issues/33426 ">#33426</a>)</li>
<li><a
href="44fd8b95ddhttps://redirect.github.com/cypress-io/cypress/issues/33552 ">#33552</a>)</li>
<li><a
href="80e20d26d9https://redirect.github.com/cypress-io/cypress/issues/33557 ">#33557</a>)</li>
<li><a
href="532979a63ahttps://redirect.github.com/cypress-io/cypress/issues/33562 ">#33562</a>)</li>
<li><a
href="58bbebcbcdhttps://redirect.github.com/cypress-io/cypress/issues/33544 ">#33544</a>)</li>
<li><a
href="d6114cbfabhttps://redirect.github.com/cypress-io/cypress/issues/33547 ">#33547</a>)</li>
<li><a
href="28441711afhttps://redirect.github.com/cypress-io/cypress/issues/33546 ">#33546</a>)</li>
<li><a
href="60325bb11fhttps://redirect.github.com/cypress-io/cypress/issues/33377 ">#33377</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/cypress-io/cypress/compare/v15.13.0...v15.13.1 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:01:05 +00:00
dependabot[bot]
fe3aa76693
chore(deps-dev): Bump stylelint-config-recommended-scss from 17.0.0 to 17.0.1 ( #1796 )
...
Bumps
[stylelint-config-recommended-scss](https://github.com/stylelint-scss/stylelint-config-recommended-scss )
from 17.0.0 to 17.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/stylelint-scss/stylelint-config-recommended-scss/releases ">stylelint-config-recommended-scss's
releases</a>.</em></p>
<blockquote>
<h2>17.0.1</h2>
<ul>
<li>Fixed: false positive for
<code>no-invalid-position-declaration</code> inside a mixin (<a
href="https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/373 ">#373</a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/stylelint-scss/stylelint-config-recommended-scss/blob/master/CHANGELOG.md ">stylelint-config-recommended-scss's
changelog</a>.</em></p>
<blockquote>
<h1>17.0.1</h1>
<ul>
<li>Fixed: false positive for
<code>no-invalid-position-declaration</code> inside a mixin (<a
href="https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/373 ">#373</a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f71bf575e1fb68cf8ec4https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/400 ">#400</a>)</li>
<li><a
href="d75a1c915bhttps://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/399 ">#399</a>)</li>
<li><a
href="420ded64cehttps://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/397 ">#397</a>)</li>
<li><a
href="0b2aeba333https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/398 ">#398</a>)</li>
<li><a
href="5929d125f8https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/396 ">#396</a>)</li>
<li><a
href="d6d6920c7ahttps://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/395 ">#395</a>)</li>
<li><a
href="7ee58430a5https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/394 ">#394</a>)</li>
<li><a
href="02aab0e106https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/369 ">#369</a>...</li>
<li><a
href="2b66d93e10https://redirect.github.com/stylelint-scss/stylelint-config-recommended-scss/issues/392 ">#392</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/stylelint-scss/stylelint-config-recommended-scss/compare/v17.0.0...v17.0.1 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:00:51 +00:00
dependabot[bot]
2e691afdac
chore(deps-dev): Bump the vitest group with 2 updates ( #1795 )
...
Bumps the vitest group with 2 updates:
[@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8 )
and
[vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest ).
Updates `@vitest/coverage-v8` from 4.1.3 to 4.1.4
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/vitest-dev/vitest/releases "><code>@vitest/coverage-v8</code>'s
releases</a>.</em></p>
<blockquote>
<h2>v4.1.4</h2>
<h3> 🚀 Experimental Features</h3>
<ul>
<li><strong>coverage</strong>:
<ul>
<li>Default to text reporter <code>skipFull</code> if agent detected -
by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10018 ">vitest-dev/vitest#10018</a>
<a href="https://github.com/vitest-dev/vitest/commit/53757804c "><!-- raw
HTML omitted -->(53757)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>experimental</strong>:
<ul>
<li>Expose <code>assertion</code> as a public field - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10095 ">vitest-dev/vitest#10095</a>
<a href="https://github.com/vitest-dev/vitest/commit/a120e3ab8 "><!-- raw
HTML omitted -->(a120e)<!-- raw HTML omitted --></a></li>
<li>Support aria snapshot - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a>,
<strong>Claude Opus 4.6 (1M context)</strong>, <a
href="https://github.com/AriPerkkio "><code>@AriPerkkio</code></a>,
<strong>Codex</strong> and <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/9668 ">vitest-dev/vitest#9668</a>
<a href="https://github.com/vitest-dev/vitest/commit/d4fbb5cc9 "><!-- raw
HTML omitted -->(d4fbb)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>reporter</strong>:
<ul>
<li>Add filterMeta option to json reporter - by <a
href="https://github.com/nami8824 "><code>@nami8824</code></a> and <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10078 ">vitest-dev/vitest#10078</a>
<a href="https://github.com/vitest-dev/vitest/commit/b77de968e "><!-- raw
HTML omitted -->(b77de)<!-- raw HTML omitted --></a></li>
</ul>
</li>
</ul>
<h3> 🐞 Bug Fixes</h3>
<ul>
<li>Use "black" foreground for labeled terminal message to
ensure contrast - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10076 ">vitest-dev/vitest#10076</a>
<a href="https://github.com/vitest-dev/vitest/commit/203f07af7 "><!-- raw
HTML omitted -->(203f0)<!-- raw HTML omitted --></a></li>
<li>Make <code>expect(..., message)</code> consistent as error message
prefix - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10068 ">vitest-dev/vitest#10068</a>
