Skip to content

chore(deps): bump the npm_and_yarn group across 1 directory with 24 updates#99

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm_and_yarn-71289e4025
Closed

chore(deps): bump the npm_and_yarn group across 1 directory with 24 updates#99
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/npm_and_yarn-71289e4025

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown
Contributor

Bumps the npm_and_yarn group with 19 updates in the / directory:

Package From To
storybook 10.2.8 10.2.10
vite 7.3.1 7.3.5
vitest 4.0.18 4.1.0
brace-expansion 5.0.2 5.0.7
minimatch 10.2.0 10.2.5
ajv 8.17.1 8.20.0
hono 4.11.9 4.12.27
srvx 0.9.6 0.11.17
srvx 0.11.4 0.11.17
nitro 3.0.1-alpha.1 3.0.260610-beta
@tanstack/start-server-core 1.159.9 1.169.15
esbuild 0.25.12 0.28.1
express-rate-limit 8.2.1 8.5.2
fast-uri 3.1.0 3.1.3
flatted 3.3.3 3.4.2
lodash 4.17.21 4.18.1
qs 6.14.2 6.15.3
shell-quote 1.8.3 1.9.0
undici 7.22.0 7.28.0
ws 8.18.3 8.21.0

Updates storybook from 10.2.8 to 10.2.10

Release notes

Sourced from storybook's releases.

v10.2.10

10.2.10

v10.2.9

10.2.9

Changelog

Sourced from storybook's changelog.

10.2.10

10.2.9

Commits
  • c812573 Bump version from "10.2.9" to "10.2.10" [skip ci]
  • fd275fb Merge pull request #33820 from storybookjs/harden-websocket-security
  • 4cdde82 Bump version from "10.2.8" to "10.2.9" [skip ci]
  • See full diff in compare view

Updates vite from 7.3.1 to 7.3.5

Release notes

Sourced from vite's releases.

v7.3.5

Please refer to CHANGELOG.md for details.

v7.3.3

Please refer to CHANGELOG.md for details.

v7.3.2

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

7.3.5 (2026-06-01)

Bug Fixes

Miscellaneous Chores

7.3.4 (2026-06-01)

Bug Fixes

7.3.3 (2026-05-07)

Bug Fixes

7.3.2 (2026-04-06)

Bug Fixes

Commits

Updates vitest from 4.0.18 to 4.1.0

Release notes

Sourced from vitest's releases.

v4.1.0

Vitest 4.1 is out!

This release page lists all changes made to the project during the 4.1 beta. To get a review of all the new features, read our blog post.

   🚀 Features

... (truncated)

Commits
  • 4150b91 chore: release v4.1.0
  • 1de0aa2 fix: correctly identify concurrent test during static analysis (#9846)
  • c3cac1c fix: use isAgent check, not just TTY, for watch mode (#9841)
  • eab68ba chore(deps): update all non-major dependencies (#9824)
  • 031f02a fix: allow catch/finally for async assertion (#9827)
  • 3e9e096 feat(reporters): add agent reporter to reduce ai agent token usage (#9779)
  • 0c2c013 chore: release v4.1.0-beta.6
  • 8181e06 fix: hideSkippedTests should not hide test.todo (fix #9562) (#9781)
  • a8216b0 fix: manual and redirect mock shouldn't load or transform original module...
  • 689a22a fix(browser): types of getCDPSession and cdp() (#9716)
  • Additional commits viewable in compare view

Updates brace-expansion from 5.0.2 to 5.0.7

Commits

Updates minimatch from 10.2.0 to 10.2.5

Commits

Updates ajv from 8.17.1 to 8.20.0

Release notes

Sourced from ajv's releases.

v8.20.0

What's Changed

Full Changelog: ajv-validator/ajv@v8.19.0...v8.20.0

v8.19.0

What's Changed

Full Changelog: ajv-validator/ajv@v8.18.0...v8.19.0

v8.18.0

What's Changed

New Contributors

Full Changelog: ajv-validator/ajv@v8.17.1...v8.18.0

Commits

Updates hono from 4.11.9 to 4.12.27

Release notes

Sourced from hono's releases.

