chore(deps): bump the production-dependencies group with 6 updates by dependabot[bot] · Pull Request #26 · keshav0479/Stashu

dependabot · 2026-03-21T07:21:11Z

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the production-dependencies group with 6 updates:

Package	From	To
lucide-react	`0.563.0`	`0.577.0`
nostr-tools	`2.23.0`	`2.23.3`
react-router-dom	`7.13.0`	`7.13.1`
@cashu/cashu-ts	`3.5.0`	`3.6.1`
@hono/node-server	`1.19.9`	`1.19.11`
hono	`4.11.7`	`4.12.8`

Updates lucide-react from 0.563.0 to 0.577.0

Release notes

Sourced from lucide-react's releases.

Version 0.577.0

What's Changed

chore(deps): bump rollup from 4.53.3 to 4.59.0 by @dependabot[bot] in lucide-icons/lucide#4106

fix(repo): correctly ignore docs/releaseMetadata via .gitignore by @bhavberi in lucide-icons/lucide#4100

feat(icons): added ellipse icon by @KISHORE-KUMAR-S in lucide-icons/lucide#3749

New Contributors

@bhavberi made their first contribution in lucide-icons/lucide#4100

@KISHORE-KUMAR-S made their first contribution in lucide-icons/lucide#3749

Full Changelog: lucide-icons/lucide@0.576.0...0.577.0

Version 0.576.0

What's Changed

Added zodiac signs by @karsa-mistmere in lucide-icons/lucide#712

fix(icons): fixes guideline violations in package-* icons. by @karsa-mistmere in lucide-icons/lucide#4074

fix(icons): changed receipt icon by @karsa-mistmere in lucide-icons/lucide#4075

fix(icons): updated cuboid icon tags and categories by @karsa-mistmere in lucide-icons/lucide#4095

fix(icons): changed cuboid icon by @jamiemlaw in lucide-icons/lucide#4098

fix(lucide-font, lucide-static): Fixing stable code points by @ericfennis in lucide-icons/lucide#3894

feat(icons): added fishing-rod icon by @7ender in lucide-icons/lucide#3839

Full Changelog: lucide-icons/lucide@0.575.0...0.576.0

Version 0.575.0

What's Changed

feat(icons): added message-square-check icon by @karsa-mistmere in lucide-icons/lucide#4076

fix(lucide): Fix ESM Module output path in build by @ericfennis in lucide-icons/lucide#4084

feat(icons): added metronome icon by @edwloef in lucide-icons/lucide#4063

fix(icons): remove execution permission of SVG files by @duckafire in lucide-icons/lucide#4053

fix(icons): changed file-pen-line icon by @jguddas in lucide-icons/lucide#3970

feat(icons): added square-arrow-right-exit and square-arrow-right-enter icons by @EthanHazel in lucide-icons/lucide#3958

fix(icons): renamed flip-* to square-centerline-dashed-* by @jguddas in lucide-icons/lucide#3945

New Contributors

@edwloef made their first contribution in lucide-icons/lucide#4063

@duckafire made their first contribution in lucide-icons/lucide#4053

Full Changelog: lucide-icons/lucide@0.573.0...0.575.0

Version 0.574.0

What's Changed

fix(icons): changed rocking-chair icon by @jamiemlaw in lucide-icons/lucide#3445

fix(icons): flipped coins icon by @jguddas in lucide-icons/lucide#3158

feat(icons): added x-line-top icon by @jguddas in lucide-icons/lucide#2838

feat(icons): added mouse-left icon by @marvfash in lucide-icons/lucide#2788

feat(icons): added mouse-right icon by @marvfash in lucide-icons/lucide#2787

New Contributors

... (truncated)

Commits

f6c0d06 chore(deps): bump rollup from 4.53.3 to 4.59.0 (#4106)
See full diff in compare view

Updates nostr-tools from 2.23.0 to 2.23.3

Commits

See full diff in compare view

Updates react-router-dom from 7.13.0 to 7.13.1

Changelog

Sourced from react-router-dom's changelog.

7.13.1

Patch Changes

Updated dependencies:

react-router@7.13.1

Commits

aa3f078 chore: Update version for release (#14829)
3207a5c chore: Update version for release (pre) (#14814)
See full diff in compare view

Updates @cashu/cashu-ts from 3.5.0 to 3.6.1

Release notes

Sourced from @cashu/cashu-ts's releases.

v3.6.1

What's Changed

fix(auth): use ensureCAT if available so token is refreshed by @robwoodgate in cashubtc/cashu-ts#529

chore(main): release 3.6.1 by @robwoodgate in cashubtc/cashu-ts#530

Full Changelog: cashubtc/cashu-ts@v3.6.0...v3.6.1

v3.6.0

What's Changed

feat(core): add utility functions, remove deprecation by @robwoodgate in cashubtc/cashu-ts#515

chore(docker): update mint images by @robwoodgate in cashubtc/cashu-ts#517

docs(community): add contribution philosophy by @TheRealCheebs in cashubtc/cashu-ts#513

chore(nut11): pick params to enable flexible sigall signing by @robwoodgate in cashubtc/cashu-ts#518

chore(tests): fix bolt12 test response payloads by @robwoodgate in cashubtc/cashu-ts#520

feat(amount): add Amount value object (bigint support), AmountLike input and refactor internals by @robwoodgate in cashubtc/cashu-ts#514

