fix(deps): update all non-major dependencies#439
Open
renovate[bot] wants to merge 1 commit intodevfrom
Open
Conversation
|
Mention Blocks like a regular teammate with your question or request: @blocks review this pull request Run |
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
There was a problem hiding this comment.
Your free trial has ended. If you'd like to continue receiving code reviews, you can add a payment method here.
renovate
bot
force-pushed
the
renovate/all-minor-patch
branch
from
e3123e4 to
72b1c0f
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/all-minor-patch
branch
15 times, most recently
from
c493fd0 to
ecfa9c5
Compare
renovate
bot
force-pushed
the
renovate/all-minor-patch
branch
5 times, most recently
from
4a32c1c to
589ccc9
Compare
renovate
bot
force-pushed
the
renovate/all-minor-patch
branch
from
589ccc9 to
969adba
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
2.25.1→2.25.410.3.3→10.3.410.3.3→10.3.410.3.3→10.3.41.6.0→1.7.024.12.0→24.12.2[3.0.0]→[3.1.0][1.15.0]→[1.15.1][1.15.0]→[1.15.1][1.15.0]→[1.15.1][1.15.0]→[1.15.1][2.12.4]→[2.12.14][5.23.0]→[5.27.0]4.11.1→4.11.24.65.0→4.67.016.2.1→16.2.21.14.7→1.14.825.10.9→25.10.1016.2.1→16.2.222.22.1-alpine→22.22.2-alpine22.22.1-alpine→22.22.2-alpine7.72.0→7.72.14.7.6→4.9.03.8.0→3.8.14.1.0→4.1.210.3.3→10.3.429.4.6→29.4.99.5.4→9.5.71.112.0→1.114.0Release Notes
Redocly/redocly-cli (@redocly/cli)
v2.25.4Compare Source
Patch Changes
v2.25.3Compare Source
Patch Changes
spec-discriminator-defaultMappingrule that could cause crashes or incorrect validation results.The rule now correctly resolves existing schema names, traverses composite schemas (
allOf,anyOf,oneOf) to find required properties, treatsdefaultMappingvalues as$refs to schemas, resolves$refs correctly across files, and handles cyclic schema dependencies.v2.25.2Compare Source
Patch Changes
picomatchdependency to^4.0.4.storybookjs/storybook (@storybook/addon-links)
v10.3.4Compare Source
storybookjs/storybook (@storybook/react)
v10.3.4Compare Source
Microsoft/ApplicationInsights-dotnet (Microsoft.ApplicationInsights)
v3.1.0TelemetryContextproperties public and propagate them viaTelemetryClient.APPLICATIONINSIGHTS_CONNECTION_STRINGenvironment variable for Base, Web, and NLog packages when connection string is not set via code.OTEL_SDK_DISABLEDnot being honored whenTelemetryConfiguration.DisableTelemetryis set in DI scenarios., #3157TrackAvailabilityignoring user-specifiedTimestamponAvailabilityTelemetry. The timestamp is now emitted asmicrosoft.availability.testTimestampso downstream exporters can use the correct event time.netstandard2.0target framework toMicrosoft.ApplicationInsightspackage to support customers with shared libraries targeting netstandard2.0.TelemetryClient.Context.Cloud.RoleNameset after construction now applies to all telemetry.NullReferenceExceptioninTelemetryClient.Flush()andFlushAsync()when called from DI scenariosApplicationVersionignored:ApplicationInsightsServiceOptions.ApplicationVersionis now applied asservice.versionon the OpenTelemetry Resource for both AspNetCore and WorkerService packagesHttpRequestExtensions.UnvalidatedGetHeaderalways returning empty string instead of the actual header value. Restored max-length enforcement to guard against oversized header values.open-telemetry/opentelemetry-dotnet (OpenTelemetry)
v1.15.1Release details: 1.15.1
treats baggage names and values as case sensitive, aligning with the latest
Baggage API specification.
OpenTelemetry.ApiandOpenTelemetrySDK,including fixes for thread-safety, sampler edge cases, metrics precision,
and observable instrument lifecycle handling.
