Skip to content

chore(deps): bump the langchain group with 4 updates#100

Merged
github-actions[bot] merged 1 commit intomainfrom
dependabot/npm_and_yarn/langchain-e791db1d75
Mar 25, 2026
Merged

chore(deps): bump the langchain group with 4 updates#100
github-actions[bot] merged 1 commit intomainfrom
dependabot/npm_and_yarn/langchain-e791db1d75

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 25, 2026

Bumps the langchain group with 4 updates: @langchain/anthropic, @langchain/core, @langchain/openai and langchain.

Updates @langchain/anthropic from 1.3.24 to 1.3.25

Release notes

Sourced from @​langchain/anthropic's releases.

@​langchain/anthropic@​1.3.25

Patch Changes

Commits
  • bfb3aad chore: version packages (#10465)
  • da85f31 fix(anthropic): add default max tokens for sonnet (#10467)
  • f4356d3 chore(deps-dev): bump fast-xml-parser from 5.4.2 to 5.5.6 (#10449)
  • 4b1a874 fix(langchain): plurals r hard (#10466)
  • bfb7944 feat(core): Add all chat model/llm invocation params to metadata (#10312)
  • 0982261 chore(deps-dev): bump fast-xml-parser from 5.4.2 to 5.5.6
  • 49d121c chore: version packages (#10445)
  • 888224c fix(agents): propagate store and configurable to ToolNode middleware runtime ...
  • 82d56cb fix(langchain): after model send dispatch (#10444)
  • ff6822e fix(langchain): respect version:"v1" in afterModel router's pending tool call...
  • See full diff in compare view

Updates @langchain/core from 1.1.33 to 1.1.36

Release notes

Sourced from @​langchain/core's releases.

@​langchain/core@​1.1.36

Patch Changes

  • #10512 bbbfea1 Thanks @​hntrl! - fix(core): fix streaming chunk merge for providers without index on tool call deltas

    _mergeLists now falls back to id-based matching when items don't have an index field. Previously, providers routing through the OpenAI-compatible API without index on streaming tool call deltas (e.g. Anthropic models via ChatOpenAI) would accumulate hundreds of individual raw deltas in tool_call_chunks and additional_kwargs.tool_calls instead of merging them into a single entry per tool call. In a real trace with 3 concurrent subagents, this caused a single AI message to balloon from ~4KB to 146KB -- with 826 uncollapsed streaming fragments carrying a few bytes each.

    Also fixes SystemMessage.concat() which used ...this to spread all instance properties (including lc_kwargs) into the new constructor, causing each chained concat() call to nest one level deeper. After 7 middleware concat() calls (typical in deepagents), a 7KB system prompt would serialize to 81KB due to content being duplicated at every nesting level.

@​langchain/core@​1.1.35

Patch Changes

  • #10327 5dc11b5 Thanks @​hntrl! - fix(core): replace exported zod type references with structural duck-type interfaces to fix TypeScript OOM

    Replaces all exported Zod type references (z3.ZodType, z4.$ZodType, etc.) in @langchain/core's public API with minimal structural ("duck-type") interfaces. This prevents TypeScript from performing expensive deep structural comparisons (~3,400+ lines of mutually recursive generics) when downstream packages resolve a different Zod version than @langchain/core, which was causing OOM crashes and unresponsive language servers in monorepo setups.

  • #10433 7af0b65 Thanks @​tanushree-sharma! - feat: Add LangSmith integration metadata to createAgent and initChatModel

@​langchain/core@​1.1.34

Patch Changes

Commits
  • d2a0c2d chore: version packages (#10508)
  • bbbfea1 fix(core): fix _mergeLists id-only fallback and SystemMessage.concat lc_kwarg...
  • 478652c fix(openai): detect DeepSeek context overflow errors as ContextOverfl… (#10481)
  • 3d35eb1 fix(langchain): add "aws" alias to MODEL_PROVIDER_CONFIG for Bedrock hub prom...
  • 52e501b fix(openai): guard JSON.parse in streaming json_schema when text is empty (#1...
  • ae4122f Align Zod Importation For 'libs/langchain/src/agents/nodes/utils.ts' (#10258)
  • 443253b chore: version packages (#10469)
  • 005d4a1 chore(deps-dev): bump fast-xml-parser from 5.5.6 to 5.5.7 (#10473)
  • 63b7268 fix(@​langchain/google) Duplicate function call (#10493)
  • 75e9d56 fix: support structured output (providerStrategy) for Google Gemini models in...
  • Additional commits viewable in compare view

Updates @langchain/openai from 1.3.0 to 1.3.1

Release notes

Sourced from @​langchain/openai's releases.

@​langchain/openai@​1.3.1

Patch Changes

  • #10481 478652c Thanks @​hnustwjj! - fix(openai): detect DeepSeek context overflow errors as ContextOverflowError

    DeepSeek returns maximum context length in 400 error messages when the context limit is exceeded. These are now recognized by wrapOpenAIClientError, so downstream code (e.g. summarization middleware fallback) can handle them correctly.

