chore(deps): bump streamdown from 1.3.0 to 1.4.0

[dependabot]

Bumps streamdown from 1.3.0 to 1.4.0.

Release notes

Sourced from streamdown's releases.

streamdown@1.4.0

Minor Changes

• 6c6f507: migrate from harden-react-markdown to rehype-harden

Patch Changes

• d0444a3: Add support for isAnimating
• 7a7464f: Correctly passes through remark rehype options into react-markdown. Previously this was ignored
• c68ebd6: Support incomplete URL parsing for links
• 0bfca42: 1.4 fixes and cleanup
• 6c0672b: Fix footnotes parsing
• 239e41d: fix: Block-level Markdown escapes containers when paragraphs/blank lines are present
• 7cd5048: Add support for remarkMathOptions and remarkGfmOptions props
• f5d6cd6: Remove options props, make plugins fully customizable
• 699622f: Allow base64 images
• 38ad1ed: Fix node="[object Object]" HTML attribute bug. Fixed AST node objects being passed as HTML attributes by explicitly filtering out the node prop from component props before spreading to HTML elements.
• 21a7031: Fix themed backgrounds for code blocks
• 04f6f3a: Extract images from paragraph tags
• 3c780b4: Fit footnotes rendering
• 20ca02d: fixed email addresses being rendered as blocked link

Changelog

Sourced from streamdown's changelog.

1.4.0

Minor Changes

• 6c6f507: migrate from harden-react-markdown to rehype-harden

Patch Changes

• d0444a3: Add support for isAnimating
• 7a7464f: Correctly passes through remark rehype options into react-markdown. Previously this was ignored
• c68ebd6: Support incomplete URL parsing for links
• 0bfca42: 1.4 fixes and cleanup
• 6c0672b: Fix footnotes parsing
• 239e41d: fix: Block-level Markdown escapes containers when paragraphs/blank lines are present
• 7cd5048: Add support for remarkMathOptions and remarkGfmOptions props
• f5d6cd6: Remove options props, make plugins fully customizable
• 699622f: Allow base64 images
• 38ad1ed: Fix node="[object Object]" HTML attribute bug. Fixed AST node objects being passed as HTML attributes by explicitly filtering out the node prop from component props before spreading to HTML elements.
• 21a7031: Fix themed backgrounds for code blocks
• 04f6f3a: Extract images from paragraph tags
• 3c780b4: Fit footnotes rendering
• 20ca02d: fixed email addresses being rendered as blocked link

Commits

• dc5bd12 Version Packages (#166)
• 0bfca42 1.4 fixes (#180)
• 3c780b4 fix: footnotes are blocked by default (#179)
• 699622f Allow base64 images (#175)
• 6c0672b Fix footnotes (#174)
• f5d6cd6 Remove options props, make plugins fully customizable (#177)
• 21a7031 fix: streamdown doesnt render background for code blocks (#176)
• d0444a3 Add isStreaming prop (#173)
• 04f6f3a fix: hydration error while rendering image (#172)
• 7cd5048 Add support for remarkMathOptions and remarkGfmOptions props (#171)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Summary by cubic

Upgrade streamdown from 1.3.0 to 1.4.0 to improve Markdown rendering and harden HTML processing. This adds new options and fixes several rendering bugs.

• Dependencies

  • Bump streamdown to 1.4.0 (migrates to rehype-harden; updates Katex and related rehype deps).

• Notable Changes

  • Hardened HTML handling with rehype-harden.
  • Improved Markdown rendering: better links and footnotes, correct code block backgrounds, image extraction, and base64 image support.
  • New options: remarkMathOptions and remarkGfmOptions; remark/rehype options now passed through; adds isAnimating prop.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
fuseion	Error			Oct 13, 2025 4:04pm

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[cubic-dev-ai]

No issues found across 2 files