chore(deps-dev): bump @ai-sdk/openai from 2.0.20 to 2.0.50

[dependabot]

Bumps @ai-sdk/openai from 2.0.20 to 2.0.50.

Release notes

Sourced from @​ai-sdk/openai's releases.

@​ai-sdk/openai@​2.0.50

Patch Changes

• c336b43: feat(provider/openai): send assistant text and tool call parts as reference ids when store: true

@​ai-sdk/openai@​2.0.49

Patch Changes

• f4287d0: feat(provider/openai): automatically add reasoning.encrypted_content include when store = false

@​ai-sdk/openai@​2.0.48

Patch Changes

• Updated dependencies [17f9872]
  • @​ai-sdk/provider-utils@​3.0.12

@​ai-sdk/openai@​2.0.47

Patch Changes

• 99e2a2a: feat(provider/openai): support file and image tool results

Commits

• 39c9b5e Version Packages (#9427)
• c336b43 Backport: feat(provider/openai): send assistant text and tool call parts as r...
• ddbda41 Version Packages (#9416)
• f4287d0 Backport: feat(provider/openai): automatically add reasoning.encrypted_conten...
• 96d7097 Backport: docs(example): fix path to test file (#9410)
• 8be9703 Version Packages (#9408)
• 069b370 Backport: feat (provider/anthropic): Add support for pdf files in tool result...
• 0c00076 Version Packages (#9405)
• f02b7ab Backport: feat(provider/openai-compatible): add textVerbosity provider opti...
• d3c38d9 Backport: docs(example): use correct api key in `generate-text/openai-compat...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Disclaimer: Experimental PR review

Greptile Overview

Updated On: 2025-10-13 05:20:51 UTC

Summary

Updates @ai-sdk/openai from version 2.0.20 to 2.0.50, a dev dependency used only in e2e tests for Vercel AI SDK integration testing.

• Patch version bump with 30 minor releases (2.0.20 → 2.0.50) containing new features but no breaking changes
• Key new features added: support for file and image tool results, automatic reasoning.encrypted_content inclusion when store=false, assistant text/tool call reference IDs when store=true
• Transitive dependency updates: @ai-sdk/provider-utils updated from 3.0.5 to 3.0.12, eventsource-parser updated from 3.0.5 to 3.0.6
• Peer dependency update: zod peer dependency range expanded from ^3.25.76 || ^4 to ^3.25.76 || ^4.1.8 (more permissive)
• Test coverage: The package is used in tests/e2e/vercel-ai-sdk.e2e.test.ts for testing OpenAI integration with generateText, streamText, generateObject, streamObject, embed, and file/image attachment features
• Risk assessment: Low risk as this is a dev dependency used only for testing, not in production code. All changes are additive features with no breaking changes according to semantic versioning and release notes.

Confidence Score: 5/5

• This PR is safe to merge with minimal risk - it's a standard dev dependency update with no breaking changes
• Perfect confidence score because: (1) this is a dev dependency used only in test files, not production code, (2) all 30 patch releases from 2.0.20 to 2.0.50 follow semantic versioning with no breaking changes, (3) the changes are additive features (file/image support, reasoning enhancements) that don't affect existing functionality, (4) the peer dependency range for zod was made more permissive, not more restrictive, (5) transitive dependency updates are also patch/minor versions only
• No files require special attention

Important Files Changed

File Analysis

Filename	Score	Overview
pnpm-lock.yaml	5/5	Bumps @ai-sdk/openai from 2.0.20 to 2.0.50 and updates transitive dependencies (@ai-sdk/provider-utils to 3.0.12, eventsource-parser to 3.0.6)

Sequence Diagram

sequenceDiagram
    participant D as Dependabot
    participant L as pnpm-lock.yaml
    participant P as package.json
    participant SDK as @ai-sdk/openai
    participant U as @ai-sdk/provider-utils
    participant E as eventsource-parser

    D->>L: Update dependency version
    L->>SDK: Bump 2.0.20 → 2.0.50
    SDK->>U: Update transitive dep 3.0.5 → 3.0.12
    U->>E: Update transitive dep 3.0.5 → 3.0.6
    Note over P: package.json unchanged (^2 satisfied)
    Note over SDK: Patch updates only (no breaking changes)
    Note over U: Enhanced OpenAI features (reasoning, file support)

Loading

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Updated (UTC)
langfuse-js	Ready	Preview	Oct 13, 2025 7:59am

[greptile-apps]

_{No files reviewed, no comments}

_{Edit Code Review Agent Settings | Greptile}

[dependabot]

Superseded by #666.