<a href="https://github.com/vitest-dev/vitest/commit/a1b5f0f4f "><!-- raw
HTML omitted -->(a1b5f)<!-- raw HTML omitted --></a></li>
<li>Do not hoist imports whose names match class properties . - by <a
href="https://github.com/SunsetFi "><code>@SunsetFi</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10093 ">vitest-dev/vitest#10093</a>
and <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10094 ">vitest-dev/vitest#10094</a>
<a href="https://github.com/vitest-dev/vitest/commit/0fc4b47e0 "><!-- raw
HTML omitted -->(0fc4b)<!-- raw HTML omitted --></a></li>
<li><strong>browser</strong>: Spread user server options into browser
Vite server in project - by <a
href="https://github.com/GoldStrikeArch "><code>@GoldStrikeArch</code></a>
in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10049 ">vitest-dev/vitest#10049</a>
<a href="https://github.com/vitest-dev/vitest/commit/65c9d55eb "><!-- raw
HTML omitted -->(65c9d)<!-- raw HTML omitted --></a></li>
</ul>
<h5> <a
href="https://github.com/vitest-dev/vitest/compare/v4.1.3...v4.1.4 ">View
changes on GitHub</a></h5>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ac04bac206https://github.com/vitest-dev/vitest/commits/v4.1.4/packages/coverage-v8 ">compare
view</a></li>
</ul>
</details>
<br />
Updates `vitest` from 4.1.3 to 4.1.4
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/vitest-dev/vitest/releases ">vitest's
releases</a>.</em></p>
<blockquote>
<h2>v4.1.4</h2>
<h3> 🚀 Experimental Features</h3>
<ul>
<li><strong>coverage</strong>:
<ul>
<li>Default to text reporter <code>skipFull</code> if agent detected -
by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10018 ">vitest-dev/vitest#10018</a>
<a href="https://github.com/vitest-dev/vitest/commit/53757804c "><!-- raw
HTML omitted -->(53757)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>experimental</strong>:
<ul>
<li>Expose <code>assertion</code> as a public field - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10095 ">vitest-dev/vitest#10095</a>
<a href="https://github.com/vitest-dev/vitest/commit/a120e3ab8 "><!-- raw
HTML omitted -->(a120e)<!-- raw HTML omitted --></a></li>
<li>Support aria snapshot - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a>,
<strong>Claude Opus 4.6 (1M context)</strong>, <a
href="https://github.com/AriPerkkio "><code>@AriPerkkio</code></a>,
<strong>Codex</strong> and <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/9668 ">vitest-dev/vitest#9668</a>
<a href="https://github.com/vitest-dev/vitest/commit/d4fbb5cc9 "><!-- raw
HTML omitted -->(d4fbb)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>reporter</strong>:
<ul>
<li>Add filterMeta option to json reporter - by <a
href="https://github.com/nami8824 "><code>@nami8824</code></a> and <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10078 ">vitest-dev/vitest#10078</a>
<a href="https://github.com/vitest-dev/vitest/commit/b77de968e "><!-- raw
HTML omitted -->(b77de)<!-- raw HTML omitted --></a></li>
</ul>
</li>
</ul>
<h3> 🐞 Bug Fixes</h3>
<ul>
<li>Use "black" foreground for labeled terminal message to
ensure contrast - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10076 ">vitest-dev/vitest#10076</a>
<a href="https://github.com/vitest-dev/vitest/commit/203f07af7 "><!-- raw
HTML omitted -->(203f0)<!-- raw HTML omitted --></a></li>
<li>Make <code>expect(..., message)</code> consistent as error message
prefix - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10068 ">vitest-dev/vitest#10068</a>
<a href="https://github.com/vitest-dev/vitest/commit/a1b5f0f4f "><!-- raw
HTML omitted -->(a1b5f)<!-- raw HTML omitted --></a></li>
<li>Do not hoist imports whose names match class properties . - by <a
href="https://github.com/SunsetFi "><code>@SunsetFi</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10093 ">vitest-dev/vitest#10093</a>
and <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10094 ">vitest-dev/vitest#10094</a>
<a href="https://github.com/vitest-dev/vitest/commit/0fc4b47e0 "><!-- raw
HTML omitted -->(0fc4b)<!-- raw HTML omitted --></a></li>
<li><strong>browser</strong>: Spread user server options into browser
Vite server in project - by <a
href="https://github.com/GoldStrikeArch "><code>@GoldStrikeArch</code></a>
in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10049 ">vitest-dev/vitest#10049</a>
<a href="https://github.com/vitest-dev/vitest/commit/65c9d55eb "><!-- raw
HTML omitted -->(65c9d)<!-- raw HTML omitted --></a></li>
</ul>
<h5> <a
href="https://github.com/vitest-dev/vitest/compare/v4.1.3...v4.1.4 ">View
changes on GitHub</a></h5>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ac04bac20682c858d943https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/8501 ">#8501</a>)</li>
<li><a
href="d4fbb5cc93https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9668 ">#9668</a>)</li>
<li><a
href="b77de968echttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10078 ">#10078</a>)</li>
<li><a
href="a120e3ab8bhttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10095 ">#10095</a>)</li>
<li><a
href="53757804c0https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10018 ">#10018</a>)</li>
<li><a
href="a1b5f0f4fbhttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10068 ">#10068</a>)</li>
<li><a
href="203f07af78https://github.com/vitest-dev/vitest/commits/v4.1.4/packages/vitest ">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 15:00:32 +00:00
dependabot[bot]
f4ba2f4049
chore(deps-dev): Bump the vitest group with 2 updates ( #1793 )
...
Bumps the vitest group with 2 updates:
[@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8 )
and
[vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest ).