v4.12.27

Security fixes

This release includes fixes for the following security issues:

hono/jsx does not isolate context per request

Affects: hono/jsx, hono/jsx-renderer. During SSR, context was stored process-wide instead of per request, so useContext()/useRequestContext() read after an await in an async component could return another concurrent request's value — leading to cross-request data disclosure or authorization checks against the wrong request. GHSA-hvrm-45r6-mjfj

Server-Side XSS via JSX escaping bypass in cx()

Affects: hono/css. cx() marked its composed class name as already-escaped without escaping the input, so untrusted input passed as a class name could break out of the JSX class attribute during SSR and inject markup (XSS). GHSA-w62v-xxxg-mg59

API Gateway v1 adapter can drop a repeated request header value

Affects: hono/aws-lambda. The API Gateway v1 (and VPC Lattice) adapter de-duplicated repeated header values by substring instead of exact match, dropping a value that is a substring of another (e.g. 203.0.113.1 dropped when 203.0.113.10 is present) — affecting logic such as X-Forwarded-For-based IP restriction. GHSA-xgm2-5f3f-mvvc


Users of hono/jsx/hono/jsx-renderer, hono/css (cx()), or the hono/aws-lambda API Gateway v1 / VPC Lattice adapters are encouraged to upgrade.

v4.12.26

What's Changed

Full Changelog: honojs/hono@v4.12.25...v4.12.26

v4.12.25

Security fixes

This release includes fixes for the following security issues:

CORS Middleware reflects any Origin with credentials when origin defaults to the wildcard

Affects: hono/cors. Fixes the wildcard origin reflecting the request Origin and sending Access-Control-Allow-Credentials: true when credentials: true is set without an explicit origin, where any site a logged-in user visited could make credentialed cross-origin requests and read responses from cookie-authenticated endpoints. GHSA-88fw-hqm2-52qc

Body Limit Middleware can be bypassed on AWS Lambda by understating Content-Length

Affects: hono/body-limit on AWS Lambda (hono/aws-lambda, hono/lambda-edge). Fixes the request being built with the client-declared Content-Length while the body is delivered fully buffered, where a client could declare a small Content-Length with a much larger body and slip past the configured size limit. GHSA-rv63-4mwf-qqc2

Path traversal in serve-static on Windows via encoded backslash (%5C)

Affects: serveStatic on Windows (Node, Bun, Deno adapters). Fixes the path guard allowing a lone backslash, where an encoded backslash (%5C) decoded to \ was treated as a separator by the Windows path resolver, letting a single URL segment escape into a middleware-guarded subtree. GHSA-wwfh-h76j-fc44

AWS Lambda adapter merges multiple Set-Cookie headers into one value, dropping cookies on ALB single-header and Lattice

... (truncated)

Commits
  • 97c6fe1 4.12.27
  • aa92177 Merge commit from fork
  • cd3f6f7 Merge commit from fork
  • d4853a8 fix(jsx): make merged context-isolation tests pass tsc type check (#5037)
  • 6735fea fix(jsx): cast awaitedFallback through unknown to fix Deno type check (#5036)
  • fab3b13 Merge commit from fork
  • 9f0dadf ci: use npm Staged publishing (#5035)
  • 27b7992 4.12.26
  • d29982c chore: replace arg and glob with Bun native APIs in build script
  • 16215d5 chore: remove unused devcontainer and gitpod configs (#5029)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for hono since your current version.


Updates srvx from 0.9.6 to 0.11.17

Release notes

Sourced from srvx's releases.

v0.11.17

compare changes

🩹 Fixes

  • node/web: Forward socket drain and handle aborted signals (#209)
  • node: Keep body methods working when globalThis.Request is patched (8d91ebe)
  • node: Deopt FastURL to native parser for fragments and path encode-set chars (d384e41)

📖 Documentation

  • cli: Document static file serving (#210)

❤️ Contributors

v0.11.16

compare changes

🩹 Fixes

  • node: Flatten writeHead headers on Deno (#203)
  • aws-lambda-streaming: Handle empty body (#205)
  • node: Do not crash on asterisk-form request targets (#206)

💅 Refactors

  • node/web: Add new TypeOfService utils to socker impl (945fc17)

❤️ Contributors

v0.11.15

compare changes

🩹 Fixes

  • node/web: Do not swallow getReader errors (#199)

❤️ Contributors

v0.11.14

compare changes

... (truncated)

Changelog

Sourced from srvx's changelog.