Sig_all signing package by @KvngMikey in cashubtc/cashu-ts#485

chore(agents): adds AGENTS.md by @robwoodgate in cashubtc/cashu-ts#521

Nut19 cache by @d4rp4t in cashubtc/cashu-ts#330

chore: add CONTRIBUTING.md to repo root, revise husky, docs by @robwoodgate in cashubtc/cashu-ts#525

feat(jsonint): add bigint-safe JSON parsing and mint normalization by @robwoodgate in cashubtc/cashu-ts#519

test: adds NUT-02 test vectors by @robwoodgate in cashubtc/cashu-ts#526

feat(wallet): add two step minting: prepareMint and completeMint by @robwoodgate in cashubtc/cashu-ts#523

chore(docs): add mint preview and nut-19 docs/examples by @robwoodgate in cashubtc/cashu-ts#527

chore(main): release 3.6.0 by @robwoodgate in cashubtc/cashu-ts#516

Full Changelog: cashubtc/cashu-ts@v3.5.0...v3.6.0

Changelog

Sourced from @cashu/cashu-ts's changelog.

3.6.1 (2026-03-17)

Bug Fixes

auth: use ensureCAT if available so token is refreshed (#529) (7ba4bbc)

3.6.0 (2026-03-13)

Features

amount: add Amount value object (bigint support), AmountLike input and refactor internals (#514) (cb5fd22)

core: add utility functions schnorrSignDigest, computeMessageDigest (#515) (1b201c8)

experimental Sig_all signing package (#485) (d8f33f0)

jsonint: add bigint-safe JSON parsing and mint normalization (#519) (f40fcaf)

wallet: add two step minting: prepareMint and completeMint (#523) (39f5568)

Bug Fixes

mint: preserve normalized melt fields (f40fcaf)

Commits

25d9657 chore(main): release 3.6.1 (#530)
7ba4bbc fix(auth): use ensureCAT if available so token is refreshed (#529)
9c4016d chore(main): release 3.6.0 (#516)
cbf6d4a chore(docs): add mint preview and nut-19 docs/examples (#527)
39f5568 feat(wallet): add two step minting: prepareMint and completeMint (#523)
7a4f14f test: adds NUT-02 test vectors (#526)
f40fcaf feat(jsonint): add bigint-safe JSON parsing and mint normalization (#519)
33cb368 chore: add CONTRIBUTING.md to repo root, revise husky, docs (#525)
32b4085 Nut19 cache (#330)
5535ea9 chore(agents): adds AGENTS.md (#521)
Additional commits viewable in compare view

Updates @hono/node-server from 1.19.9 to 1.19.11

Release notes

Sourced from @hono/node-server's releases.

v1.19.11

What's Changed

fix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by @usualoma in honojs/node-server#309

Full Changelog: honojs/node-server@v1.19.10...v1.19.11

v1.19.10

Security Fix

Fixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (%2F handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.

See GHSA-wc8c-qw6v-h7f6 for details.

Commits

ecd4d6b 1.19.11
c944899 fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...
2f8ca36 1.19.10
455015b Merge commit from fork
cc05c48 chore: add benchmark for comparing with npm and local (dev) (#305)
58c4412 chore: Adding LICENSE file with MIT license referenced in README.md (#297)
b1daa4c docs(readme): add @usualoma as an author (#300)
See full diff in compare view

Updates hono from 4.11.7 to 4.12.8

Release notes

Sourced from hono's releases.

v4.12.8

What's Changed

fix(utils/mime): Normalize input extension to lowercase before MIME check by @TheEssem in honojs/hono#4800

fix(bearer-auth): escape regex metacharacters in bearer auth prefix option by @otoneko1102 in honojs/hono#4750

New Contributors

@TheEssem made their first contribution in honojs/hono#4800

Full Changelog: honojs/hono@v4.12.7...v4.12.8

v4.12.7

Security hardening

Ignore __proto__ path segments in parseBody({ dot: true }) to prevent potential prototype pollution when merged with unsafe patterns.

Full Changelog: honojs/hono@v4.12.6...v4.12.7

v4.12.6

What's Changed

fix(accept): replace regex split to mitigate ReDoS by @EdamAme-x in honojs/hono#4758

fix(jsx): align link hoisting and dedupe with React 19 by @usualoma in honojs/hono#4792

chore(builld): tsconfig project references by @BarryThePenguin in honojs/hono#4797

chore: add tsconfig.spec.json by @yusukebe in honojs/hono#4798

feat(jsx-renderer): support function-based options by @3w36zj6 in honojs/hono#4780

fix(lambda-edge): avoid callback handler deprecation on NODEJS_24_X by @t0waxx in honojs/hono#4782