  • #10507 52e501b Thanks @​App-arently! - fix(openai): guard JSON.parse in streaming json_schema when text is empty

  • Updated dependencies [bbbfea1]:

    • @​langchain/core@​1.1.36
Commits
  • d2a0c2d chore: version packages (#10508)
  • bbbfea1 fix(core): fix _mergeLists id-only fallback and SystemMessage.concat lc_kwarg...
  • 478652c fix(openai): detect DeepSeek context overflow errors as ContextOverfl… (#10481)
  • 3d35eb1 fix(langchain): add "aws" alias to MODEL_PROVIDER_CONFIG for Bedrock hub prom...
  • 52e501b fix(openai): guard JSON.parse in streaming json_schema when text is empty (#1...
  • ae4122f Align Zod Importation For 'libs/langchain/src/agents/nodes/utils.ts' (#10258)
  • 443253b chore: version packages (#10469)
  • 005d4a1 chore(deps-dev): bump fast-xml-parser from 5.5.6 to 5.5.7 (#10473)
  • 63b7268 fix(@​langchain/google) Duplicate function call (#10493)
  • 75e9d56 fix: support structured output (providerStrategy) for Google Gemini models in...
  • Additional commits viewable in compare view

Updates langchain from 1.2.34 to 1.2.37

Release notes

Sourced from langchain's releases.

langchain@1.2.37

Patch Changes

  • #10475 3d35eb1 Thanks @​hntrl! - fix(langchain): add "aws" alias to MODEL_PROVIDER_CONFIG so hub/node auto-detects ChatBedrockConverse from Python-serialized prompts

  • #10258 ae4122f Thanks @​irfiacre! - Align Zod Importation For 'libs/langchain/src/agents/nodes/utils.ts'

  • Updated dependencies [bbbfea1]:

    • @​langchain/core@​1.1.36

langchain@1.2.36

Patch Changes

langchain@1.2.35

Patch Changes

Commits
  • d2a0c2d chore: version packages (#10508)
  • bbbfea1 fix(core): fix _mergeLists id-only fallback and SystemMessage.concat lc_kwarg...
  • 478652c fix(openai): detect DeepSeek context overflow errors as ContextOverfl… (#10481)
  • 3d35eb1 fix(langchain): add "aws" alias to MODEL_PROVIDER_CONFIG for Bedrock hub prom...
  • 52e501b fix(openai): guard JSON.parse in streaming json_schema when text is empty (#1...
  • ae4122f Align Zod Importation For 'libs/langchain/src/agents/nodes/utils.ts' (#10258)
  • 443253b chore: version packages (#10469)
  • 005d4a1 chore(deps-dev): bump fast-xml-parser from 5.5.6 to 5.5.7 (#10473)
  • 63b7268 fix(@​langchain/google) Duplicate function call (#10493)
  • 75e9d56 fix: support structured output (providerStrategy) for Google Gemini models in...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the langchain group with 4 updates
84cd2ef 
Bumps the langchain group with 4 updates: [@langchain/anthropic](https://github.com/langchain-ai/langchainjs), [@langchain/core](https://github.com/langchain-ai/langchainjs), [@langchain/openai](https://github.com/langchain-ai/langchainjs) and [langchain](https://github.com/langchain-ai/langchainjs).


Updates `@langchain/anthropic` from 1.3.24 to 1.3.25
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/@langchain/anthropic@1.3.24...@langchain/anthropic@1.3.25)

Updates `@langchain/core` from 1.1.33 to 1.1.36
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/@langchain/core@1.1.33...@langchain/core@1.1.36)

Updates `@langchain/openai` from 1.3.0 to 1.3.1
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/@langchain/openai@1.3.0...@langchain/openai@1.3.1)

Updates `langchain` from 1.2.34 to 1.2.37
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/langchain@1.2.34...langchain@1.2.37)

---
updated-dependencies:
- dependency-name: "@langchain/anthropic"
  dependency-version: 1.3.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: "@langchain/core"
  dependency-version: 1.1.36
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: "@langchain/openai"
  dependency-version: 1.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain
  dependency-version: 1.2.37
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: langchain
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 25, 2026
@dependabot dependabot bot requested a review from ddnetters as a code owner March 25, 2026 10:36
@github-actions github-actions bot enabled auto-merge (squash) March 25, 2026 10:36
@codecov-commenter
Copy link
Copy Markdown

codecov-commenter commented Mar 25, 2026

⚠️ Please install the 'codecov app svg image' to ensure uploads and comments are reliably processed by Codecov.

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

@github-actions github-actions bot merged commit 2584b1c into main Mar 25, 2026
8 checks passed
@github-actions github-actions bot deleted the dependabot/npm_and_yarn/langchain-e791db1d75 branch March 25, 2026 10:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@ddnetters ddnetters Awaiting requested review from ddnetters ddnetters is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@codecov-commenter