Updates `@vitest/coverage-v8` from 4.1.2 to 4.1.3
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/vitest-dev/vitest/releases "><code>@vitest/coverage-v8</code>'s
releases</a>.</em></p>
<blockquote>
<h2>v4.1.3</h2>
<h3> 🚀 Experimental Features</h3>
<ul>
<li>Add <code>experimental.preParse</code> flag - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10070 ">vitest-dev/vitest#10070</a>
<a href="https://github.com/vitest-dev/vitest/commit/7827363bd "><!-- raw
HTML omitted -->(78273)<!-- raw HTML omitted --></a></li>
<li>Support <code>browser.locators.exact</code> option - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10013 ">vitest-dev/vitest#10013</a>
<a href="https://github.com/vitest-dev/vitest/commit/487990a19 "><!-- raw
HTML omitted -->(48799)<!-- raw HTML omitted --></a></li>
<li>Add <code>TestAttachment.bodyEncoding</code> - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9969 ">vitest-dev/vitest#9969</a>
<a href="https://github.com/vitest-dev/vitest/commit/89ca0e254 "><!-- raw
HTML omitted -->(89ca0)<!-- raw HTML omitted --></a></li>
<li>Support custom snapshot matcher - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a>,
<strong>Claude Sonnet 4.6</strong> and <strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9973 ">vitest-dev/vitest#9973</a>
<a href="https://github.com/vitest-dev/vitest/commit/59b0e6411 "><!-- raw
HTML omitted -->(59b0e)<!-- raw HTML omitted --></a></li>
</ul>
<h3> 🐞 Bug Fixes</h3>
<ul>
<li>Advance fake timers with <code>expect.poll</code> interval - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10022 ">vitest-dev/vitest#10022</a>
<a href="https://github.com/vitest-dev/vitest/commit/3f5bfa365 "><!-- raw
HTML omitted -->(3f5bf)<!-- raw HTML omitted --></a></li>
<li>Add <code>@vitest/coverage-v8</code> and
<code>@vitest/coverage-istanbul</code> as optional dependency - by <a
href="https://github.com/alan-agius4 "><code>@alan-agius4</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10025 ">vitest-dev/vitest#10025</a>
<a href="https://github.com/vitest-dev/vitest/commit/146d4f0a0 "><!-- raw
HTML omitted -->(146d4)<!-- raw HTML omitted --></a></li>
<li>Fix <code>defineHelper</code> for webkit async stack trace + update
playwright 1.59.0 - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10036 ">vitest-dev/vitest#10036</a>
<a href="https://github.com/vitest-dev/vitest/commit/5a5fa49fe "><!-- raw
HTML omitted -->(5a5fa)<!-- raw HTML omitted --></a></li>
<li>Fix suite hook throwing errors for unused auto test-scoped fixture
- by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a>
and <strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10035 ">vitest-dev/vitest#10035</a>
<a href="https://github.com/vitest-dev/vitest/commit/398657e8d "><!-- raw
HTML omitted -->(39865)<!-- raw HTML omitted --></a></li>
<li><strong>expect</strong>:
<ul>
<li>Remove <code>JestExtendError.context</code> from verbose error
reporting - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9983 ">vitest-dev/vitest#9983</a>
<a href="https://github.com/vitest-dev/vitest/commit/66751c9e8 "><!-- raw
HTML omitted -->(66751)<!-- raw HTML omitted --></a></li>
<li>Don't leak "runner" types - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10004 ">vitest-dev/vitest#10004</a>
<a href="https://github.com/vitest-dev/vitest/commit/ec2045543 "><!-- raw
HTML omitted -->(ec204)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>snapshot</strong>:
<ul>
<li>Fix flagging obsolete snapshots for snapshot properties mismatch -
by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9986 ">vitest-dev/vitest#9986</a>
<a href="https://github.com/vitest-dev/vitest/commit/6b869156b "><!-- raw
HTML omitted -->(6b869)<!-- raw HTML omitted --></a></li>
<li>Export custom snapshot matcher helper from <code>vitest</code> -
by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10042 ">vitest-dev/vitest#10042</a>
<a href="https://github.com/vitest-dev/vitest/commit/691d341fd "><!-- raw
HTML omitted -->(691d3)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>ui</strong>:
<ul>
<li>Don't leak vite types - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10005 ">vitest-dev/vitest#10005</a>
<a href="https://github.com/vitest-dev/vitest/commit/fdff1bf9a "><!-- raw
HTML omitted -->(fdff1)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>vm</strong>:
<ul>
<li>Fix external module resolve error with deps optimizer query - by
<a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10024 ">vitest-dev/vitest#10024</a>
<a href="https://github.com/vitest-dev/vitest/commit/9dbf47786 "><!-- raw
HTML omitted -->(9dbf4)<!-- raw HTML omitted --></a></li>
</ul>
</li>
</ul>
<h5> <a
href="https://github.com/vitest-dev/vitest/compare/v4.1.2...v4.1.3 ">View
changes on GitHub</a></h5>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2dc0d62eafhttps://github.com/vitest-dev/vitest/commits/v4.1.3/packages/coverage-v8 ">compare
view</a></li>
</ul>
</details>
<br />
Updates `vitest` from 4.1.2 to 4.1.3
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/vitest-dev/vitest/releases ">vitest's
releases</a>.</em></p>
<blockquote>
<h2>v4.1.3</h2>
<h3> 🚀 Experimental Features</h3>
<ul>
<li>Add <code>experimental.preParse</code> flag - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10070 ">vitest-dev/vitest#10070</a>
<a href="https://github.com/vitest-dev/vitest/commit/7827363bd "><!-- raw
HTML omitted -->(78273)<!-- raw HTML omitted --></a></li>
<li>Support <code>browser.locators.exact</code> option - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10013 ">vitest-dev/vitest#10013</a>