New Contributors

@t0waxx made their first contribution in honojs/hono#4782

Full Changelog: honojs/hono@v4.12.5...v4.12.6

v4.12.5

What's Changed

fix(request): return string | undefined from param() when path type is any by @andrewdamelio in honojs/hono#4723

fix(jwt): validate token format in decode and decodeHeader functions by @otoneko1102 in honojs/hono#4752

fix(jsx): Fix "Invalid state: Controller is already closed" by @gaearon in honojs/hono#4770

chore(eslint): upgrade @hono/eslint-config by @BarryThePenguin in honojs/hono#4781

New Contributors

@andrewdamelio made their first contribution in honojs/hono#4723

@otoneko1102 made their first contribution in honojs/hono#4752

@gaearon made their first contribution in honojs/hono#4770

Full Changelog: honojs/hono@v4.12.4...v4.12.5

v4.12.4

Security fixes

... (truncated)

Commits

fe689ec 4.12.8
0c0bf8d fix(bearer-auth): escape regex metacharacters in bearer auth prefix option (#...
488ea6a fix(utils/mime): Normalize input extension to lowercase before MIME check (#4...
b0aba5b 4.12.7
1be3a53 ci: apply automated fixes
ef90225 Merge commit from fork
3f88636 4.12.6
53b66ae fix(lambda-edge): avoid callback handler deprecation on NODEJS_24_X (#4782)
58825a7 feat(jsx-renderer): support function-based options (#4780)
0e80acb chore: add tsconfig.spec.json (#4798)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the production-dependencies group with 6 updates: | Package | From | To | | --- | --- | --- | | [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `0.563.0` | `0.577.0` | | [nostr-tools](https://github.com/nbd-wtf/nostr-tools) | `2.23.0` | `2.23.3` | | [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) | `7.13.0` | `7.13.1` | | [@cashu/cashu-ts](https://github.com/cashubtc/cashu-ts) | `3.5.0` | `3.6.1` | | [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.11` | | [hono](https://github.com/honojs/hono) | `4.11.7` | `4.12.8` | Updates `lucide-react` from 0.563.0 to 0.577.0 - [Release notes](https://github.com/lucide-icons/lucide/releases) - [Commits](https://github.com/lucide-icons/lucide/commits/0.577.0/packages/lucide-react) Updates `nostr-tools` from 2.23.0 to 2.23.3 - [Release notes](https://github.com/nbd-wtf/nostr-tools/releases) - [Commits](https://github.com/nbd-wtf/nostr-tools/commits) Updates `react-router-dom` from 7.13.0 to 7.13.1 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.13.1/packages/react-router-dom) Updates `@cashu/cashu-ts` from 3.5.0 to 3.6.1 - [Release notes](https://github.com/cashubtc/cashu-ts/releases) - [Changelog](https://github.com/cashubtc/cashu-ts/blob/main/CHANGELOG.md) - [Commits](cashubtc/cashu-ts@v3.5.0...v3.6.1) Updates `@hono/node-server` from 1.19.9 to 1.19.11 - [Release notes](https://github.com/honojs/node-server/releases) - [Commits](honojs/node-server@v1.19.9...v1.19.11) Updates `hono` from 4.11.7 to 4.12.8 - [Release notes](https://github.com/honojs/hono/releases) - [Commits](honojs/hono@v4.11.7...v4.12.8) --- updated-dependencies: - dependency-name: lucide-react dependency-version: 0.577.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: nostr-tools dependency-version: 2.23.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: react-router-dom dependency-version: 7.13.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: "@cashu/cashu-ts" dependency-version: 3.6.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: "@hono/node-server" dependency-version: 1.19.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: hono dependency-version: 4.12.8 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 21, 2026

dependabot bot force-pushed the dependabot/npm_and_yarn/production-dependencies-542cc734b8 branch from 24c06eb to 6aca1ab Compare March 21, 2026 10:22

keshav0479 merged commit dc14015 into main Mar 21, 2026
1 check passed

dependabot bot deleted the dependabot/npm_and_yarn/production-dependencies-542cc734b8 branch March 21, 2026 10:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the production-dependencies group with 6 updates#26

chore(deps): bump the production-dependencies group with 6 updates#26
keshav0479 merged 1 commit intomainfrom
dependabot/npm_and_yarn/production-dependencies-542cc734b8

dependabot bot commented on behalf of github Mar 21, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Mar 21, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Version 0.577.0

What's Changed

New Contributors

Version 0.576.0

What's Changed

Version 0.575.0

What's Changed

New Contributors

Version 0.574.0

What's Changed

New Contributors

7.13.1

Patch Changes

v3.6.1

What's Changed

v3.6.0

What's Changed

3.6.1 (2026-03-17)

Bug Fixes

3.6.0 (2026-03-13)

Features

Bug Fixes

v1.19.11

What's Changed

v1.19.10

Security Fix

v4.12.8

What's Changed

New Contributors

v4.12.7

Security hardening

v4.12.6

What's Changed

New Contributors

v4.12.5

What's Changed

New Contributors

v4.12.4

Security fixes

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot bot commented on behalf of github Mar 21, 2026 •

edited

Loading