StackExchange/StackExchange.Redis (StackExchange.Redis)
v2.12.14Compare Source
What's Changed
Impact: "high" if using cluster and high-integrity-mode together (resolves an issue that can mis-report
-MOVEDresponses as integrity failures)NuGet link
New Contributors
Full Changelog: StackExchange/StackExchange.Redis@2.12.8...2.12.14
v2.12.8Compare Source
What's Changed
Full Changelog: StackExchange/StackExchange.Redis@2.12.4...2.12.8
dequelabs/axe-core (axe-core)
v4.11.2Compare Source
hashicorp/terraform-provider-azurerm (azurerm)
v4.67.0Compare Source
FEATURES:
azurerm_storage_sync(#31995)azurerm_data_protection_backup_policy_data_lake_storage(#31179)azurerm_eventgrid_namespace_topic(#30104)azurerm_kubernetes_cluster_deployment_safeguard(#31670)azurerm_resource_provider_feature_registration(#28303)ENHANCEMENTS:
go-azure-sdk- upgrade tov0.20260326.1151219(#32047)storage- update to API version2025-06-01(#32071)azurerm_application_gateway- export thebackend,listener, androuting_ruleproperties (#30376)azurerm_logic_app_standard- export thesite_config.ip_restriction_default_actionproperty (#31816)azurerm_mssql_elasticpool- export thehigh_availability_replica_countproperty (#31761)azurerm_application_gateway- add support for thebackend,listener, androuting_ruleproperties (#30376)azurerm_kubernetes_cluster- add support for theUbuntu2404OS SKU (#32070)azurerm_kubernetes_cluster- improve validation fornetwork_profile.0.advanced_networking(#31497)azurerm_kubernetes_cluster_node_pool- add support for theUbuntu2404OS SKU (#32070)azurerm_kusto_attached_database_configuration- add support for thedatabase_name_override,database_name_prefix,sharing.functions_to_exclude, andsharing.functions_to_includeproperties (#31470)azurerm_logic_app_standard- add support for thesite_config.scm_ip_restriction_default_actionproperty (#32043)azurerm_logic_app_standard- add support for thesite_config.ip_restriction_default_actionproperty (#31816)azurerm_mssql_elasticpool- add support for thehigh_availability_replica_countproperty (#31761)azurerm_nat_gateway- add support for theStandardV2SKU (#31197)azurerm_public_ip- add support for theStandardV2SKU (#31197)azurerm_public_ip_prefix- add support for theStandardV2SKU (#31197)BUG FIXES:
azurerm_backup_policy_vm- fix the Update function to properly set all timestamps when any ofbackup.time,retention_daily,retention_weekly,retention_montly, orretention_yearlychange (#31969)azurerm_cosmosdb_account- fix an API error caused bybackup.interval_in_minutesandbackup.retention_in_hoursbeing set to0in the API payload when not defined in config (#32037)azurerm_machine_learning_compute_instance- fix settingnode_public_ip_enabledinto state (#31725)azurerm_search_service- markquery_keys.keyvalue as sensitive (#32053) (#32053)v4.66.0Compare Source
FEATURES:
azurerm_container_app_environment_storage(#32007)azurerm_video_indexer_account(#31978)ENHANCEMENTS:
Go- upgrade to version 1.25.8 (#31907)azurerm_bastion_host- Upgrade API to2025-01-01(#32030)azurerm_kubernetes_cluster- add support for migration from Azure or Kubenet CNI to Azure CNI Overlay (#30959)azurerm_search_service: add support forendpointattribute (#32010)cognitive_account_rai_blocklist_resource- add support for thetagsproperty (#31871)BUG FIXES:
azurerm_container_app- fixfailure_count_thresholdvalidation values for container app probes (#31989)azurerm_linux_function_app_slot- fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)azurerm_linux_web_app_slot- fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)azurerm_log_analytics_workspace- preserve default value oflocal_authentication_enabled(#32004)azurerm_windows_function_app_slot- fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)azurerm_windows_web_app_slot- fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)vercel/next.js (eslint-config-next)
v16.2.2Compare Source
hashicorp/terraform (hashicorp/terraform)
v1.14.8Compare Source
1.14.8 (March 25, 2026)
BUG FIXES:
i18next/i18next (i18next)
v25.10.10Compare Source
NODE_ENV=production)vercel/next.js (next)
v16.2.2Compare Source
nodejs/node (node)
v22.22.2: 2026-03-24, Version 22.22.2 'Jod' (LTS), @RafaelGSS prepared by @aduh95Compare Source
This is a security release.