<a href="https://github.com/vitest-dev/vitest/commit/487990a19 "><!-- raw
HTML omitted -->(48799)<!-- raw HTML omitted --></a></li>
<li>Add <code>TestAttachment.bodyEncoding</code> - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9969 ">vitest-dev/vitest#9969</a>
<a href="https://github.com/vitest-dev/vitest/commit/89ca0e254 "><!-- raw
HTML omitted -->(89ca0)<!-- raw HTML omitted --></a></li>
<li>Support custom snapshot matcher - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a>,
<strong>Claude Sonnet 4.6</strong> and <strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9973 ">vitest-dev/vitest#9973</a>
<a href="https://github.com/vitest-dev/vitest/commit/59b0e6411 "><!-- raw
HTML omitted -->(59b0e)<!-- raw HTML omitted --></a></li>
</ul>
<h3> 🐞 Bug Fixes</h3>
<ul>
<li>Advance fake timers with <code>expect.poll</code> interval - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10022 ">vitest-dev/vitest#10022</a>
<a href="https://github.com/vitest-dev/vitest/commit/3f5bfa365 "><!-- raw
HTML omitted -->(3f5bf)<!-- raw HTML omitted --></a></li>
<li>Add <code>@vitest/coverage-v8</code> and
<code>@vitest/coverage-istanbul</code> as optional dependency - by <a
href="https://github.com/alan-agius4 "><code>@alan-agius4</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10025 ">vitest-dev/vitest#10025</a>
<a href="https://github.com/vitest-dev/vitest/commit/146d4f0a0 "><!-- raw
HTML omitted -->(146d4)<!-- raw HTML omitted --></a></li>
<li>Fix <code>defineHelper</code> for webkit async stack trace + update
playwright 1.59.0 - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10036 ">vitest-dev/vitest#10036</a>
<a href="https://github.com/vitest-dev/vitest/commit/5a5fa49fe "><!-- raw
HTML omitted -->(5a5fa)<!-- raw HTML omitted --></a></li>
<li>Fix suite hook throwing errors for unused auto test-scoped fixture
- by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a>
and <strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10035 ">vitest-dev/vitest#10035</a>
<a href="https://github.com/vitest-dev/vitest/commit/398657e8d "><!-- raw
HTML omitted -->(39865)<!-- raw HTML omitted --></a></li>
<li><strong>expect</strong>:
<ul>
<li>Remove <code>JestExtendError.context</code> from verbose error
reporting - by <a
href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9983 ">vitest-dev/vitest#9983</a>
<a href="https://github.com/vitest-dev/vitest/commit/66751c9e8 "><!-- raw
HTML omitted -->(66751)<!-- raw HTML omitted --></a></li>
<li>Don't leak "runner" types - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10004 ">vitest-dev/vitest#10004</a>
<a href="https://github.com/vitest-dev/vitest/commit/ec2045543 "><!-- raw
HTML omitted -->(ec204)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>snapshot</strong>:
<ul>
<li>Fix flagging obsolete snapshots for snapshot properties mismatch -
by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/9986 ">vitest-dev/vitest#9986</a>
<a href="https://github.com/vitest-dev/vitest/commit/6b869156b "><!-- raw
HTML omitted -->(6b869)<!-- raw HTML omitted --></a></li>
<li>Export custom snapshot matcher helper from <code>vitest</code> -
by <a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Codex</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10042 ">vitest-dev/vitest#10042</a>
<a href="https://github.com/vitest-dev/vitest/commit/691d341fd "><!-- raw
HTML omitted -->(691d3)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>ui</strong>:
<ul>
<li>Don't leak vite types - by <a
href="https://github.com/sheremet-va "><code>@sheremet-va</code></a> in
<a
href="https://redirect.github.com/vitest-dev/vitest/issues/10005 ">vitest-dev/vitest#10005</a>
<a href="https://github.com/vitest-dev/vitest/commit/fdff1bf9a "><!-- raw
HTML omitted -->(fdff1)<!-- raw HTML omitted --></a></li>
</ul>
</li>
<li><strong>vm</strong>:
<ul>
<li>Fix external module resolve error with deps optimizer query - by
<a href="https://github.com/hi-ogawa "><code>@hi-ogawa</code></a> and
<strong>Claude Sonnet 4.6</strong> in <a
href="https://redirect.github.com/vitest-dev/vitest/issues/10024 ">vitest-dev/vitest#10024</a>
<a href="https://github.com/vitest-dev/vitest/commit/9dbf47786 "><!-- raw
HTML omitted -->(9dbf4)<!-- raw HTML omitted --></a></li>
</ul>
</li>
</ul>
<h5> <a
href="https://github.com/vitest-dev/vitest/compare/v4.1.2...v4.1.3 ">View
changes on GitHub</a></h5>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2dc0d62eaf7827363bdahttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10070 ">#10070</a>)</li>
<li><a
href="691d341fd3https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10042 ">#10042</a>)</li>
<li><a
href="59b0e6411bhttps://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/9973 ">#9973</a>)</li>
<li><a
href="487990a191https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10013 ">#10013</a>)</li>
<li><a
href="146d4f0a033f5bfa3658https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10022 ">#10022</a>)</li>
<li><a
href="9dbf477864https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10024 ">#10024</a>)</li>
<li><a
href="ec20455431https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/10004 ">#10004</a>)</li>
<li><a
href="66751c9e82https://github.com/vitest-dev/vitest/commits/v4.1.3/packages/vitest ">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-10 13:52:18 +00:00
dependabot[bot]
1acbfd179d
chore(deps-dev): Bump i18next-cli from 1.51.6 to 1.51.7 ( #1794 )
...