v0.11.17

compare changes

🩹 Fixes

  • node/web: Forward socket drain and handle aborted signals (#209)
  • node: Keep body methods working when globalThis.Request is patched (8d91ebe)
  • node: Deopt FastURL to native parser for fragments and path encode-set chars (d384e41)

📖 Documentation

  • cli: Document static file serving (#210)

🏡 Chore

✅ Tests

❤️ Contributors

v0.11.16

compare changes

🩹 Fixes

  • node: Flatten writeHead headers on Deno (#203)
  • aws-lambda-streaming: Handle empty body (#205)
  • node: Do not crash on asterisk-form request targets (#206)

💅 Refactors

  • node/web: Add new TypeOfService utils to socker impl (945fc17)

🏡 Chore

... (truncated)

Commits
  • e7d7417 chore: pin undici to 8.3
  • 9db5d30 test: reduce flakiness
  • 6ffee51 chore: update deps
  • d384e41 fix(node): deopt FastURL to native parser for fragments and path encode-set c...
  • 8c07e6e docs(cli): document static file serving (#210)
  • 0a52dab chore: apply automated updates
  • 8d91ebe fix(node): keep body methods working when globalThis.Request is patched
  • 59b1891 fix(node/web): forward socket drain and handle aborted signals (#209)
  • f6b6678 chore(release): v0.11.16
  • 19efb13 fix(node): do not crash on asterisk-form request targets (#206)
  • Additional commits viewable in compare view

Updates srvx from 0.11.4 to 0.11.17

Release notes

Sourced from srvx's releases.

v0.11.17

compare changes

🩹 Fixes

  • node/web: Forward socket drain and handle aborted signals (#209)
  • node: Keep body methods working when globalThis.Request is patched (8d91ebe)
  • node: Deopt FastURL to native parser for fragments and path encode-set chars (d384e41)

📖 Documentation

  • cli: Document static file serving (#210)

❤️ Contributors

v0.11.16

compare changes

🩹 Fixes

  • node: Flatten writeHead headers on Deno (#203)
  • aws-lambda-streaming: Handle empty body (#205)
  • node: Do not crash on asterisk-form request targets (#206)

💅 Refactors

  • node/web: Add new TypeOfService utils to socker impl (945fc17)

❤️ Contributors

v0.11.15

compare changes

🩹 Fixes

  • node/web: Do not swallow getReader errors (#199)

❤️ Contributors

v0.11.14

compare changes

... (truncated)

Changelog

Sourced from srvx's changelog.

v0.11.17

compare changes

🩹 Fixes

  • node/web: Forward socket drain and handle aborted signals (#209)
  • node: Keep body methods working when globalThis.Request is patched (8d91ebe)
  • node: Deopt FastURL to native parser for fragments and path encode-set chars (d384e41)

📖 Documentation

  • cli: Document static file serving (#210)

🏡 Chore

✅ Tests

❤️ Contributors

v0.11.16

compare changes

🩹 Fixes

  • node: Flatten writeHead headers on Deno (#203)
  • aws-lambda-streaming: Handle empty body (#205)
  • node: Do not crash on asterisk-form request targets (#206)

💅 Refactors

  • node/web: Add new TypeOfService utils to socker impl (945fc17)

🏡 Chore

... (truncated)

Commits
  • e7d7417 chore: pin undici to 8.3
  • 9db5d30 test: reduce flakiness
  • 6ffee51 chore: update deps
  • d384e41 fix(node): deopt FastURL to native parser for fragments and path encode-set c...
  • 8c07e6e docs(cli): document static file serving (#210)
  • 0a52dab chore: apply automated updates
  • 8d91ebe fix(node): keep body methods working when globalThis.Request is patched
  • 59b1891 fix(node/web): forward socket drain and handle aborted signals (#209)
  • f6b6678 chore(release): v0.11.16
  • 19efb13 fix(node): do not crash on asterisk-form request targets (#206)
  • Additional commits viewable in compare view

Updates nitro from 3.0.1-alpha.1 to 3.0.260610-beta

Release notes

Sourced from nitro's releases.

v3.0.260610-beta

compare changes

🚀 Enhancements

  • prerender: Run prerenderer in isolate worker (#4326)
  • vite: Use explicit module graph for service entries (#4327)

Preset Changes

  • vercel: Support websocket upgrades (internal testing) (#4317)