Notable Changes
SNICallbackinvocation intry/catch(Matteo Collina) - HighheadersDistinct/trailersDistinct(Matteo Collina) - HighNGHTTP2_ERR_FLOW_CONTROLerror code (RafaelGSS) - Mediumrealpath.native(RafaelGSS) - Lowlib/fs/promises(RafaelGSS) - LowCommits
6f14ee5101] - (CVE-2026-21717) build,test: test array index hash collision (Joyee Cheung) nodejs-private/node-private#80952a52ef619] - (CVE-2026-21713) crypto: use timing-safe comparison in Web Cryptography HMAC (Filip Skokan) nodejs-private/node-private#82230a3ab11e2] - (CVE-2026-21717) deps: V8: cherry-pickaac14dd(Joyee Cheung) nodejs-private/node-private#809e3f4d6a42e] - (CVE-2026-21717) deps: V8: backport1361b2a(Joyee Cheung) nodejs-private/node-private#8097dc00fa5f4] - (CVE-2026-21717) deps: V8: backport185f0fe(Joyee Cheung) nodejs-private/node-private#809076acd052d] - (CVE-2026-21717) deps: V8: backport0a8b1cd(snek) nodejs-private/node-private#809963c60a951] - deps: V8: overridedepot_toolsversion (Richard Lau) #62344a688117d5d] - deps: upgrade npm to 10.9.7 (npm team) #62330859c8c761b] - deps: update undici to v6.24.1 (Matteo Collina) #62285d5ed384a2f] - deps: upgrade npm to 10.9.6 (npm team) #62215a2fe9fd81a] - (CVE-2026-21710) http: use null prototype for headersDistinct/trailersDistinct (Matteo Collina) nodejs-private/node-private#82173deff77c1] - lib: backport_tls_commonand_tls_wraprefactors (Dario Piotrowicz) #5764306fc3436f6] - (CVE-2026-21716) permission: include permission check on lib/fs/promises (RafaelGSS) nodejs-private/node-private#795db48d9c675] - (CVE-2026-21715) permission: add permission check to realpath.native (RafaelGSS) nodejs-private/node-private#7942a6105a63b] - (CVE-2026-21714) src: handle NGHTTP2_ERR_FLOW_CONTROL error code (RafaelGSS) nodejs-private/node-private#83291b970886f] - (CVE-2026-21637) tls: wrap SNICallback invocation in try/catch (Matteo Collina) nodejs-private/node-private#819react-hook-form/react-hook-form (react-hook-form)
v7.72.1: Version 7.72.1Compare Source
🐞 test: add isDirty check for numeric string keys in defaultValues (issue #13346) (#13347)
🐞 fix: prevent setValue with shouldDirty from polluting unrelated dirty fields (#13326)
🐞 fix: memoize control in HookFormControlContext to prevent render conflicts (#13272) (#13312)
🐞 fix: isNameInFieldArray should check all ancestor paths for nested field arrays (#13318)
🐞 fix: #13320 formState.isValid incorrect on Controller re-mount (#13324)
thanks to @6810779s, @candymask0712, @olagokemills, @shahmir-oscilar & @bae080311
bvaughn/react-resizable-panels (react-resizable-panels)
v4.9.0Compare Source
disableDoubleClickprop toSeparatorto enable turning off the double-click size reset behavior.v4.8.0Compare Source
useDefaultLayouthook automatically migrates legacy layouts to version 4 format; see issue 605 for details on how this works.recharts/recharts (recharts)
v3.8.1Compare Source
What's Changed
Bugfixes!
New Contributors
Full Changelog: recharts/recharts@v3.8.0...v3.8.1
shadcn-ui/ui (shadcn)
v4.1.2Compare Source
Patch Changes
44c09a19b0658cf8e72ac84bbba5b76e05192a0dThanks @shadcn! - add style lumav4.1.1Compare Source
Patch Changes
12b49c986fcf7e6db9be7f515df6142f822f2236Thanks @shadcn! - fix packageManager in package.jsonstorybookjs/storybook (storybook)
v10.3.4Compare Source
10.3.4
kulshekhar/ts-jest (ts-jest)
v29.4.9Compare Source
v29.4.8Compare Source
v29.4.7Compare Source
Features
TypeStrong/ts-loader (ts-loader)
v9.5.7Compare Source
Skipping 9.5.5-9.5.6 due to publishing issues
microsoft/vscode (vscode)
v1.114.0Compare Source
https://code.visualstudio.com/updates/v1_114
v1.113.0Compare Source
https://code.visualstudio.com/updates/v1_113
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.