Bumps [i18next-cli](https://github.com/i18next/i18next-cli ) from 1.51.6
to 1.51.7.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md ">i18next-cli's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.51.6...v1.51.7 ">1.51.7</a>
- 2026-04-07</h2>
<ul>
<li>Fix <code>--sync-all</code> not clearing secondary locale
translations when
<code>mergeNamespaces</code> is enabled. The <code>syncAll</code> flag
was not being passed
through in the merged namespaces code path.
Fixes <a
href="https://redirect.github.com/i18next/i18next-cli/issues/233 ">#233</a>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2a1998d5e203cb9013c7https://redirect.github.com/i18next/i18next-cli/issues/233 ">#233</a></li>
<li>See full diff in <a
href="https://github.com/i18next/i18next-cli/compare/v1.51.6...v1.51.7 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-10 13:52:01 +00:00
dependabot[bot]
32b6e53eaf
chore(deps-dev): Bump eslint from 10.1.0 to 10.2.0 ( #1790 )
...
Bumps [eslint](https://github.com/eslint/eslint ) from 10.1.0 to 10.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/eslint/eslint/releases ">eslint's
releases</a>.</em></p>
<blockquote>
<h2>v10.2.0</h2>
<h2>Features</h2>
<ul>
<li><a
href="586ec2f430https://redirect.github.com/eslint/eslint/issues/20571 ">#20571</a>)
(Copilot)</li>
<li><a
href="14207dee39https://redirect.github.com/eslint/eslint/issues/20675 ">#20675</a>)
(Pixel998)</li>
<li><a
href="bbb2c93a2bhttps://redirect.github.com/eslint/eslint/issues/20672 ">#20672</a>)
(Pixel998)</li>
</ul>
<h2>Bug Fixes</h2>
<ul>
<li><a
href="542cb3e644https://redirect.github.com/eslint/eslint/issues/20714 ">#20714</a>)
(Francesco Trotta)</li>
</ul>
<h2>Documentation</h2>
<ul>
<li><a
href="a2af743ea6https://redirect.github.com/eslint/eslint/issues/20712 ">#20712</a>)
(Francesco Trotta)</li>
<li><a
href="845f23f1375fbcf5958bhttps://redirect.github.com/eslint/eslint/issues/20477 ">#20477</a>)
(Tanuj Kanti)</li>
<li><a
href="8702a47465ddeaded2ab2b44966912https://redirect.github.com/eslint/eslint/issues/20269 ">#20269</a>)
(Milos Djermanovic)</li>
<li><a
href="eab65c700ehttps://redirect.github.com/eslint/eslint/issues/20664 ">#20664</a>)
(루밀LuMir)</li>
<li><a
href="3e4a29903bhttps://redirect.github.com/eslint/eslint/issues/20660 ">#20660</a>)
(Milos Djermanovic)</li>
</ul>
<h2>Chores</h2>
<ul>
<li><a
href="8120e30f83https://redirect.github.com/eslint/eslint/issues/20679 ">#20679</a>)
(kuldeep kumar)</li>
<li><a
href="46e8469786https://redirect.github.com/eslint/eslint/issues/20697 ">#20697</a>)
(renovate[bot])</li>
<li><a
href="01ed3aa684https://redirect.github.com/eslint/eslint/issues/20622 ">#20622</a>)
(Manish chaudhary)</li>
<li><a
href="811f4930f8https://redirect.github.com/eslint/eslint/issues/20667 ">#20667</a>)
(Milos Djermanovic)</li>
<li><a
href="6b86fcfc5chttps://redirect.github.com/eslint/eslint/issues/20663 ">#20663</a>)
(renovate[bot])</li>
<li><a
href="632c4f83bfhttps://redirect.github.com/eslint/eslint/issues/20662 ">#20662</a>)
(루밀LuMir)</li>
<li><a
href="b0b0f21927https://redirect.github.com/eslint/eslint/issues/20659 ">#20659</a>)
(Milos Djermanovic)</li>
<li><a
href="228a2dd4b2https://redirect.github.com/eslint/eslint/issues/20661 ">#20661</a>)
(Milos Djermanovic)</li>
<li><a
href="3ab4d7e244https://redirect.github.com/eslint/eslint/issues/20645 ">#20645</a>)
(kuldeep kumar)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="000128c2921988fad70e542cb3e644https://redirect.github.com/eslint/eslint/issues/20714 ">#20714</a>)</li>
<li><a
href="a2af743ea6https://redirect.github.com/eslint/eslint/issues/20712 ">#20712</a>)</li>
<li><a
href="845f23f1375fbcf5958bhttps://redirect.github.com/eslint/eslint/issues/20477 ">#20477</a>)</li>
<li><a
href="8702a47465ddeaded2ab8120e30f83https://redirect.github.com/eslint/eslint/issues/20679 ">#20679</a>)</li>
<li><a
href="46e8469786https://redirect.github.com/eslint/eslint/issues/20697 ">#20697</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/eslint/eslint/compare/v10.1.0...v10.2.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-07 13:52:44 +00:00
dependabot[bot]
8b553998b2
chore(deps-dev): Bump vite from 7.3.1 to 7.3.2 ( #1789 )
...
Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite )
from 7.3.1 to 7.3.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/vitejs/vite/releases ">vite's
releases</a>.</em></p>
<blockquote>
<h2>v7.3.2</h2>
<p>Please refer to <a
href="https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md ">CHANGELOG.md</a>
for details.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md ">vite's
changelog</a>.</em></p>
<blockquote>
<h2><!-- raw HTML omitted --><a
href="https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2 ">7.3.2</a>
(2026-04-06)<!-- raw HTML omitted --></h2>
<h3>Bug Fixes</h3>
<ul>
<li>avoid path traversal with optimize deps sourcemap handler (<a
href="https://redirect.github.com/vitejs/vite/issues/22161 ">#22161</a>)
(<a
href="09d8c903bdhttps://redirect.github.com/vitejs/vite/issues/22159 ">#22159</a>,
apply server.fs check to env transport (<a
href="https://redirect.github.com/vitejs/vite/issues/22162 ">#22162</a>)
(<a
href="19db0f29c3https://redirect.github.com/vitejs/vite/issues/22160 ">#22160</a>)
(<a
href="f8103cc946cc383e07b609d8c903bdhttps://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161 ">#22161</a>)</li>
<li><a
href="f8103cc946https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160 ">#22160</a>)</li>
<li><a
href="19db0f29c3https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159 ">#22159</a>,
apply server.fs check to env transport (<a
href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162 ">#22162</a>)</li>
<li>See full diff in <a
href="https://github.com/vitejs/vite/commits/v7.3.2/packages/vite ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/maplibre/maputnik/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-06 22:13:22 +00:00
dependabot[bot]
accc21dc78
chore(deps): Bump cypress-io/github-action from 7.1.8 to 7.1.9 ( #1787 )
...
Bumps
[cypress-io/github-action](https://github.com/cypress-io/github-action )
from 7.1.8 to 7.1.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cypress-io/github-action/releases ">cypress-io/github-action's
releases</a>.</em></p>
<blockquote>
<h2>v7.1.9</h2>
<h2><a
href="https://github.com/cypress-io/github-action/compare/v7.1.8...v7.1.9 ">7.1.9</a>
(2026-03-31)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> update vulnerable transient dependencies (<a
href="https://redirect.github.com/cypress-io/github-action/issues/1714 ">#1714</a>)
(<a
href="783cb3f079783cb3f079https://redirect.github.com/cypress-io/github-action/issues/1714 ">#1714</a>)</li>
<li><a
href="68be0d46e3https://redirect.github.com/cypress-io/github-action/issues/1713 ">#1713</a>)</li>
<li><a
href="9ef8654c3dhttps://redirect.github.com/cypress-io/github-action/issues/1712 ">#1712</a>)</li>
<li><a
href="1f17f4ac94https://redirect.github.com/cypress-io/github-action/issues/1710 ">#1710</a>)</li>
<li><a
href="7490f8fdeehttps://redirect.github.com/cypress-io/github-action/issues/1708 ">#1708</a>)</li>
<li>See full diff in <a
href="4c06c48f3f...783cb3f079https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cypress-io/github-action&package-manager=github_actions&previous-version=7.1.8&new-version=7.1.9 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-06 13:52:57 +00:00
dependabot[bot]
97725242c1
chore(deps): Bump docker/login-action from 4.0.0 to 4.1.0 ( #1786 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from
4.0.0 to 4.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/login-action/releases ">docker/login-action's
releases</a>.</em></p>
<blockquote>
<h2>v4.1.0</h2>
<ul>
<li>Fix scoped Docker Hub cleanup path when registry is omitted by <a
href="https://github.com/crazy-max "><code>@crazy-max</code></a> in <a
href="https://redirect.github.com/docker/login-action/pull/945 ">docker/login-action#945</a></li>
<li>Bump <code>@aws-sdk/client-ecr</code> and
<code>@aws-sdk/client-ecr-public</code> to 3.1020.0 in <a
href="https://redirect.github.com/docker/login-action/pull/930 ">docker/login-action#930</a></li>
<li>Bump <code>@docker/actions-toolkit</code> from 0.77.0 to 0.86.0 in
<a
href="https://redirect.github.com/docker/login-action/pull/932 ">docker/login-action#932</a>
<a
href="https://redirect.github.com/docker/login-action/pull/936 ">docker/login-action#936</a></li>
<li>Bump brace-expansion from 1.1.12 to 1.1.13 in <a
href="https://redirect.github.com/docker/login-action/pull/952 ">docker/login-action#952</a></li>
<li>Bump fast-xml-parser from 5.3.4 to 5.3.6 in <a
href="https://redirect.github.com/docker/login-action/pull/942 ">docker/login-action#942</a></li>
<li>Bump flatted from 3.3.3 to 3.4.2 in <a
href="https://redirect.github.com/docker/login-action/pull/944 ">docker/login-action#944</a></li>
<li>Bump glob from 10.3.12 to 10.5.0 in <a
href="https://redirect.github.com/docker/login-action/pull/940 ">docker/login-action#940</a></li>
<li>Bump handlebars from 4.7.8 to 4.7.9 in <a
href="https://redirect.github.com/docker/login-action/pull/949 ">docker/login-action#949</a></li>
<li>Bump http-proxy-agent and https-proxy-agent to 8.0.0 in <a
href="https://redirect.github.com/docker/login-action/pull/937 ">docker/login-action#937</a></li>
<li>Bump lodash from 4.17.23 to 4.18.1 in <a
href="https://redirect.github.com/docker/login-action/pull/958 ">docker/login-action#958</a></li>
<li>Bump minimatch from 3.1.2 to 3.1.5 in <a
href="https://redirect.github.com/docker/login-action/pull/941 ">docker/login-action#941</a></li>
<li>Bump picomatch from 4.0.3 to 4.0.4 in <a
href="https://redirect.github.com/docker/login-action/pull/948 ">docker/login-action#948</a></li>
<li>Bump undici from 6.23.0 to 6.24.1 in <a
href="https://redirect.github.com/docker/login-action/pull/938 ">docker/login-action#938</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/login-action/compare/v4.0.0...v4.1.0 ">https://github.com/docker/login-action/compare/v4.0.0...v4.1.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4907a6ddechttps://redirect.github.com/docker/login-action/issues/930 ">#930</a>
from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...</li>
<li><a
href="1e233e691a6c24ead680ee034d7094https://redirect.github.com/docker/login-action/issues/958 ">#958</a>
from docker/dependabot/npm_and_yarn/lodash-4.18.1</li>
<li><a
href="1527209db9https://redirect.github.com/docker/login-action/issues/937 ">#937</a>
from docker/dependabot/npm_and_yarn/proxy-agent-depen...</li>
<li><a
href="d39362aba4a6f092b56860953f0bed62c688590fhttps://redirect.github.com/docker/login-action/issues/936 ">#936</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="102c0e6729b45d80f862...4907a6ddechttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=4.0.0&new-version=4.1.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-06 13:52:47 +00:00
dependabot[bot]
93d947aa95
chore(deps-dev): Bump i18next-cli from 1.51.5 to 1.51.6 ( #1788 )
...