🩹 Fixes

  • Try to resolve server entry also from server dir (#4313)
  • runtime: Avoid std-env in warning stub (#4296)
  • vite: Force resolve nitro/ imports from service envs (#4324)
  • vite: Inherit renderer for prerender build (#4325)
  • vite, prerender: Use shared virtuals (#4328)
  • build: Add buildDir to noExternals if inside node_modules (#4329)
  • types: Emit auto-import paths as files, not directories (#4333)
  • vite: Propagate service fetch errors in dev to match production (

…pdates

Bumps the npm_and_yarn group with 19 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/core) | `10.2.8` | `10.2.10` |
| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.5` |
| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.0.18` | `4.1.0` |
| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `5.0.2` | `5.0.7` |
| [minimatch](https://github.com/isaacs/minimatch) | `10.2.0` | `10.2.5` |
| [ajv](https://github.com/ajv-validator/ajv) | `8.17.1` | `8.20.0` |
| [hono](https://github.com/honojs/hono) | `4.11.9` | `4.12.27` |
| [srvx](https://github.com/h3js/srvx) | `0.9.6` | `0.11.17` |
| [srvx](https://github.com/h3js/srvx) | `0.11.4` | `0.11.17` |
| [nitro](https://github.com/nitrojs/nitro) | `3.0.1-alpha.1` | `3.0.260610-beta` |
| [@tanstack/start-server-core](https://github.com/TanStack/router/tree/HEAD/packages/start-server-core) | `1.159.9` | `1.169.15` |
| [esbuild](https://github.com/evanw/esbuild) | `0.25.12` | `0.28.1` |
| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.5.2` |
| [fast-uri](https://github.com/fastify/fast-uri) | `3.1.0` | `3.1.3` |
| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |
| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |
| [qs](https://github.com/ljharb/qs) | `6.14.2` | `6.15.3` |
| [shell-quote](https://github.com/ljharb/shell-quote) | `1.8.3` | `1.9.0` |
| [undici](https://github.com/nodejs/undici) | `7.22.0` | `7.28.0` |
| [ws](https://github.com/websockets/ws) | `8.18.3` | `8.21.0` |



Updates `storybook` from 10.2.8 to 10.2.10
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.10/code/core)

Updates `vite` from 7.3.1 to 7.3.5
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/v7.3.5/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v7.3.5/packages/vite)

Updates `vitest` from 4.0.18 to 4.1.0
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/vitest)

Updates `brace-expansion` from 5.0.2 to 5.0.7
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](juliangruber/brace-expansion@v5.0.2...v5.0.7)

Updates `minimatch` from 10.2.0 to 10.2.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v10.2.0...v10.2.5)

Updates `ajv` from 8.17.1 to 8.20.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v8.17.1...v8.20.0)

Updates `hono` from 4.11.9 to 4.12.27
- [Release notes](https://github.com/honojs/hono/releases)
- [Commits](honojs/hono@v4.11.9...v4.12.27)

Updates `srvx` from 0.9.6 to 0.11.17
- [Release notes](https://github.com/h3js/srvx/releases)
- [Changelog](https://github.com/h3js/srvx/blob/main/CHANGELOG.md)
- [Commits](h3js/srvx@v0.9.6...v0.11.17)

Updates `srvx` from 0.11.4 to 0.11.17
- [Release notes](https://github.com/h3js/srvx/releases)
- [Changelog](https://github.com/h3js/srvx/blob/main/CHANGELOG.md)
- [Commits](h3js/srvx@v0.9.6...v0.11.17)

Updates `nitro` from 3.0.1-alpha.1 to 3.0.260610-beta
- [Release notes](https://github.com/nitrojs/nitro/releases)
- [Changelog](https://github.com/nitrojs/nitro/blob/main/changelog.config.ts)
- [Commits](nitrojs/nitro@v3.0.1-alpha.1...v3.0.260610-beta)

Updates `@tanstack/start-server-core` from 1.159.9 to 1.169.15
- [Release notes](https://github.com/TanStack/router/releases)
- [Changelog](https://github.com/TanStack/router/blob/main/packages/start-server-core/CHANGELOG.md)
- [Commits](https://github.com/TanStack/router/commits/@tanstack/start-server-core@1.169.15/packages/start-server-core)