Bumps [i18next-cli](https://github.com/i18next/i18next-cli ) from 1.51.5
to 1.51.6.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/i18next/i18next-cli/blob/main/CHANGELOG.md ">i18next-cli's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/i18next/i18next-cli/compare/v1.51.5...v1.51.6 ">1.51.6</a>
- 2026-04-03</h2>
<ul>
<li>Add <code>getT</code> and <code>useT</code> to the default
<code>useTranslationNames</code> so that
<code>next-i18next</code> v16 App Router hooks are recognized out of the
box.
Keys from <code>useT('ns')</code> and <code>await getT('ns')</code> are
now correctly
extracted into the specified namespace instead of falling back to
<code>defaultNS</code>.
Fixes <a
href="https://redirect.github.com/i18next/i18next-cli/issues/232 ">#232</a>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2828baf61f0d6e5930f60f6f5b3148274164840fhttps://redirect.github.com/i18next/i18next-cli/issues/231 ">#231</a></li>
<li>See full diff in <a
href="https://github.com/i18next/i18next-cli/compare/v1.51.5...v1.51.6 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-06 13:52:28 +00:00
dependabot[bot]
076f905273
chore(deps): Bump @codemirror/view from 6.40.0 to 6.41.0 ( #1784 )
...
Bumps [@codemirror/view](https://github.com/codemirror/view ) from 6.40.0
to 6.41.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/codemirror/view/blob/main/CHANGELOG.md "><code>@codemirror/view</code>'s
changelog</a>.</em></p>
<blockquote>
<h2>6.41.0 (2026-04-01)</h2>
<h3>Bug fixes</h3>
<p>Fix an issue where <code>EditorView.posAtCoords</code> could
incorrectly return a position near a higher element on the line, in
mixed-font-size lines.</p>
<p>Expand the workaround for the Webkit bug that causes nonexistent
selections to stay visible to be active on non-Safari Webkit
browsers.</p>
<h3>New features</h3>
<p>The new <code>EditorView.cursorScrollMargin</code> facet can now be
used to configure the extra space used when scrolling the cursor into
view.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a0a5ed946cc834ebf42449d72c43f64935d2495fed7d6253a0c3770d3f0ahttps://github.com/codemirror/view/compare/6.40.0...6.41.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-06 13:52:12 +00:00
dependabot[bot]
64930ad109
chore(deps): Bump maplibre-gl from 5.21.1 to 5.22.0 ( #1785 )
...
Bumps [maplibre-gl](https://github.com/maplibre/maplibre-gl-js ) from
5.21.1 to 5.22.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/maplibre/maplibre-gl-js/releases ">maplibre-gl's
releases</a>.</em></p>
<blockquote>
<h2>v5.22.0</h2>
<h3>✨ Features and improvements</h3>
<ul>
<li>Make <code>line-cap</code>, <code>line-miter-limit</code>, and
<code>line-round-limit</code> data-driven properties, allowing
per-feature values (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7351 ">#7351</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>GPU performance optimization: early culling of transparent symbols
in vertex shaders (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7364 ">#7364</a>)
(by <a
href="https://github.com/xavierjs "><code>@xavierjs</code></a>)</li>
<li>Add example showing how to measure map performance using built-in
events (<code>load</code>, <code>idle</code>, <code>render</code>) (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7077 ">#7077</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>UX: Clarify error message language so if layout and paint properties
are confused in <code>setPaintProperty</code> or
<code>setLayoutProperty</code> (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/6954 ">#6954</a>)
(by <a
href="https://github.com/Willjfield "><code>@Willjfield</code></a> and
<a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
</ul>
<h3>🐞 Bug fixes</h3>
<ul>
<li>Fix startup crash caused by a stale async style load completing
after the style was cleared or replaced (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7377 ">#7377</a>)</li>
<li>Make <code>fitBounds</code> and <code>fitScreenCoordinates</code>
respect the <code>zoomSnap</code> map option by snapping the zoom level
down to keep bounds fully visible (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7332 ">#7332</a>
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Make <code>jumpTo</code>, <code>easeTo</code>, and
<code>flyTo</code> respect the <code>zoomSnap</code> map option by
snapping the zoom level to the nearest valid increment (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7333 ">#7333</a>
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Fix <code>setState</code> crash when switching styles while globe
projection is active (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7314 ">#7314</a>)
(by <a
href="https://github.com/ashwinuae "><code>@ashwinuae</code></a>)</li>
<li>Prevent crashes when calling <code>map.remove()</code> immediately
after creation by canceling in-flight style URL loads (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7368 ">#7368</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Fixed symbol collision flickering by adding tolerance to GridIndex
AABB comparison (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7360 ">#7360</a>)
(by <a
href="https://github.com/kkokkojeong "><code>@kkokkoejong</code></a>)</li>
<li>Fix <code>fitBounds</code> ignoring <code>maxZoom</code> option in
<code>vertical-perspective</code> projection (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7372 ">#7372</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Prevent stale async style loads from completing after style clear
(<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7378 ">#7378</a>)
(by <a
href="https://github.com/Lievesley "><code>@Lievesley</code></a>)</li>
<li>Fix broken example for <code>fill-pattern</code> (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7326 ">#7326</a>)
(by <a href="https://github.com/k-yle "><code>@k-yle</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/maplibre/maplibre-gl-js/blob/main/CHANGELOG.md ">maplibre-gl's
changelog</a>.</em></p>
<blockquote>
<h2>5.22.0</h2>
<h3>✨ Features and improvements</h3>
<ul>
<li>Make <code>line-cap</code>, <code>line-miter-limit</code>, and
<code>line-round-limit</code> data-driven properties, allowing
per-feature values (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7351 ">#7351</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>GPU performance optimization: early culling of transparent symbols
in vertex shaders (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7364 ">#7364</a>)
(by <a
href="https://github.com/xavierjs "><code>@xavierjs</code></a>)</li>
<li>Add example showing how to measure map performance using built-in
events (<code>load</code>, <code>idle</code>, <code>render</code>) (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7077 ">#7077</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>UX: Clarify error message language so if layout and paint properties
are confused in <code>setPaintProperty</code> or
<code>setLayoutProperty</code> (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/6954 ">#6954</a>)
(by <a
href="https://github.com/Willjfield "><code>@Willjfield</code></a> and
<a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
</ul>
<h3>🐞 Bug fixes</h3>
<ul>
<li>Fix startup crash caused by a stale async style load completing
after the style was cleared or replaced (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7377 ">#7377</a>)</li>
<li>Make <code>fitBounds</code> and <code>fitScreenCoordinates</code>
respect the <code>zoomSnap</code> map option by snapping the zoom level
down to keep bounds fully visible (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7332 ">#7332</a>
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Make <code>jumpTo</code>, <code>easeTo</code>, and
<code>flyTo</code> respect the <code>zoomSnap</code> map option by
snapping the zoom level to the nearest valid increment (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7333 ">#7333</a>
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Fix <code>setState</code> crash when switching styles while globe
projection is active (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7314 ">#7314</a>)
(by <a
href="https://github.com/ashwinuae "><code>@ashwinuae</code></a>)</li>
<li>Prevent crashes when calling <code>map.remove()</code> immediately
after creation by canceling in-flight style URL loads (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7368 ">#7368</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Fixed symbol collision flickering by adding tolerance to GridIndex
AABB comparison (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7360 ">#7360</a>)
(by <a
href="https://github.com/kkokkojeong "><code>@kkokkoejong</code></a>)</li>
<li>Fix <code>fitBounds</code> ignoring <code>maxZoom</code> option in
<code>vertical-perspective</code> projection (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/issues/7372 ">#7372</a>)
(by <a
href="https://github.com/CommanderStorm "><code>@CommanderStorm</code></a>)</li>
<li>Prevent stale async style loads from completing after style clear
(<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7378 ">#7378</a>)
(by <a
href="https://github.com/Lievesley "><code>@Lievesley</code></a>)</li>
<li>Fix broken example for <code>fill-pattern</code> (<a
href="https://redirect.github.com/maplibre/maplibre-gl-js/pull/7326 ">#7326</a>)
(by <a href="https://github.com/k-yle "><code>@k-yle</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="48caed8321https://redirect.github.com/maplibre/maplibre-gl-js/issues/7391 ">#7391</a>)</li>
<li><a
href="c3da26652dhttps://redirect.github.com/maplibre/maplibre-gl-js/issues/7393 ">#7393</a>)</li>
<li><a
href="d74e957f1dhttps://redirect.github.com/maplibre/maplibre-gl-js/issues/7368 ">#7368</a>)</li>
<li><a
href="de06a24767https://redirect.github.com/maplibre/maplibre-gl-js/issues/7388 ">#7388</a>)</li>
<li><a
href="fb151e4aea7951eec48b914cde4776https://redirect.github.com/maplibre/maplibre-gl-js/issues/7357 ">#7357</a>)</li>
<li><a
href="a84c293506https://redirect.github.com/maplibre/maplibre-gl-js/issues/7389 ">#7389</a>)</li>
<li><a
href="931199b451https://redirect.github.com/maplibre/maplibre-gl-js/issues/7387 ">#7387</a>)</li>
<li><a
href="44c25c14e8https://redirect.github.com/maplibre/maplibre-gl-js/issues/7386 ">#7386</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/maplibre/maplibre-gl-js/compare/v5.21.1...v5.22.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-06 13:52:07 +00:00
dependabot[bot]
60e571e88d
chore(deps): Bump slugify from 1.6.8 to 1.6.9 ( #1783 )
...
Bumps [slugify](https://github.com/simov/slugify ) from 1.6.8 to 1.6.9.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/simov/slugify/blob/master/CHANGELOG.md ">slugify's
changelog</a>.</em></p>
<blockquote>
<h3>v1.6.9 (2026-04-01)</h3>
<ul>
<li><a
href="https://redirect.github.com/simov/slugify/pull/171 ">#171</a> fix:
correct CommonJS export for "module": "node16" + ESM
(171) (<a
href="https://github.com/karlhorky "><code>@karlhorky</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/simov/slugify/commits ">compare view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~joshuakgoldberg ">joshuakgoldberg</a>, a new
releaser for slugify since your current version.</p>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-06 13:51:42 +00:00
dependabot[bot]