Updates `defu` from 6.1.4 to 6.1.7
- [Release notes](https://github.com/unjs/defu/releases)
- [Changelog](https://github.com/unjs/defu/blob/main/CHANGELOG.md)
- [Commits](unjs/defu@v6.1.4...v6.1.7)

Updates `effect` from 3.18.4 to 3.20.0
- [Release notes](https://github.com/Effect-TS/effect/releases)
- [Changelog](https://github.com/Effect-TS/effect/blob/main/packages/effect/CHANGELOG.md)
- [Commits](https://github.com/Effect-TS/effect/commits/effect@3.20.0/packages/effect)

Updates `esbuild` from 0.25.12 to 0.28.1
- [Release notes](https://github.com/evanw/esbuild/releases)
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2025.md)
- [Commits](evanw/esbuild@v0.25.12...v0.28.1)

Updates `express-rate-limit` from 8.2.1 to 8.5.2
- [Release notes](https://github.com/express-rate-limit/express-rate-limit/releases)
- [Commits](express-rate-limit/express-rate-limit@v8.2.1...v8.5.2)

Updates `fast-uri` from 3.1.0 to 3.1.3
- [Release notes](https://github.com/fastify/fast-uri/releases)
- [Commits](fastify/fast-uri@v3.1.0...v3.1.3)

Updates `flatted` from 3.3.3 to 3.4.2
- [Commits](WebReflection/flatted@v3.3.3...v3.4.2)

Updates `h3` from 2.0.1-rc.5 to 2.0.1-rc.22
- [Release notes](https://github.com/h3js/h3/releases)
- [Changelog](https://github.com/h3js/h3/blob/main/CHANGELOG.md)
- [Commits](h3js/h3@v2.0.1-rc.5...v2.0.1-rc.22)

Updates `ip-address` from 10.0.1 to 10.2.0
- [Commits](beaugunderson/ip-address@v10.0.1...v10.2.0)

Updates `lodash` from 4.17.21 to 4.18.1
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.21...4.18.1)

Updates `qs` from 6.14.2 to 6.15.3
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v6.14.2...v6.15.3)

Updates `rollup` from 4.53.2 to 4.62.2
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](rollup/rollup@v4.53.2...v4.62.2)

Updates `shell-quote` from 1.8.3 to 1.9.0
- [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md)
- [Commits](ljharb/shell-quote@v1.8.3...v1.9.0)

Updates `undici` from 7.22.0 to 7.28.0
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v7.22.0...v7.28.0)

Updates `ws` from 8.18.3 to 8.21.0
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@8.18.3...8.21.0)

---
updated-dependencies:
- dependency-name: storybook
  dependency-version: 10.2.10
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: vite
  dependency-version: 7.3.5
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: vitest
  dependency-version: 4.1.0
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: brace-expansion
  dependency-version: 5.0.7
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 10.2.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 8.20.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: hono
  dependency-version: 4.12.27
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: srvx
  dependency-version: 0.11.17
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: srvx
  dependency-version: 0.11.17
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: nitro
  dependency-version: 3.0.260610-beta
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@tanstack/start-server-core"
  dependency-version: 1.169.15
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: defu
  dependency-version: 6.1.7
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: effect
  dependency-version: 3.20.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: esbuild
  dependency-version: 0.28.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: express-rate-limit
  dependency-version: 8.5.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: fast-uri
  dependency-version: 3.1.3
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: flatted
  dependency-version: 3.4.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: h3
  dependency-version: 2.0.1-rc.22
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ip-address
  dependency-version: 10.2.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: lodash
  dependency-version: 4.18.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: qs
  dependency-version: 6.15.3
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: rollup
  dependency-version: 4.62.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: shell-quote
  dependency-version: 1.9.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: undici
  dependency-version: 7.28.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ws
  dependency-version: 8.21.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 30, 2026
@vercel

vercel Bot commented Jun 30, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
pek-infinity Ready Ready Preview, Comment Jun 30, 2026 4:21am

Request Review

@dependabot dependabot Bot added the javascript Pull requests that update javascript code label Jun 30, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #100.

@dependabot dependabot Bot closed this Jul 9, 2026
@dependabot
dependabot Bot deleted the dependabot/npm_and_yarn/npm_and_yarn-71289e4025 branch July 9, 2026 13:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants